$ rpki-client -vvf rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft File: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft (raw, json) Hash identifier: J50tz28n01QMes3DST1YdvtqeLSk7rJapUYY6D4PQMQ= Subject key identifier: 34:9E:C0:D1:A0:72:0B:6A:A3:AE:0C:CA:FA:9B:40:2A:23:A2:FF:79 Authority key identifier: E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 Certificate issuer: /CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft Manifest number: 03D9 Signing time: Sun 19 Oct 2025 02:34:07 +0000 Manifest this update: Sun 19 Oct 2025 02:34:06 +0000 Manifest next update: Sun 26 Oct 2025 02:34:06 +0000 Files and hashes: 1: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl (hash: HYZWRWGvSLII4k1KtB71Y80NfZ6oiAzlOzFTrXcYyCU=) 2: 6664BEB29F8611ECBE806D30C4F9AE02.roa (hash: JfmyzR7WR8BiLmwxCtB0fOXl6mP+OqTxhoVtIYHhkY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170533, serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Validity Not Before: Oct 19 02:34:06 2025 GMT Not After : Oct 26 02:34:06 2025 GMT Subject: CN=68f44e1f-a5fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4e:92:59:7c:1e:45:81:c1:52:86:a4:ec:49: d8:6c:6a:88:69:43:14:a5:8a:2e:cf:eb:be:8a:43: 5b:fa:00:b1:17:bd:c4:b1:4e:87:de:78:8e:81:f2: 8f:ee:9a:80:1c:7b:fc:46:7b:dc:ed:ff:ff:8a:6a: f5:5b:f4:c0:ac:5e:55:b1:ba:01:b0:01:39:e6:54: 68:1f:ed:05:86:81:e3:9d:91:6a:bf:17:6f:3f:46: 73:93:0c:58:16:81:35:a1:db:bd:0b:40:a2:e0:60: 15:e6:8a:c8:13:ac:28:1e:b5:8a:2d:af:1b:42:2d: 19:49:80:b6:df:c0:c3:c9:4c:6d:03:93:55:1e:0b: 1a:6c:84:2d:4b:c3:a5:b2:24:2a:1f:44:59:8e:ff: 2c:8a:10:12:1b:81:9f:1e:bc:03:22:81:e3:ae:6e: c4:48:eb:37:10:a3:7a:a8:cb:8f:45:3a:ae:ea:94: 74:32:f3:cd:4e:64:73:bf:c7:29:fd:08:f7:6d:eb: fb:64:80:3d:74:be:57:c7:87:13:80:37:9e:37:b0: 4b:e0:fd:04:d1:4c:b9:f4:0d:15:26:41:f9:a8:f3: d0:a2:90:76:3d:a7:68:cb:6c:d8:bc:81:b0:91:4d: 1c:35:3e:bd:57:0c:e7:67:fd:5a:d1:c0:b8:46:c4: 5d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9E:C0:D1:A0:72:0B:6A:A3:AE:0C:CA:FA:9B:40:2A:23:A2:FF:79 X509v3 Authority Key Identifier: keyid:E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:31:fb:70:68:9f:e9:ae:ee:d5:14:63:f6:d0:97:4e:82:86: 7e:18:20:f9:58:f5:0a:80:c6:38:bc:6a:51:c9:08:5b:0a:05: ed:f1:3f:8e:13:72:95:56:d3:cc:86:d9:a4:23:63:46:5b:63: 43:09:f3:b8:15:ed:43:74:2e:05:9e:5f:ea:f4:2d:a7:7f:f3: 10:07:ac:03:30:ca:29:c1:db:e2:01:ac:e4:c3:4c:1f:20:86: b7:47:ba:3c:4f:8b:8c:57:4c:dc:de:3d:9a:b7:93:85:38:08: 56:dc:e8:58:34:90:5a:40:4c:b5:df:fe:cd:ea:af:9b:02:e1: be:e5:c9:51:e0:f8:27:fd:28:3a:74:c9:df:bc:5c:6b:7a:33: 59:ae:ca:7b:84:fc:c2:05:02:fa:37:f8:9b:07:e2:23:d6:5a: 6d:63:6e:7f:8b:fd:f7:20:f6:e0:55:dd:5c:6a:6d:c7:95:d0: 3d:af:f4:eb:c7:1d:49:ff:f8:d4:9d:38:9e:f0:04:39:1e:bc: 97:1d:0d:05:b2:9b:41:e7:8f:a0:86:e8:30:0b:fe:d1:1d:77: bc:30:71:17:79:a8:e7:57:b3:68:03:b8:69:91:d5:ea:53:02: d4:cd:62:d4:e9:72:b0:20:7c:43:4e:6b:da:ca:b8:a0:87:df: c6:87:9c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1MzMxMTAvBgNVBAUTKEU1OEY5OEUzQzYxNDIxNDY1NDUzQUM0MjU1RjBBRkIw QUQ5NUQyNDYwHhcNMjUxMDE5MDIzNDA2WhcNMjUxMDI2MDIzNDA2WjAYMRYwFAYD VQQDEw02OGY0NGUxZi1hNWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt06SWXweRYHBUoak7EnYbGqIaUMUpYouz+u+ikNb+gCxF73EsU6H3niOgfKP 7pqAHHv8Rnvc7f//imr1W/TArF5VsboBsAE55lRoH+0FhoHjnZFqvxdvP0ZzkwxY FoE1odu9C0Ci4GAV5orIE6woHrWKLa8bQi0ZSYC238DDyUxtA5NVHgsabIQtS8Ol siQqH0RZjv8sihASG4GfHrwDIoHjrm7ESOs3EKN6qMuPRTqu6pR0MvPNTmRzv8cp /Qj3bev7ZIA9dL5Xx4cTgDeeN7BL4P0E0Uy59A0VJkH5qPPQopB2Padoy2zYvIGw kU0cNT69VwznZ/1a0cC4RsRd2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSewNGg cgtqo64MyvqbQCojov95MB8GA1UdIwQYMBaAFOWPmOPGFCFGVFOsQlXwr7CtldJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDUzMy8yMkVEMkM5QTlG ODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlVWlVVNnhDVmZDdnNLMlYw a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZLVk0OFlVSVVaVVU2eENWZkN2c0syVjBrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDUzMy8yMkVEMkM5QTlGODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlV WlVVNnhDVmZDdnNLMlYwa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcMftwaJ/pru7VFGP20JdOgoZ+GCD5WPUKgMY4vGpRyQhbCgXt8T+O E3KVVtPMhtmkI2NGW2NDCfO4Fe1DdC4Fnl/q9C2nf/MQB6wDMMopwdviAazkw0wf IIa3R7o8T4uMV0zc3j2at5OFOAhW3OhYNJBaQEy13/7N6q+bAuG+5clR4Pgn/Sg6 dMnfvFxrejNZrsp7hPzCBQL6N/ibB+Ij1lptY25/i/33IPbgVd1cam3HldA9r/Tr xx1J//jUnTie8AQ5HryXHQ0FsptB54+ghugwC/7RHXe8MHEXeajnV7NoA7hpkdXq UwLUzWLU6XKwIHxDTmvayrigh9/Gh5wh -----END CERTIFICATE-----Generated at Sun Oct 19 19:08:45 2025 by rpki-client