$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: Xkbcavfrrno+BPbOGZARNpMdJM5U61ISFL7OTsNwFMI= Subject key identifier: E0:FF:6D:A7:12:EE:F6:1A:BD:F1:0E:2C:CD:1B:DC:CA:B1:12:11:FE Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 1126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 1115 Signing time: Tue 04 Nov 2025 17:21:26 +0000 Manifest this update: Tue 04 Nov 2025 17:21:25 +0000 Manifest next update: Tue 11 Nov 2025 17:21:25 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: fBJrpRXN6kw5j0K9oWxJAPHCznjOyvta8+R9c0/gKrc=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4390 (0x1126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Nov 4 17:21:25 2025 GMT Not After : Nov 11 17:21:25 2025 GMT Subject: CN=690a3615-717a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:28:f4:c5:7d:f6:57:2b:05:d7:b9:7d:9b: 89:91:9c:40:d0:84:9d:5e:2c:62:53:2a:27:15:7d: e7:9c:af:e1:25:53:cd:bb:ee:bd:ea:c0:16:d7:58: cd:24:c2:da:a1:ba:79:19:09:d9:cb:a9:38:ef:ea: e8:84:cf:d2:15:ea:da:f9:44:c5:a3:f7:25:49:68: de:98:31:31:8a:09:6f:48:c6:b3:85:d1:6e:eb:79: de:e1:7d:0c:78:9b:1e:b3:79:4a:bc:12:dc:59:32: ac:4a:0e:5c:22:d5:47:7f:8a:1a:c7:34:1b:20:19: 5f:40:d8:ce:d6:40:27:35:77:f8:6a:9c:f1:97:a5: f2:c1:7f:2a:90:aa:7d:18:41:af:ac:fd:b7:c1:42: 1b:ee:ad:45:5f:3e:f5:c8:e6:12:62:c4:0c:90:b6: 8a:91:e0:1d:7d:42:91:52:aa:c8:56:18:33:8f:13: 20:99:9b:06:72:5c:59:4f:4f:b3:f6:2d:74:28:65: 9a:29:b7:93:17:0f:81:ef:63:f7:b6:3c:bc:15:f8: b0:7f:e4:44:96:f7:51:24:b9:18:77:b9:1f:e0:0b: 15:a3:7e:35:82:58:52:e8:e5:37:ba:4f:3d:15:23: 30:38:a2:f7:70:4a:3d:23:14:cb:c8:9d:a9:54:5a: e0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FF:6D:A7:12:EE:F6:1A:BD:F1:0E:2C:CD:1B:DC:CA:B1:12:11:FE X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:13:87:e2:83:85:36:cd:41:6b:14:d8:83:e2:55:7c:61:1d: cb:f7:36:1b:a4:6a:55:a1:02:a4:63:bb:27:e4:c7:94:3c:19: ff:20:6a:b7:77:33:94:12:74:84:d9:b5:4e:b7:c4:85:75:13: 29:40:c5:c7:97:4d:51:9e:e2:ee:9c:fd:39:1d:0d:ca:f1:57: 84:c0:98:00:64:18:91:6d:d2:58:25:61:06:fb:05:fa:a4:51: 83:93:47:55:3a:b5:57:db:ce:49:e0:90:e8:19:9b:ce:6b:51: 66:bd:51:11:1f:77:d5:56:65:35:1a:41:06:e2:93:86:53:58: ec:6e:05:1a:8e:a8:64:d8:65:24:3b:f4:a1:bf:4b:f5:37:fd: 0c:64:d0:0c:b5:87:a1:a2:c2:c2:bd:bd:1a:7d:7c:e5:48:74: a9:54:18:de:0a:4b:a5:06:37:56:34:aa:53:2b:43:11:60:ae: 82:4f:bf:dc:f5:3e:5f:c6:94:4a:81:55:c2:e7:6f:0d:bb:19: b8:55:2b:40:b0:ec:b3:4c:1e:65:ab:ab:74:e3:0e:0d:5f:00: bf:ad:cc:af:21:1b:7a:9e:20:b5:5c:82:19:f6:5e:fc:be:87: a6:9b:d4:b4:47:53:51:45:20:cf:a8:92:b9:c0:07:6a:bf:9a: 27:0d:b6:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUxMTA0MTcyMTI1WhcNMjUxMTExMTcyMTI1WjAYMRYwFAYD VQQDEw02OTBhMzYxNS03MTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm8o9MV99lcrBde5fZuJkZxA0ISdXixiUyonFX3nnK/hJVPNu+696sAW11jN JMLaobp5GQnZy6k47+rohM/SFera+UTFo/clSWjemDExiglvSMazhdFu63ne4X0M eJses3lKvBLcWTKsSg5cItVHf4oaxzQbIBlfQNjO1kAnNXf4apzxl6XywX8qkKp9 GEGvrP23wUIb7q1FXz71yOYSYsQMkLaKkeAdfUKRUqrIVhgzjxMgmZsGclxZT0+z 9i10KGWaKbeTFw+B72P3tjy8Ffiwf+RElvdRJLkYd7kf4AsVo341glhS6OU3uk89 FSMwOKL3cEo9IxTLyJ2pVFrg3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOD/bacS 7vYavfEOLM0b3MqxEhH+MB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/E4fig4U2zUFrFNiD4lV8YR3L9zYbpGpVoQKkY7sn5MeUPBn/IGq3 dzOUEnSE2bVOt8SFdRMpQMXHl01RnuLunP05HQ3K8VeEwJgAZBiRbdJYJWEG+wX6 pFGDk0dVOrVX285J4JDoGZvOa1FmvVERH3fVVmU1GkEG4pOGU1jsbgUajqhk2GUk O/Shv0v1N/0MZNAMtYehosLCvb0afXzlSHSpVBjeCkulBjdWNKpTK0MRYK6CT7/c 9T5fxpRKgVXC528Nuxm4VStAsOyzTB5lq6t04w4NXwC/rcyvIRt6niC1XIIZ9l78 voemm9S0R1NRRSDPqJK5wAdqv5onDbac -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:51 2025 by rpki-client