$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: ggoDqeTHROmfIznpUGzmM9n9d+P82BJKkfrZz9rPMAU= Subject key identifier: 0D:BD:C9:D1:24:02:35:A4:EA:19:DC:7E:F1:2A:4F:DB:2E:51:4D:11 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0CE7 Signing time: Thu 30 Oct 2025 18:04:53 +0000 Manifest this update: Thu 30 Oct 2025 18:04:52 +0000 Manifest next update: Thu 06 Nov 2025 18:04:52 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: CGkIDZvvPRg5qDsWqwCc6Yo3ceLDq4qvoygIxKaIrvg=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Oct 30 18:04:52 2025 GMT Not After : Nov 6 18:04:52 2025 GMT Subject: CN=6903a8c5-35c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:98:15:bc:22:7b:ca:cb:81:dd:56:5d:47: a0:98:b1:98:26:dd:46:f5:7c:f4:71:4b:49:6d:8b: 8a:7e:5e:67:75:25:c8:06:65:76:33:9b:e3:e2:20: a7:77:ad:9a:77:c5:dc:0a:99:b1:0d:0f:17:1a:1f: ad:ff:e2:09:ee:7b:39:50:f8:a3:ab:1b:cf:d7:2f: 8a:57:62:b0:e6:31:3c:11:b2:c5:ce:95:7a:1b:46: 37:49:97:97:71:8d:7f:99:34:3a:bf:7e:79:f6:1d: 2f:5c:55:6f:b7:85:46:1d:fc:6e:2c:86:cb:d1:af: f7:4f:18:3b:d6:d9:5a:dd:00:32:47:99:1d:b2:bc: 1f:b3:0a:b5:9c:40:05:4f:37:0d:45:cc:2b:f1:24: 27:c4:04:c2:1c:01:cc:21:56:25:79:08:63:06:12: dc:b4:14:b3:46:48:18:96:1c:0f:c0:52:fa:c8:8a: 47:af:c8:4f:6e:73:7b:ab:4b:94:9e:41:fe:ec:65: 8b:cd:5e:71:da:d2:30:61:0c:03:93:3c:9e:13:37: 4a:ee:16:2e:16:1f:8c:d2:98:94:45:0a:c0:36:3e: 7c:6e:c8:35:51:08:6f:b5:25:df:7b:07:4e:cb:67: 8b:4c:04:9d:b8:2f:9a:81:15:ce:fa:0f:89:67:15: d6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BD:C9:D1:24:02:35:A4:EA:19:DC:7E:F1:2A:4F:DB:2E:51:4D:11 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d3:52:d2:71:ff:94:27:bb:dd:19:95:cd:d9:16:ad:c2:07: b7:0c:41:4a:08:8c:cc:6a:47:c1:79:14:0d:98:62:03:3b:40: 75:42:8a:a4:1a:9e:f3:57:1d:8b:a1:a5:19:4a:66:9d:de:8d: 81:65:56:40:eb:6b:16:9a:87:50:66:a5:fe:88:8b:8a:3e:1e: 39:34:92:56:0a:ec:0f:17:a4:d0:e3:42:1e:63:b3:ae:66:d2: 44:78:4e:8a:c9:82:5f:75:4a:13:93:49:af:5a:10:0a:d7:42: 0b:d0:52:2e:2b:0b:96:e7:fb:78:f0:e1:aa:80:eb:51:f6:53: 9e:87:6e:82:18:d0:85:08:01:2a:d0:0c:87:76:5d:fa:5c:75: 82:1d:12:84:98:85:45:32:e5:df:68:53:75:90:45:77:1f:47: e1:f7:00:60:8f:54:85:48:bd:70:05:cc:76:e4:97:80:ff:3f: 49:97:db:a5:96:78:2e:85:b2:7f:c4:4b:40:0d:90:ab:71:8d: 2c:39:6a:10:6e:c5:7e:e4:24:ef:13:c1:2f:cf:7d:f6:2a:29: f9:52:ba:7a:3a:90:01:66:ed:e9:2b:85:de:04:20:45:35:58: d8:12:38:89:30:d5:68:3c:10:28:bf:ae:e2:d7:e5:d4:17:69: 10:45:56:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUxMDMwMTgwNDUyWhcNMjUxMTA2MTgwNDUyWjAYMRYwFAYD VQQDEw02OTAzYThjNS0zNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYWYFbwie8rLgd1WXUegmLGYJt1G9Xz0cUtJbYuKfl5ndSXIBmV2M5vj4iCn d62ad8XcCpmxDQ8XGh+t/+IJ7ns5UPijqxvP1y+KV2Kw5jE8EbLFzpV6G0Y3SZeX cY1/mTQ6v3559h0vXFVvt4VGHfxuLIbL0a/3Txg71tla3QAyR5kdsrwfswq1nEAF TzcNRcwr8SQnxATCHAHMIVYleQhjBhLctBSzRkgYlhwPwFL6yIpHr8hPbnN7q0uU nkH+7GWLzV5x2tIwYQwDkzyeEzdK7hYuFh+M0piURQrANj58bsg1UQhvtSXfewdO y2eLTASduC+agRXO+g+JZxXW4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA29ydEk AjWk6hncfvEqT9suUU0RMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu01LScf+UJ7vdGZXN2Ratwge3DEFKCIzMakfBeRQNmGIDO0B1Qoqk Gp7zVx2LoaUZSmad3o2BZVZA62sWmodQZqX+iIuKPh45NJJWCuwPF6TQ40IeY7Ou ZtJEeE6KyYJfdUoTk0mvWhAK10IL0FIuKwuW5/t48OGqgOtR9lOeh26CGNCFCAEq 0AyHdl36XHWCHRKEmIVFMuXfaFN1kEV3H0fh9wBgj1SFSL1wBcx25JeA/z9Jl9ul lnguhbJ/xEtADZCrcY0sOWoQbsV+5CTvE8Evz332Kin5Urp6OpABZu3pK4XeBCBF NVjYEjiJMNVoPBAov67i1+XUF2kQRVbv -----END CERTIFICATE-----Generated at Fri Oct 31 05:41:24 2025 by rpki-client