$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: pQlzxOeQTljk/JzTEv4IKFZQgCzU45GXtHbCmFTK7NQ= Subject key identifier: EF:49:3F:5F:B0:BB:FD:E7:39:01:AA:CC:65:B8:C5:24:27:4C:42:81 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C6F Signing time: Sun 02 Nov 2025 18:31:44 +0000 Manifest this update: Sun 02 Nov 2025 18:31:43 +0000 Manifest next update: Sun 09 Nov 2025 18:31:43 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: KxZFAXRcfcsg52gECfVhHjmKw/bZ6BVqMoEXdm4/Vww=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Nov 2 18:31:43 2025 GMT Not After : Nov 9 18:31:43 2025 GMT Subject: CN=6907a390-5c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:06:5e:29:59:72:f1:01:ed:e6:66:be:24: 5c:06:ce:f7:37:0f:f9:15:7b:19:52:45:83:c2:74: a4:24:56:d8:82:59:31:d5:02:f9:53:b9:ff:20:f6: d0:bf:4c:50:32:26:9f:d7:ee:8a:ed:1e:0c:f0:9f: 88:3e:82:bc:d6:b6:1f:3d:82:39:92:a2:07:0b:de: 64:3f:08:59:4b:a2:df:ea:e0:73:6e:63:41:97:dd: ed:1a:0b:21:cf:8a:b8:45:ae:f2:00:e5:d0:27:cb: 49:c2:2a:7b:38:07:e1:81:0e:07:51:9d:0e:54:60: cf:b2:af:60:37:bc:7c:9b:51:a0:4f:30:77:87:53: 76:a2:95:92:65:99:04:1d:55:74:04:f5:3d:45:1a: 23:db:34:bf:1d:ff:fc:31:96:65:15:e8:e0:90:8b: 88:a0:dc:8e:68:88:33:2f:e6:11:5a:73:19:6b:ef: d0:b1:df:9c:a7:43:59:96:b9:11:e8:7e:32:e5:8c: 8c:37:7f:5b:27:1d:0e:ab:8d:ef:d9:5b:00:a0:74: 80:0b:f5:bf:8d:f2:8a:d8:5f:df:30:a8:4d:e6:23: 80:79:b2:b3:dc:c9:9c:8f:81:8d:08:eb:d2:e5:ae: a6:cf:bf:49:cb:51:68:45:ed:b3:b2:83:08:68:2e: 78:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:49:3F:5F:B0:BB:FD:E7:39:01:AA:CC:65:B8:C5:24:27:4C:42:81 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:6b:d4:1a:70:d3:e4:0e:94:43:36:8f:94:0a:ce:3a:2c:59: 53:6f:a9:04:2e:a2:09:22:9b:9d:21:9d:2f:68:fa:64:88:45: 8f:7a:d1:ce:14:40:6c:50:53:16:d4:82:8b:9a:58:31:ce:c2: ff:a9:b8:9b:5f:fe:af:25:1f:09:c4:d9:ef:66:e8:ea:01:d3: c3:cf:19:bc:18:e0:e6:9a:9b:86:da:c9:d9:a8:cd:ed:59:3e: 90:19:77:f1:47:5b:a1:ac:7d:92:84:bf:dc:34:fb:05:40:6f: af:a4:d9:0b:fc:74:af:ac:f5:66:47:65:c8:51:6c:7d:93:7c: 7a:d9:d5:39:50:e8:92:3d:15:85:9c:ce:2a:c6:eb:79:37:fe: 35:ce:46:cb:f1:00:0e:67:65:5b:06:ed:4f:e1:f0:83:f7:51: a8:01:81:79:05:4e:c0:ba:c1:1c:ce:59:68:cb:49:36:4e:a9: b3:0a:6e:0a:b5:dd:69:7b:b0:c4:33:2f:2a:eb:a8:b1:da:16: 7d:26:9f:cb:38:85:ae:dd:6b:f3:a9:82:66:b5:ca:49:6f:e1: 53:a5:38:ba:82:86:7b:c3:8f:ad:41:63:ad:f0:f7:2f:10:31: 95:6e:d6:4b:a6:dc:d4:f3:26:0d:de:21:d6:e8:1f:9a:ea:30: f7:67:e1:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUxMTAyMTgzMTQzWhcNMjUxMTA5MTgzMTQzWjAYMRYwFAYD VQQDEw02OTA3YTM5MC01YzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuncGXilZcvEB7eZmviRcBs73Nw/5FXsZUkWDwnSkJFbYglkx1QL5U7n/IPbQ v0xQMiaf1+6K7R4M8J+IPoK81rYfPYI5kqIHC95kPwhZS6Lf6uBzbmNBl93tGgsh z4q4Ra7yAOXQJ8tJwip7OAfhgQ4HUZ0OVGDPsq9gN7x8m1GgTzB3h1N2opWSZZkE HVV0BPU9RRoj2zS/Hf/8MZZlFejgkIuIoNyOaIgzL+YRWnMZa+/Qsd+cp0NZlrkR 6H4y5YyMN39bJx0Oq43v2VsAoHSAC/W/jfKK2F/fMKhN5iOAebKz3Mmcj4GNCOvS 5a6mz79Jy1FoRe2zsoMIaC54QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9JP1+w u/3nOQGqzGW4xSQnTEKBMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfa9QacNPkDpRDNo+UCs46LFlTb6kELqIJIpudIZ0vaPpkiEWPetHO FEBsUFMW1IKLmlgxzsL/qbibX/6vJR8JxNnvZujqAdPDzxm8GODmmpuG2snZqM3t WT6QGXfxR1uhrH2ShL/cNPsFQG+vpNkL/HSvrPVmR2XIUWx9k3x62dU5UOiSPRWF nM4qxut5N/41zkbL8QAOZ2VbBu1P4fCD91GoAYF5BU7AusEczlloy0k2TqmzCm4K td1pe7DEMy8q66ix2hZ9Jp/LOIWu3WvzqYJmtcpJb+FTpTi6goZ7w4+tQWOt8Pcv EDGVbtZLptzU8yYN3iHW6B+a6jD3Z+E7 -----END CERTIFICATE-----Generated at Tue Nov 4 13:20:55 2025 by rpki-client