$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: dSRLhv+jhEjjnsN+Vrc6M3MosCHGHBCu5HcDIqXR/TU= Subject key identifier: 66:02:D7:AC:A9:6A:C6:5D:03:44:E7:54:0C:69:E8:6A:34:7B:AE:93 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B14 Signing time: Fri 24 Oct 2025 20:04:13 +0000 Manifest this update: Fri 24 Oct 2025 20:04:13 +0000 Manifest next update: Fri 31 Oct 2025 20:04:13 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: N55Mo+O6QZuDpo9lkFdeIAMP0OIlUlytu2UuCALfbSM=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 20:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Oct 24 20:04:13 2025 GMT Not After : Oct 31 20:04:13 2025 GMT Subject: CN=68fbdbbd-eb4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:18:a8:e6:03:7c:28:58:68:de:43:0b:7e:fc: 57:25:b2:f4:73:76:1e:bd:4d:f7:d9:fe:65:b2:44: 9c:2b:c8:93:09:e0:42:e4:e4:2d:a2:2a:1f:84:9a: e6:91:b5:6d:77:07:60:04:e3:0c:85:8b:7d:d2:3f: 46:e9:b2:d8:92:9d:8f:af:00:d0:ab:bf:9d:11:ff: 22:53:9d:46:bf:13:5a:46:92:d5:d7:cd:84:cc:f9: 8c:b7:e4:9a:fe:8e:2c:27:49:01:a7:b8:93:7c:d6: 7d:cb:98:52:53:2c:fc:76:dd:11:08:f0:99:6f:e1: bb:71:e2:f3:28:9c:c6:56:63:5e:21:18:91:3c:b5: 71:87:93:91:04:57:50:e7:34:e7:9a:d3:26:77:b4: 7b:57:02:e8:e2:a3:5c:0a:2c:e2:f7:f6:b4:9b:84: f3:db:45:a0:6b:9e:09:71:00:6d:4d:4d:d2:33:e0: 81:94:c0:2c:51:98:a7:39:26:8b:ce:ee:3d:4c:ff: cc:98:33:42:63:30:c5:4f:d0:8c:38:8b:71:8c:47: 73:9e:7b:32:16:31:e6:13:76:44:45:d5:18:2a:53: 56:2d:f6:b2:a6:3a:63:3b:ee:11:77:e4:84:d9:c4: 70:fc:c4:c0:8f:a9:ac:19:3a:83:b7:26:3f:c2:a4: a6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:02:D7:AC:A9:6A:C6:5D:03:44:E7:54:0C:69:E8:6A:34:7B:AE:93 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d4:74:9f:24:62:7e:13:f0:71:46:76:8f:f7:3e:62:e9:9d: bf:cd:3f:22:bb:da:ad:ca:fd:c1:72:76:52:2c:14:6d:e5:29: 5e:38:5e:2f:65:4c:1d:7a:4f:5d:9c:d2:f0:cb:4f:a1:2c:3d: 40:34:e7:be:9f:46:49:1f:4e:6c:b1:c6:90:31:7d:35:e8:97: a6:ae:9a:96:e2:ec:59:54:c2:d3:b1:03:09:92:f0:52:07:a1: 50:7a:1e:00:ac:b3:50:15:d6:07:44:e4:7f:cc:48:44:47:5d: 6e:11:21:8e:a1:13:39:a2:30:0e:d1:ab:47:3a:c9:57:77:f2: c8:2a:04:21:54:a8:6e:f7:c7:7e:99:b9:34:96:5d:23:89:3e: 75:09:9b:66:63:59:9e:01:30:26:31:be:56:b2:f1:98:34:93: 5e:0f:1d:3f:49:eb:a2:47:59:82:18:28:68:28:da:ef:55:87: 47:b7:93:32:cb:03:a1:e9:ad:cd:7e:99:95:a0:e7:8f:1d:80: 53:6f:5f:85:7a:60:a8:85:30:cb:e2:00:af:e2:84:5b:c7:c9: 85:5f:9c:fd:a7:f2:2e:c5:51:7b:db:3a:04:ac:ae:cb:82:2c: f0:ef:db:10:fe:88:94:e0:ca:53:f8:2a:f0:1b:10:0d:ad:a0: ec:2c:a7:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUxMDI0MjAwNDEzWhcNMjUxMDMxMjAwNDEzWjAYMRYwFAYD VQQDEw02OGZiZGJiZC1lYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5xio5gN8KFho3kMLfvxXJbL0c3YevU332f5lskScK8iTCeBC5OQtoiofhJrm kbVtdwdgBOMMhYt90j9G6bLYkp2PrwDQq7+dEf8iU51GvxNaRpLV182EzPmMt+Sa /o4sJ0kBp7iTfNZ9y5hSUyz8dt0RCPCZb+G7ceLzKJzGVmNeIRiRPLVxh5ORBFdQ 5zTnmtMmd7R7VwLo4qNcCizi9/a0m4Tz20Wga54JcQBtTU3SM+CBlMAsUZinOSaL zu49TP/MmDNCYzDFT9CMOItxjEdznnsyFjHmE3ZERdUYKlNWLfaypjpjO+4Rd+SE 2cRw/MTAj6msGTqDtyY/wqSmwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYC16yp asZdA0TnVAxp6Go0e66TMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB21HSfJGJ+E/BxRnaP9z5i6Z2/zT8iu9qtyv3BcnZSLBRt5SleOF4v ZUwdek9dnNLwy0+hLD1ANOe+n0ZJH05sscaQMX016JemrpqW4uxZVMLTsQMJkvBS B6FQeh4ArLNQFdYHROR/zEhER11uESGOoRM5ojAO0atHOslXd/LIKgQhVKhu98d+ mbk0ll0jiT51CZtmY1meATAmMb5WsvGYNJNeDx0/SeuiR1mCGChoKNrvVYdHt5My ywOh6a3NfpmVoOePHYBTb1+FemCohTDL4gCv4oRbx8mFX5z9p/IuxVF72zoErK7L gizw79sQ/oiU4MpT+CrwGxANraDsLKf+ -----END CERTIFICATE-----Generated at Sat Oct 25 12:50:30 2025 by rpki-client