$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: ziIRWBxuqnJs397+C+XV/1tACcsSrs0vQCBlDjquvs8= Subject key identifier: 3D:67:22:41:A7:33:92:2C:92:52:4B:E4:BD:43:22:D1:C4:10:5C:EE Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B70 Signing time: Tue 04 Nov 2025 19:10:20 +0000 Manifest this update: Tue 04 Nov 2025 19:10:19 +0000 Manifest next update: Tue 11 Nov 2025 19:10:19 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: RalLrLBa7dVps9vUA/nfgVrD0DMZ0OxG5dFDJQ+yNIk=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2931 (0xb73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Nov 4 19:10:19 2025 GMT Not After : Nov 11 19:10:19 2025 GMT Subject: CN=690a4f9b-2851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:77:b0:00:ac:69:1f:18:db:d5:58:fb:69:87: 3a:25:97:2c:30:87:42:07:f5:02:73:de:3a:e5:cb: f3:e3:5a:b4:53:48:a0:b4:87:2f:86:b4:5c:30:58: 20:a1:c9:d4:a4:70:a2:72:09:b8:bb:76:d1:cd:0e: 14:18:62:f1:43:ab:60:e0:2f:15:19:d2:6d:e1:43: 31:3d:a1:ed:03:df:d8:3c:d1:ce:8f:eb:51:af:4c: 18:28:76:9f:7d:1a:d8:39:db:d9:1a:81:2c:18:c6: 97:b2:64:12:ad:f3:89:2a:a4:20:ea:33:80:cf:23: f5:6c:53:60:25:e7:77:4d:c6:2f:e4:ab:d2:67:23: 21:6b:1d:b1:d2:84:fb:c3:47:45:82:f8:73:a0:68: 59:ba:56:3b:93:dc:ea:36:b0:26:b6:f1:81:36:7f: 09:0e:d9:be:5e:b0:42:9d:d3:51:b3:6e:81:a7:a2: e3:7c:81:b6:e5:69:78:6b:a3:36:49:7a:33:27:83: 96:f1:49:b6:14:46:35:f2:f5:6e:fc:a1:b9:f4:0e: 7a:9d:ad:33:22:8b:14:2b:de:11:c9:3a:0d:9e:50: ed:96:53:87:ee:54:74:84:67:8f:a3:a1:be:fd:44: a8:7f:ca:5a:9d:cf:dc:09:57:26:63:9a:9f:1f:1f: 5e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:67:22:41:A7:33:92:2C:92:52:4B:E4:BD:43:22:D1:C4:10:5C:EE X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:45:11:8d:fb:65:a6:0d:a6:a1:57:49:e5:fe:43:fc:ca:c4: 11:c6:6e:45:54:59:76:cb:67:15:71:aa:05:87:3d:20:a4:7d: 89:0f:e1:53:40:16:f7:e5:6f:5b:d3:e2:22:b2:41:3f:56:89: 28:58:dd:f0:6a:4b:dc:c1:5c:00:45:09:a5:7d:3b:aa:dd:16: 05:ff:36:42:a4:19:96:d4:c0:85:c9:04:80:e6:af:04:ee:18: c2:67:f1:34:a3:1a:d9:b3:07:15:6f:d7:00:24:64:8c:d8:c9: 64:75:d1:48:bd:12:3c:c1:63:c7:16:66:dd:1c:f9:5e:a9:2f: 16:9a:89:76:74:55:68:42:a1:20:a4:14:e6:9e:87:71:92:41: c8:c4:31:52:6e:96:58:c5:7c:9e:ed:c4:fc:b9:08:f9:02:58: 0e:5f:3c:8d:9d:8d:d8:db:6a:9d:21:08:c0:83:67:01:f9:e9: 34:9a:f5:27:90:f6:c1:c5:35:a8:7d:ba:47:ac:1c:d1:2f:cc: eb:41:30:e9:79:ed:b7:c8:8d:e7:1e:61:f9:70:bb:75:49:5e: 72:51:8f:96:19:24:ce:ad:4c:84:8c:c1:62:df:7d:14:33:0c: 75:f4:fc:95:6d:32:5e:b7:26:1e:af:bc:b7:2f:d8:3d:fe:76: 56:65:4d:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUxMTA0MTkxMDE5WhcNMjUxMTExMTkxMDE5WjAYMRYwFAYD VQQDEw02OTBhNGY5Yi0yODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXewAKxpHxjb1Vj7aYc6JZcsMIdCB/UCc9465cvz41q0U0igtIcvhrRcMFgg ocnUpHCicgm4u3bRzQ4UGGLxQ6tg4C8VGdJt4UMxPaHtA9/YPNHOj+tRr0wYKHaf fRrYOdvZGoEsGMaXsmQSrfOJKqQg6jOAzyP1bFNgJed3TcYv5KvSZyMhax2x0oT7 w0dFgvhzoGhZulY7k9zqNrAmtvGBNn8JDtm+XrBCndNRs26Bp6LjfIG25Wl4a6M2 SXozJ4OW8Um2FEY18vVu/KG59A56na0zIosUK94RyToNnlDtllOH7lR0hGePo6G+ /USof8panc/cCVcmY5qfHx9eGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1nIkGn M5IsklJL5L1DItHEEFzuMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChRRGN+2WmDaahV0nl/kP8ysQRxm5FVFl2y2cVcaoFhz0gpH2JD+FT QBb35W9b0+IiskE/VokoWN3wakvcwVwARQmlfTuq3RYF/zZCpBmW1MCFyQSA5q8E 7hjCZ/E0oxrZswcVb9cAJGSM2MlkddFIvRI8wWPHFmbdHPleqS8Wmol2dFVoQqEg pBTmnodxkkHIxDFSbpZYxXye7cT8uQj5AlgOXzyNnY3Y22qdIQjAg2cB+ek0mvUn kPbBxTWofbpHrBzRL8zrQTDpee23yI3nHmH5cLt1SV5yUY+WGSTOrUyEjMFi330U Mwx19PyVbTJetyYer7y3L9g9/nZWZU25 -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:38 2025 by rpki-client