$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: kzcARxkWFXCs2c/afdUp3sij73JYmKPFBwmSrW41L3E= Subject key identifier: 62:30:84:7A:C4:20:DF:5A:83:AE:C7:EB:E1:AA:74:72:AA:4E:92:6D Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 021E Signing time: Sun 19 Oct 2025 04:23:25 +0000 Manifest this update: Sun 19 Oct 2025 04:23:24 +0000 Manifest next update: Sun 26 Oct 2025 04:23:24 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: PlWl1NtQyI2kHSWfZsQVdeCB8zh+OrF3tKYFjx1JDXE=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Oct 19 04:23:24 2025 GMT Not After : Oct 26 04:23:24 2025 GMT Subject: CN=68f467bd-e476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:c3:b4:05:16:40:b1:a6:b1:08:93:c5:65: 53:67:62:6b:c0:f3:c1:93:c6:f0:f3:36:e2:17:8d: f9:33:c5:e7:fa:03:5b:8b:14:f8:3b:41:42:17:1e: 22:dc:d3:65:e8:e3:a1:e7:7c:89:f3:ca:81:7c:39: 57:b6:e1:53:a3:96:e0:93:62:0c:71:42:49:ab:31: d5:b4:30:c0:54:39:b6:87:ae:76:b7:8e:39:b9:31: 3b:3a:f2:a3:ef:53:e7:dd:f6:bb:02:9e:41:c2:9b: fd:58:cc:24:4c:2c:a6:dd:47:5e:20:cb:e5:5d:8f: cd:00:4b:61:84:22:cc:1b:75:80:d6:0b:a4:f2:8e: 7a:7b:93:13:98:3a:92:b2:92:ac:0c:5d:30:41:cf: 50:0e:00:82:2d:78:e8:9c:df:31:b5:30:68:b5:03: 25:f2:aa:63:66:60:97:ee:ad:38:f4:9a:07:ea:45: 21:2f:14:31:6a:1a:55:89:06:4f:c2:cc:42:18:af: 73:6f:97:8f:99:39:71:e3:63:3d:1a:37:91:a1:85: 50:d3:71:77:37:96:6a:a9:ac:94:90:9e:44:f4:bf: e3:e4:aa:05:58:94:47:3c:29:b9:28:1b:94:da:d4: 71:06:0b:c9:10:0e:de:71:a5:52:58:56:e0:fc:7b: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:30:84:7A:C4:20:DF:5A:83:AE:C7:EB:E1:AA:74:72:AA:4E:92:6D X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a8:f2:c6:22:f2:b7:57:7c:00:51:79:e7:e2:64:a0:8d:5d: 54:da:fe:66:90:9e:fe:0e:1b:b3:2a:ee:92:3a:c3:73:1f:96: e2:dd:6b:d1:a1:0f:c2:2f:2b:5a:67:a7:e9:5e:7d:54:1c:69: 18:8e:f1:f7:05:7e:ec:6d:8e:04:c3:b1:bf:09:6f:c8:0a:a1: e0:e0:7e:2a:33:37:80:e2:34:dc:b7:1c:90:ba:60:32:cf:b9: 3f:c1:4d:9e:ed:e9:c2:50:4d:62:02:98:ca:a5:c8:01:0d:4c: a9:b8:84:b8:b2:0c:b1:5c:cc:f0:96:0b:ed:84:17:f1:03:cf: a1:a9:f5:f8:52:d5:33:fa:58:12:05:f7:e0:a1:90:eb:d3:40: b2:19:70:3f:fa:1c:37:37:74:0f:74:f9:5c:29:5b:3c:20:a1: da:9a:a7:cd:fe:2a:72:21:66:47:24:bb:bc:06:93:27:f3:f0: 85:25:b3:4d:33:b1:8a:8b:36:15:46:25:57:9c:4c:26:09:a7: 18:55:94:10:55:cb:75:a1:14:1b:6f:d9:a0:36:c2:bb:7b:b1: a8:d4:0a:80:04:ac:62:7f:b6:ab:df:50:79:af:62:61:63:5d: ea:c9:33:79:94:f7:94:dc:93:db:24:44:e3:42:fe:34:23:31: 01:d7:31:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUxMDE5MDQyMzI0WhcNMjUxMDI2MDQyMzI0WjAYMRYwFAYD VQQDEw02OGY0NjdiZC1lNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3vDtAUWQLGmsQiTxWVTZ2JrwPPBk8bw8zbiF435M8Xn+gNbixT4O0FCFx4i 3NNl6OOh53yJ88qBfDlXtuFTo5bgk2IMcUJJqzHVtDDAVDm2h652t445uTE7OvKj 71Pn3fa7Ap5Bwpv9WMwkTCym3UdeIMvlXY/NAEthhCLMG3WA1guk8o56e5MTmDqS spKsDF0wQc9QDgCCLXjonN8xtTBotQMl8qpjZmCX7q049JoH6kUhLxQxahpViQZP wsxCGK9zb5ePmTlx42M9GjeRoYVQ03F3N5ZqqayUkJ5E9L/j5KoFWJRHPCm5KBuU 2tRxBgvJEA7ecaVSWFbg/HvlcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIwhHrE IN9ag67H6+GqdHKqTpJtMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHqPLGIvK3V3wAUXnn4mSgjV1U2v5mkJ7+DhuzKu6SOsNzH5bi3WvR oQ/CLytaZ6fpXn1UHGkYjvH3BX7sbY4Ew7G/CW/ICqHg4H4qMzeA4jTctxyQumAy z7k/wU2e7enCUE1iApjKpcgBDUypuIS4sgyxXMzwlgvthBfxA8+hqfX4UtUz+lgS BffgoZDr00CyGXA/+hw3N3QPdPlcKVs8IKHamqfN/ipyIWZHJLu8BpMn8/CFJbNN M7GKizYVRiVXnEwmCacYVZQQVct1oRQbb9mgNsK7e7Go1AqABKxif7ar31B5r2Jh Y13qyTN5lPeU3JPbJETjQv40IzEB1zGz -----END CERTIFICATE-----Generated at Mon Oct 20 04:04:30 2025 by rpki-client