$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: WArdjcaMIt5KX2SPQmCEs9m9yVQ3WWo8bCin5uDsgq4= Subject key identifier: CF:10:75:46:15:12:25:07:90:3E:A0:0E:ED:FC:EB:A4:53:6C:F3:A4 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: B8 Signing time: Fri 07 Nov 2025 01:26:26 +0000 Manifest this update: Fri 07 Nov 2025 01:26:25 +0000 Manifest next update: Fri 14 Nov 2025 01:26:25 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: b+DZvvnIiDRTpnw5riba2kP3/934YNGCXCZHIr7JL64=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Nov 2025 01:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Nov 7 01:26:25 2025 GMT Not After : Nov 14 01:26:25 2025 GMT Subject: CN=690d4ac1-acbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:3e:51:53:37:d0:96:1e:66:2d:fe:73:fe: 34:30:48:80:70:07:9c:c4:c7:cc:b7:31:c6:42:8c: e0:9e:07:f9:b8:c3:3b:7c:12:88:16:1c:91:ab:ff: dd:42:4e:6b:45:16:68:a4:4b:fd:a0:ed:ac:7c:c5: 10:1e:4a:de:8e:97:2b:df:c2:44:6c:21:1c:4c:c3: 46:1d:2d:18:19:3b:dc:5e:e0:62:c2:6b:c4:72:4b: 56:58:c7:4d:7b:ce:04:c5:1d:66:8c:d8:1b:6b:f7: c0:86:92:18:a9:6e:fe:14:54:fc:a0:7b:7d:68:e9: b0:4e:be:d9:57:67:21:8d:ca:bb:53:62:15:5e:08: ea:5f:ef:b6:03:72:50:e6:c1:de:10:f5:eb:29:fd: ea:0b:84:7f:5a:35:9b:8e:5c:17:0c:7f:1a:22:76: c2:51:6a:f6:9d:a9:69:4b:44:38:6d:ca:a1:b9:82: 08:6a:eb:30:d7:d9:48:0c:dd:c4:1c:b3:fd:3d:1f: 58:e6:a1:b0:51:cc:bc:c9:e0:21:8e:83:8d:c8:9a: 60:c6:78:1d:00:dd:48:83:31:b6:2f:48:e0:08:95: b4:03:8b:38:f8:71:dd:9d:1d:45:b2:b8:eb:4e:49: d4:8f:66:79:36:e5:3b:fc:68:92:52:ea:ef:18:50: 5d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:10:75:46:15:12:25:07:90:3E:A0:0E:ED:FC:EB:A4:53:6C:F3:A4 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a5:45:9c:ea:41:6a:63:76:a9:4f:3a:29:90:bc:21:e9:73: a2:fb:5a:de:6d:cd:f6:4e:28:82:ba:97:55:cc:37:07:a8:77: 2b:1b:5b:17:91:98:25:da:b0:df:2b:21:ba:5a:d3:2d:72:18: 30:ca:ae:c4:8d:57:c8:bf:17:1e:61:24:2f:8c:95:77:19:bb: c1:54:6b:8f:37:0c:58:b2:74:e6:f8:f3:15:ee:d8:91:07:51: a1:28:4a:dd:a4:0e:ca:58:4c:a9:5c:72:de:d2:7a:81:05:bd: b0:32:21:71:21:94:04:10:0b:4d:50:c9:76:9c:89:c9:c9:29: 3b:49:75:9c:63:d8:f6:48:21:73:21:a7:21:03:3d:42:a1:60: 7e:79:16:0b:3b:aa:02:17:97:e6:a6:85:c4:ac:81:3a:c2:f8: ef:eb:36:0a:8d:94:4a:e2:8e:09:e1:37:08:ae:1a:2a:11:b4: 8f:a2:03:13:ce:c1:92:51:5e:1f:fb:bc:ed:5a:6d:22:1a:2e: 11:68:74:3e:2f:ff:48:5f:df:23:dd:0c:c9:87:d4:4c:6e:3f: d6:bc:30:98:99:15:eb:ea:65:82:aa:a1:f6:c7:5b:31:81:e6: 74:89:6a:c5:1e:04:36:69:a1:9a:7f:6e:ff:af:e6:49:12:be: 1d:50:28:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEM0UxMTAvBgNVBAUTKDYwNkVCMjk1ODI1NEFDOThCNjMzNkVBQTQxQUM4MEIy RENCMTlDNkUwHhcNMjUxMTA3MDEyNjI1WhcNMjUxMTE0MDEyNjI1WjAYMRYwFAYD VQQDEw02OTBkNGFjMS1hY2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUY+UVM30JYeZi3+c/40MEiAcAecxMfMtzHGQozgngf5uMM7fBKIFhyRq//d Qk5rRRZopEv9oO2sfMUQHkrejpcr38JEbCEcTMNGHS0YGTvcXuBiwmvEcktWWMdN e84ExR1mjNgba/fAhpIYqW7+FFT8oHt9aOmwTr7ZV2chjcq7U2IVXgjqX++2A3JQ 5sHeEPXrKf3qC4R/WjWbjlwXDH8aInbCUWr2nalpS0Q4bcqhuYIIausw19lIDN3E HLP9PR9Y5qGwUcy8yeAhjoONyJpgxngdAN1IgzG2L0jgCJW0A4s4+HHdnR1Fsrjr TknUj2Z5NuU7/GiSUurvGFBdbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8QdUYV EiUHkD6gDu3866RTbPOkMB8GA1UdIwQYMBaAFGBuspWCVKyYtjNuqkGsgLLcsZxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEQzRS9CNURGQzhDMDlG RDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJKaTJNMjZxUWF5QXN0eXhu RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5HNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEQzRS9CNURGQzhDMDlGRDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJK aTJNMjZxUWF5QXN0eXhuRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpUWc6kFqY3apTzopkLwh6XOi+1rebc32TiiCupdVzDcHqHcrG1sX kZgl2rDfKyG6WtMtchgwyq7EjVfIvxceYSQvjJV3GbvBVGuPNwxYsnTm+PMV7tiR B1GhKErdpA7KWEypXHLe0nqBBb2wMiFxIZQEEAtNUMl2nInJySk7SXWcY9j2SCFz IachAz1CoWB+eRYLO6oCF5fmpoXErIE6wvjv6zYKjZRK4o4J4TcIrhoqEbSPogMT zsGSUV4f+7ztWm0iGi4RaHQ+L/9IX98j3QzJh9RMbj/WvDCYmRXr6mWCqqH2x1sx geZ0iWrFHgQ2aaGaf27/r+ZJEr4dUCgt -----END CERTIFICATE-----Generated at Fri Nov 7 16:40:23 2025 by rpki-client