$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: iAufM9bmdyBHw+UYH8lelHEP+zbQxe7PCRG7WSCOFgA= Subject key identifier: EC:1F:40:6E:E4:D8:59:2B:BD:00:60:49:A1:81:98:D9:32:7B:CD:AA Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 01A9 Signing time: Sun 19 Oct 2025 05:44:34 +0000 Manifest this update: Sun 19 Oct 2025 05:44:33 +0000 Manifest next update: Sun 26 Oct 2025 05:44:32 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: i1ysCH3rc3PEBVsM9kqwDx02spZuFETX9OflyDqrqH4=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: Ae2kzkiPbHsneEUo3gobHEERA3S8mH2dAIJpdvxeRck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Oct 19 05:44:33 2025 GMT Not After : Oct 26 05:44:32 2025 GMT Subject: CN=68f47ac1-cf4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cf:8c:69:b4:2c:d0:c6:43:c2:59:15:5f:fa: c1:25:7a:1f:69:ed:e2:ac:18:f4:d1:e9:57:93:82: 6d:be:a4:36:50:69:51:79:90:85:80:85:52:5e:6e: 4b:31:01:e3:50:f0:eb:bc:6d:70:ad:0b:60:f0:c8: 09:27:bf:f9:c1:16:c5:f2:63:b8:ad:a0:b0:8b:4d: 51:49:2f:a6:f7:4d:96:c5:80:21:26:fa:d0:a2:d3: 15:30:69:98:30:15:ab:64:23:7b:e1:58:33:bc:35: 21:b9:07:1b:11:04:8a:4c:5d:f8:a1:4c:a2:54:ac: 9d:03:63:6d:40:3f:56:83:1c:65:bb:91:66:c9:cb: d6:4f:e3:58:1f:a6:3c:35:99:1f:ca:24:1b:4c:30: 8f:00:13:ad:2d:d6:7a:68:7d:b5:80:4d:9f:3e:92: 5a:9d:e2:18:e5:7a:98:0b:a3:f7:5c:54:97:da:c8: 0e:a6:12:d4:4e:a4:aa:6c:b0:2d:67:a8:83:21:5d: f0:e1:11:32:c3:f2:f2:2f:2c:03:2f:d3:8f:1f:5d: 9a:e4:f2:71:87:62:92:cc:8d:24:10:cb:71:66:9a: 45:50:78:ee:77:b5:72:df:c8:72:7d:fc:56:ec:7b: 47:aa:bb:ab:65:0d:b0:30:d9:c9:24:fd:80:df:dc: b6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1F:40:6E:E4:D8:59:2B:BD:00:60:49:A1:81:98:D9:32:7B:CD:AA X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:bd:0c:dd:57:16:73:ce:04:fb:a9:bd:7f:54:f0:ac:36:40: bb:63:44:09:a4:b1:6b:3e:24:38:2e:ab:40:e9:22:23:7b:2c: fd:6c:1a:89:a2:71:82:d8:db:b0:35:8b:dc:85:6b:01:f0:5e: 61:a9:fa:08:d7:6d:90:03:04:91:2d:a1:31:71:de:aa:50:3a: e5:e2:bb:8f:c7:65:67:ff:b4:f3:6f:f9:6f:ff:33:c3:45:89: 3d:53:00:6a:94:47:d0:6e:60:ba:0e:1c:48:ec:0e:00:ef:c2: c1:a0:80:45:64:c2:d9:ba:9f:41:b4:fa:67:d5:cf:07:c9:88: 21:4d:92:2a:af:db:ba:a9:92:ff:57:5f:59:0e:af:86:52:78: 6c:9f:cc:e1:1e:66:b8:75:43:a4:fe:ea:25:bc:5f:4a:22:1d: 06:13:2a:78:31:4c:26:4a:14:9f:e1:5a:77:2a:67:f5:11:c5: 9d:02:dd:1c:04:a0:07:5d:fc:81:99:25:5f:f9:0d:73:c5:f7: 7b:6c:f3:08:7b:1d:ae:7e:bc:ba:0e:21:c9:3d:7c:ba:be:01: 49:b2:5f:1a:5c:8e:21:ad:4f:b2:d7:ae:de:66:76:48:ba:94: b8:21:b8:8d:7f:84:96:bc:79:80:f0:a2:c0:08:10:9a:50:23: f5:be:07:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUxMDE5MDU0NDMzWhcNMjUxMDI2MDU0NDMyWjAYMRYwFAYD VQQDEw02OGY0N2FjMS1jZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApM+MabQs0MZDwlkVX/rBJXofae3irBj00elXk4JtvqQ2UGlReZCFgIVSXm5L MQHjUPDrvG1wrQtg8MgJJ7/5wRbF8mO4raCwi01RSS+m902WxYAhJvrQotMVMGmY MBWrZCN74VgzvDUhuQcbEQSKTF34oUyiVKydA2NtQD9Wgxxlu5FmycvWT+NYH6Y8 NZkfyiQbTDCPABOtLdZ6aH21gE2fPpJaneIY5XqYC6P3XFSX2sgOphLUTqSqbLAt Z6iDIV3w4REyw/LyLywDL9OPH12a5PJxh2KSzI0kEMtxZppFUHjud7Vy38hyffxW 7HtHqrurZQ2wMNnJJP2A39y2ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwfQG7k 2FkrvQBgSaGBmNkye82qMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChvQzdVxZzzgT7qb1/VPCsNkC7Y0QJpLFrPiQ4LqtA6SIjeyz9bBqJ onGC2NuwNYvchWsB8F5hqfoI122QAwSRLaExcd6qUDrl4ruPx2Vn/7Tzb/lv/zPD RYk9UwBqlEfQbmC6DhxI7A4A78LBoIBFZMLZup9BtPpn1c8HyYghTZIqr9u6qZL/ V19ZDq+GUnhsn8zhHma4dUOk/uolvF9KIh0GEyp4MUwmShSf4Vp3Kmf1EcWdAt0c BKAHXfyBmSVf+Q1zxfd7bPMIex2ufry6DiHJPXy6vgFJsl8aXI4hrU+y167eZnZI upS4IbiNf4SWvHmA8KLACBCaUCP1vgf2 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:12 2025 by rpki-client