$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: tBaIL9stGeYLV/Z7Osuus8BPXa6V/MazEkUMd+JTFYQ= Subject key identifier: 5D:AC:B5:29:A4:C5:16:6A:5D:5F:80:41:B1:BB:E7:A5:64:BF:60:D7 Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: E3 Signing time: Mon 27 Oct 2025 07:38:56 +0000 Manifest this update: Mon 27 Oct 2025 07:38:55 +0000 Manifest next update: Mon 03 Nov 2025 07:38:55 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: 6BalkfqvpWEkUuEDdYqFSC1ayVHFymFLZJkI+Z708O8=) 2: 2F5670EAABF411F0A51AED16C4F9AE02.roa (hash: JRoDal5bVz7qmsDJQA+Q/hdAU+W6lHUDGMrJuCQ18nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24, serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Oct 27 07:38:55 2025 GMT Not After : Nov 3 07:38:55 2025 GMT Subject: CN=68ff218f-abf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7e:7a:46:71:e3:d1:70:27:a9:d2:a2:54:7f: 6f:1b:7b:10:f5:0a:16:14:49:dd:09:91:dc:0f:b6: 7d:f5:2b:ca:6d:81:9a:e9:cd:18:13:3d:8f:10:04: c2:22:0b:d6:16:fb:41:4f:eb:2f:07:a1:76:59:25: 0b:f8:31:28:14:4d:6c:1f:dc:b6:53:6d:c0:cb:d9: 17:f2:88:d2:2c:a3:e9:85:0f:32:c7:a7:1f:57:20: 29:22:eb:0b:6e:fc:0c:ed:50:cd:ff:6c:d2:19:89: 2b:12:1e:44:09:4b:1b:55:d2:21:f9:3f:82:2b:c1: 34:8d:75:c4:c2:36:53:7a:f7:b7:46:d2:9e:7f:fb: 54:02:69:c7:e0:e9:00:0b:ff:d5:26:dd:59:66:bb: 52:07:b2:b8:a3:0d:6a:c4:bd:2b:a5:f0:c8:a7:5c: 57:47:17:5e:b8:80:90:14:3f:40:8e:24:aa:f6:6f: ab:7e:10:62:91:5c:ad:50:36:9f:06:63:f6:d1:a0: 97:2e:87:9c:c5:49:29:60:25:51:cc:49:ce:19:00: 25:ed:05:99:9b:5d:c3:8a:de:46:8d:26:6f:5f:e9: af:c4:af:06:64:2d:90:f8:38:f6:34:a6:4b:49:20: ff:cc:ca:bd:42:1d:6d:ce:9f:23:e2:52:88:ff:a2: 29:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AC:B5:29:A4:C5:16:6A:5D:5F:80:41:B1:BB:E7:A5:64:BF:60:D7 X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e7:3f:6c:4f:d4:6a:b4:fb:3b:63:5a:3c:35:b4:c7:5e:c6: c9:57:e5:88:12:dd:6f:15:47:62:9b:70:f8:50:93:7b:1b:10: a6:5f:19:61:87:c8:29:4d:a3:4f:3b:02:db:e4:59:a5:3b:c4: 5b:54:d3:b0:e0:9c:0d:61:42:91:ec:58:8d:0e:7b:28:c1:a7: 99:14:9c:c1:0c:97:1e:cd:a0:3f:3f:6a:cc:c5:8e:9a:10:01: a4:a3:7e:de:e8:d0:12:f9:b8:73:a2:c8:22:ce:9f:2e:df:d1: 66:f7:ca:b9:d7:2f:ba:04:18:ca:e6:6a:81:98:cb:01:fc:97: 52:44:80:44:67:3e:13:17:a6:60:17:c8:bc:01:4b:4d:64:56: 19:56:b8:e0:ec:ae:05:87:85:ed:40:9a:6b:f7:a0:2d:54:89: 83:51:ae:f5:57:85:e0:34:56:ca:88:99:3b:18:91:73:2a:48: eb:b2:7b:62:16:3b:ef:b9:c3:7b:01:58:16:c0:1e:dc:6e:c3: 5a:f0:ec:ec:9d:8c:06:49:5f:08:8c:aa:19:8f:39:54:89:a9: 45:8d:49:07:ff:e7:c0:25:cc:ff:91:2e:8d:71:f2:65:0b:89: 85:2b:a6:23:ac:a4:21:de:78:c3:df:18:b4:8d:2c:ea:5b:9f: 8d:39:d5:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCMjQxMTAvBgNVBAUTKENBNjRCMTczMTE5NTIwOTNDRDRENjBEQUFGMTdCNkFD QTBGN0E1MTYwHhcNMjUxMDI3MDczODU1WhcNMjUxMTAzMDczODU1WjAYMRYwFAYD VQQDEw02OGZmMjE4Zi1hYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH56RnHj0XAnqdKiVH9vG3sQ9QoWFEndCZHcD7Z99SvKbYGa6c0YEz2PEATC IgvWFvtBT+svB6F2WSUL+DEoFE1sH9y2U23Ay9kX8ojSLKPphQ8yx6cfVyApIusL bvwM7VDN/2zSGYkrEh5ECUsbVdIh+T+CK8E0jXXEwjZTeve3RtKef/tUAmnH4OkA C//VJt1ZZrtSB7K4ow1qxL0rpfDIp1xXRxdeuICQFD9AjiSq9m+rfhBikVytUDaf BmP20aCXLoecxUkpYCVRzEnOGQAl7QWZm13Dit5GjSZvX+mvxK8GZC2Q+Dj2NKZL SSD/zMq9Qh1tzp8j4lKI/6IpFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2stSmk xRZqXV+AQbG756Vkv2DXMB8GA1UdIwQYMBaAFMpksXMRlSCTzU1g2q8Xtqyg96UW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkIyNC84QTE2RkY3MjVC QTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklKUE5UV0RhcnhlMnJLRDNw UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkIyNC84QTE2RkY3MjVCQTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklK UE5UV0RhcnhlMnJLRDNwUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB05z9sT9RqtPs7Y1o8NbTHXsbJV+WIEt1vFUdim3D4UJN7GxCmXxlh h8gpTaNPOwLb5FmlO8RbVNOw4JwNYUKR7FiNDnsowaeZFJzBDJcezaA/P2rMxY6a EAGko37e6NAS+bhzosgizp8u39Fm98q51y+6BBjK5mqBmMsB/JdSRIBEZz4TF6Zg F8i8AUtNZFYZVrjg7K4Fh4XtQJpr96AtVImDUa71V4XgNFbKiJk7GJFzKkjrsnti FjvvucN7AVgWwB7cbsNa8OzsnYwGSV8IjKoZjzlUialFjUkH/+fAJcz/kS6NcfJl C4mFK6YjrKQh3njD3xi0jSzqW5+NOdW+ -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:14 2025 by rpki-client