$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: 4i9M+R0s3Uo12h98umqvYeKHg33tZ1rkKX9395kffrg= Subject key identifier: E1:DC:C5:D7:86:68:BA:B4:71:B5:50:7E:F0:C8:1F:B7:3E:6C:61:80 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C92 Signing time: Sun 02 Nov 2025 18:19:45 +0000 Manifest this update: Sun 02 Nov 2025 18:19:45 +0000 Manifest next update: Sun 09 Nov 2025 18:19:45 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: iBBK9OGaSYlK1g5l2NLDxSLSYx7fMtr0IVpyny5dXUY=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: f31uXjqb4DNcM+Zpb2Aaj4CME0IwegAYYNe/FOHZjWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3225 (0xc99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Nov 2 18:19:45 2025 GMT Not After : Nov 9 18:19:45 2025 GMT Subject: CN=6907a0c1-c7b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b7:ae:be:51:75:c7:e8:8a:03:b3:cb:6b:80: 67:d6:ce:ff:44:f8:1c:ea:c1:b3:4d:fc:e4:cb:71: c3:84:0b:96:77:2e:41:27:fd:62:c1:84:9c:80:6e: fd:bd:cc:5c:c7:e6:5e:20:84:fd:ea:43:b4:64:b6: 48:25:1a:b8:6f:68:1f:70:89:29:77:71:f8:fe:92: 8d:e7:67:88:e4:eb:6f:9b:11:99:0d:11:93:58:5b: 73:b3:2f:0b:0c:e1:37:ae:9c:58:95:97:48:ac:7e: 26:91:3e:20:b2:45:5e:33:2e:b9:74:20:bc:49:39: 47:ab:87:34:17:30:2f:49:33:f1:1b:18:29:80:7d: 4b:3d:d7:89:f4:4a:e4:4c:bb:ea:ed:a6:c1:b9:5f: 3c:7f:85:49:e6:28:aa:d1:9c:69:ce:d4:ba:f6:85: 37:6f:8c:12:1e:71:12:73:6a:d7:c3:c2:5f:37:a6: f6:60:45:9e:e9:0f:90:26:61:34:ee:31:a4:35:c9: c2:45:3d:9c:fc:7a:4f:84:3b:94:df:a8:79:45:05: e3:c4:75:e6:a8:d6:66:43:f2:e5:56:4f:99:b7:42: 92:8c:56:98:26:b3:d3:70:9c:71:c5:73:66:5a:c3: 1a:6d:7b:6d:9d:6a:66:ae:46:5e:13:a2:04:bc:54: 48:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DC:C5:D7:86:68:BA:B4:71:B5:50:7E:F0:C8:1F:B7:3E:6C:61:80 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:7d:d4:6d:08:3d:37:59:3d:e0:e0:b2:9f:0f:1b:5f:db:3d: 02:e4:2c:d1:70:e3:1a:3e:f4:18:2a:18:28:79:bb:9f:60:f6: 5b:be:5c:9d:05:ae:8e:1a:db:58:af:6e:84:d8:40:77:a3:e2: 05:12:e7:85:d6:b5:a5:12:51:a3:8a:93:c3:98:b9:b2:33:d0: f6:5b:61:d0:cd:18:f5:10:54:6e:28:82:b7:79:6f:67:78:07: 8b:4d:ee:23:36:27:e4:ed:b7:ef:a4:6a:fe:02:d3:4a:fe:4b: 64:42:5c:95:48:ea:fc:a2:2f:12:af:19:1a:44:8d:8d:5b:9a: c9:af:fc:2e:11:61:66:c4:51:1b:40:8a:9e:48:5f:61:a9:41: a0:8c:70:32:d4:25:5d:68:6e:3b:9a:dd:02:96:04:81:d8:c9: b9:ba:11:d2:56:e1:f1:c8:94:8b:8a:78:e6:53:6a:40:00:e5: d1:09:c2:63:dc:77:35:2a:81:10:96:3a:ff:bc:3a:81:59:42: a2:42:47:3c:98:49:30:ab:e6:f9:27:ce:90:a8:11:e1:77:da: ed:41:98:13:d9:8f:0b:32:4b:94:e9:91:66:57:95:96:b4:19: d4:df:3f:cb:ea:af:f3:24:e0:c2:26:d0:b9:a1:b9:92:be:7c: 26:e6:e2:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUxMTAyMTgxOTQ1WhcNMjUxMTA5MTgxOTQ1WjAYMRYwFAYD VQQDEw02OTA3YTBjMS1jN2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvreuvlF1x+iKA7PLa4Bn1s7/RPgc6sGzTfzky3HDhAuWdy5BJ/1iwYScgG79 vcxcx+ZeIIT96kO0ZLZIJRq4b2gfcIkpd3H4/pKN52eI5OtvmxGZDRGTWFtzsy8L DOE3rpxYlZdIrH4mkT4gskVeMy65dCC8STlHq4c0FzAvSTPxGxgpgH1LPdeJ9Erk TLvq7abBuV88f4VJ5iiq0ZxpztS69oU3b4wSHnESc2rXw8JfN6b2YEWe6Q+QJmE0 7jGkNcnCRT2c/HpPhDuU36h5RQXjxHXmqNZmQ/LlVk+Zt0KSjFaYJrPTcJxxxXNm WsMabXttnWpmrkZeE6IEvFRI4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHcxdeG aLq0cbVQfvDIH7c+bGGAMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBefdRtCD03WT3g4LKfDxtf2z0C5CzRcOMaPvQYKhgoebufYPZbvlyd Ba6OGttYr26E2EB3o+IFEueF1rWlElGjipPDmLmyM9D2W2HQzRj1EFRuKIK3eW9n eAeLTe4jNifk7bfvpGr+AtNK/ktkQlyVSOr8oi8SrxkaRI2NW5rJr/wuEWFmxFEb QIqeSF9hqUGgjHAy1CVdaG47mt0ClgSB2Mm5uhHSVuHxyJSLinjmU2pAAOXRCcJj 3Hc1KoEQljr/vDqBWUKiQkc8mEkwq+b5J86QqBHhd9rtQZgT2Y8LMkuU6ZFmV5WW tBnU3z/L6q/zJODCJtC5obmSvnwm5uKH -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:27 2025 by rpki-client