$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: WjZn3I6OqwABUE/XwTGBLJx1+v3TAFSPSc0rHtJCgUk= Subject key identifier: 0A:E6:86:BB:1A:43:E0:02:FA:2F:79:42:85:28:EB:FA:49:94:E8:8E Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 01AF Signing time: Sun 19 Oct 2025 05:41:31 +0000 Manifest this update: Sun 19 Oct 2025 05:41:31 +0000 Manifest next update: Sun 26 Oct 2025 05:41:31 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: SDXyucJOtCpIWttVdigoj8M+g18nL8yjMc2vvsjSHe0=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: 1HSPz5fptSUhMZGOqCo4GWHbK/jQcYLJDQgsd3l//0k=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: qxrX+Z3cG6vZ3aS4ZRQYNGD9CmXUX4wxNipZHWRT9gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Oct 19 05:41:31 2025 GMT Not After : Oct 26 05:41:31 2025 GMT Subject: CN=68f47a0b-cf76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0b:c8:86:2e:a4:b7:00:32:82:c4:1a:27:c2: c1:6c:15:a3:a1:70:be:6e:11:af:39:46:5b:f4:1c: 07:06:ce:a8:77:fa:2e:66:7c:10:45:6b:b8:69:28: 21:78:c5:1a:cf:bf:99:e9:21:d7:93:53:8b:ba:ec: 42:66:63:bc:29:72:f7:95:0a:10:08:9d:92:98:03: 2b:af:a9:6e:9f:af:a1:1d:87:ab:31:cf:a2:ad:95: 94:6f:e8:18:93:95:b3:33:9e:8d:bd:c9:98:60:d6: d7:b1:98:a1:da:32:ee:fb:19:6c:1e:4b:df:65:ee: 73:a0:93:d7:8c:28:6f:46:b9:0c:08:aa:17:c3:32: ff:a8:cb:01:9c:ca:73:a4:cc:6f:c2:6b:7c:1d:cf: 3a:0d:7c:c6:bb:f2:d4:17:eb:76:5d:94:89:de:2a: 30:a6:72:b7:7e:e8:69:9d:a0:5d:f7:04:9f:b4:b6: 1c:5f:f9:8b:41:81:62:9f:29:21:9c:04:b1:47:db: 93:73:ba:8d:6a:9b:f0:23:59:4d:14:f0:4a:45:d0: 33:65:c1:8d:98:36:df:04:ee:03:98:60:5f:3f:46: c8:2f:d3:80:ca:db:53:15:cd:59:a6:16:b3:62:1f: a2:8b:7a:11:7d:31:67:4a:d4:4d:3a:85:b0:20:52: 95:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E6:86:BB:1A:43:E0:02:FA:2F:79:42:85:28:EB:FA:49:94:E8:8E X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:37:b9:29:5a:07:0c:f1:a9:c3:05:13:67:b5:9f:6e:09:ed: a0:df:51:60:86:36:0d:e6:bf:33:09:c0:d2:cd:e6:bd:4b:1e: c4:2b:28:7b:35:b9:f4:f1:b8:a6:49:96:11:c4:da:0d:83:13: 1a:ea:e3:6d:3c:f6:fe:c3:71:1c:04:9a:31:ab:97:39:07:38: a9:34:74:4c:5a:85:8b:8c:49:f4:1a:15:60:a7:1d:7a:2e:08: b1:fc:a3:48:a3:7d:c0:cd:63:99:11:f7:10:8b:d6:68:f2:ae: d6:e3:84:87:62:28:e9:7c:aa:93:0d:00:7b:68:30:d4:ba:b4: 5f:38:ed:45:47:59:7c:b0:5a:86:1b:3c:45:e6:c9:dd:d2:02: 26:4e:a2:37:30:0d:be:c6:f1:0e:50:28:36:d9:a7:75:14:bd: bc:b8:48:2e:59:91:35:61:69:55:5c:d2:6f:9a:35:2c:48:d0: cb:a8:14:45:1b:e6:ae:32:d9:78:a1:d4:92:be:65:d0:cf:05: 3e:8b:34:11:90:37:a3:ee:dd:ff:5c:9d:11:4d:37:f3:b7:23: 3d:05:f0:78:9c:b1:56:49:32:96:6d:8c:5e:97:62:04:de:a3: 2a:4c:6c:94:05:87:75:44:4f:6a:74:e5:2a:f2:22:13:2f:51: 8f:d3:ea:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUxMDE5MDU0MTMxWhcNMjUxMDI2MDU0MTMxWjAYMRYwFAYD VQQDEw02OGY0N2EwYi1jZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQvIhi6ktwAygsQaJ8LBbBWjoXC+bhGvOUZb9BwHBs6od/ouZnwQRWu4aSgh eMUaz7+Z6SHXk1OLuuxCZmO8KXL3lQoQCJ2SmAMrr6lun6+hHYerMc+irZWUb+gY k5WzM56NvcmYYNbXsZih2jLu+xlsHkvfZe5zoJPXjChvRrkMCKoXwzL/qMsBnMpz pMxvwmt8Hc86DXzGu/LUF+t2XZSJ3iowpnK3fuhpnaBd9wSftLYcX/mLQYFinykh nASxR9uTc7qNapvwI1lNFPBKRdAzZcGNmDbfBO4DmGBfP0bIL9OAyttTFc1Zphaz Yh+ii3oRfTFnStRNOoWwIFKVqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArmhrsa Q+AC+i95QoUo6/pJlOiOMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbN7kpWgcM8anDBRNntZ9uCe2g31FghjYN5r8zCcDSzea9Sx7EKyh7 Nbn08bimSZYRxNoNgxMa6uNtPPb+w3EcBJoxq5c5BzipNHRMWoWLjEn0GhVgpx16 Lgix/KNIo33AzWOZEfcQi9Zo8q7W44SHYijpfKqTDQB7aDDUurRfOO1FR1l8sFqG GzxF5snd0gImTqI3MA2+xvEOUCg22ad1FL28uEguWZE1YWlVXNJvmjUsSNDLqBRF G+auMtl4odSSvmXQzwU+izQRkDej7t3/XJ0RTTfztyM9BfB4nLFWSTKWbYxel2IE 3qMqTGyUBYd1RE9qdOUq8iITL1GP0+o7 -----END CERTIFICATE-----Generated at Mon Oct 20 10:45:33 2025 by rpki-client