$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: jG0ZVAyxEKXMtR1G2Z2pOL8uV4Ui4vWJTyVnBAl2Z4g= Subject key identifier: E2:70:7B:F0:8A:06:6B:9A:40:58:D7:47:E3:39:25:73:01:1E:34:B4 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 016A Signing time: Mon 03 Nov 2025 04:01:15 +0000 Manifest this update: Mon 03 Nov 2025 04:01:15 +0000 Manifest next update: Mon 10 Nov 2025 04:01:14 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: deTxXmsHl7MBb8fkI1CFdAvli+c7sw3T1hZf1f7r8Uo=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: YgNQfKH2j9vPQAWdAUFYDmXhZo5ythnv/oTPT+Ay1+4=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: fOjJ/Gc3Xo61GkkgaAWGTG7vIfdk8OnS5/7uboXrlc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Nov 3 04:01:15 2025 GMT Not After : Nov 10 04:01:14 2025 GMT Subject: CN=6908290b-7647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0f:44:04:05:e6:49:fa:a6:78:35:ce:f1:2a: 14:4a:83:03:50:44:8e:1b:7a:8f:89:e0:af:90:74: 12:a8:8f:be:31:16:ee:dd:47:57:bf:6e:35:32:f3: ca:62:c1:b5:ab:12:63:ca:b7:a0:e5:4c:ba:bc:59: 26:f4:72:ce:6f:53:73:64:d2:88:f2:b4:4d:19:00: b4:b7:15:f9:33:71:a0:33:45:1e:a8:b0:1a:4f:23: 4c:b1:f3:e8:be:fa:35:79:fa:4a:d3:d6:98:e1:59: c1:08:28:dd:88:f3:cc:66:10:c2:2d:ed:26:68:8a: ea:24:63:44:19:1e:4d:49:c6:99:87:ee:73:ab:90: 4d:0f:0b:b2:02:19:54:ad:17:91:66:80:8c:29:e4: e4:e1:29:f1:50:c2:64:e2:15:54:2c:ff:33:6a:32: 05:40:dd:2b:b8:70:6f:66:2f:6b:a8:0d:93:3b:c0: 4b:5f:d4:8e:0d:3f:88:70:ec:55:ee:5c:0b:9d:82: b2:88:64:45:12:f8:80:ab:43:a2:26:b9:a1:cc:d2: 2c:b2:b9:21:43:64:88:50:cd:90:db:0a:5d:ab:a7: 4e:04:16:d2:0e:b1:22:17:6c:4e:f9:50:fa:e8:ad: 89:0c:2e:cc:c5:d4:21:07:9b:4d:73:21:26:ca:ee: dc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:70:7B:F0:8A:06:6B:9A:40:58:D7:47:E3:39:25:73:01:1E:34:B4 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:42:e8:38:46:22:a7:29:41:bf:05:3d:42:b7:12:fd:ae:15: a2:ea:1c:76:74:3e:33:8d:5a:5f:3c:3c:ab:53:9b:96:6b:21: af:0f:8f:2c:04:5f:f5:15:11:3c:44:dd:f6:5b:35:9f:97:d9: 29:e6:71:2e:57:92:ef:ef:6b:22:72:07:2e:47:7a:cb:5c:43: 20:e2:e3:a3:4c:5e:da:e4:e0:3c:05:69:ba:41:52:48:8d:57: 81:9d:8b:fd:30:1c:68:94:d4:65:6a:de:e6:bc:03:04:a0:2d: e1:53:17:c1:c2:8a:ba:8c:56:bc:f1:c2:5d:35:e6:47:8b:a0: ff:41:e1:f7:75:87:1d:4a:55:c9:4f:25:fa:bf:b8:58:8e:44: b6:f8:3d:6a:6b:ee:6d:fd:00:ed:56:04:55:e0:d7:8f:d8:be: 4a:44:97:d1:82:d9:1b:75:91:9f:f4:43:10:4b:6c:75:3c:48: b0:7c:32:97:41:aa:a1:f2:4e:4d:bc:05:03:cc:0e:2a:96:e3: f1:ab:0c:63:d4:e2:e4:6e:2e:4b:04:91:97:01:bb:25:9a:d5: 32:99:2a:ec:3a:12:14:dd:b2:2b:25:f4:66:a9:0d:af:49:bf: 9b:63:1d:4d:79:fb:03:c0:4e:79:5a:ab:19:3e:aa:2d:66:cf: d1:31:4d:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUxMTAzMDQwMTE1WhcNMjUxMTEwMDQwMTE0WjAYMRYwFAYD VQQDEw02OTA4MjkwYi03NjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3A9EBAXmSfqmeDXO8SoUSoMDUESOG3qPieCvkHQSqI++MRbu3UdXv241MvPK YsG1qxJjyreg5Uy6vFkm9HLOb1NzZNKI8rRNGQC0txX5M3GgM0UeqLAaTyNMsfPo vvo1efpK09aY4VnBCCjdiPPMZhDCLe0maIrqJGNEGR5NScaZh+5zq5BNDwuyAhlU rReRZoCMKeTk4SnxUMJk4hVULP8zajIFQN0ruHBvZi9rqA2TO8BLX9SODT+IcOxV 7lwLnYKyiGRFEviAq0OiJrmhzNIssrkhQ2SIUM2Q2wpdq6dOBBbSDrEiF2xO+VD6 6K2JDC7MxdQhB5tNcyEmyu7cKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJwe/CK BmuaQFjXR+M5JXMBHjS0MB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANQug4RiKnKUG/BT1CtxL9rhWi6hx2dD4zjVpfPDyrU5uWayGvD48s BF/1FRE8RN32WzWfl9kp5nEuV5Lv72sicgcuR3rLXEMg4uOjTF7a5OA8BWm6QVJI jVeBnYv9MBxolNRlat7mvAMEoC3hUxfBwoq6jFa88cJdNeZHi6D/QeH3dYcdSlXJ TyX6v7hYjkS2+D1qa+5t/QDtVgRV4NeP2L5KRJfRgtkbdZGf9EMQS2x1PEiwfDKX Qaqh8k5NvAUDzA4qluPxqwxj1OLkbi5LBJGXAbslmtUymSrsOhIU3bIrJfRmqQ2v Sb+bYx1NefsDwE55WqsZPqotZs/RMU3L -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:00 2025 by rpki-client