$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: gCasbYQnLbG9hJDHvpoQ7fUpN+JmbSZTRs8J/VEYOs0= Subject key identifier: F6:52:5A:DA:55:A3:6A:18:25:05:EC:56:CE:1D:FF:05:2B:A1:A7:22 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0225 Signing time: Mon 03 Nov 2025 02:02:06 +0000 Manifest this update: Mon 03 Nov 2025 02:02:05 +0000 Manifest next update: Mon 10 Nov 2025 02:02:05 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: DOk+7zG9LkyJX+zCXz1iaI6W7YZC2q1pP7qxv3nf1TE=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Nov 3 02:02:05 2025 GMT Not After : Nov 10 02:02:05 2025 GMT Subject: CN=69080d1d-ccd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cc:d5:21:85:a6:da:8f:57:e6:de:b9:c6:1d: 73:7b:fc:0b:fa:d7:0b:d6:14:ab:7e:5a:a5:3e:74: 30:f1:67:7b:81:23:94:39:6b:9b:f5:6f:70:e0:93: 6e:7e:42:cb:62:4d:a3:8f:23:7c:66:4c:92:7e:af: 0c:7f:a7:ce:a4:6b:25:5c:98:f0:b2:75:f9:af:2d: bd:e7:e6:3d:e6:74:d8:3b:43:e0:ee:6b:53:e8:56: 66:30:f2:94:1e:e6:8c:3e:43:c1:ac:9c:64:8a:77: 88:e3:e5:03:eb:16:7f:85:7e:2c:87:ab:11:21:c9: 19:d3:74:9f:2a:06:78:5c:3c:37:8f:31:9e:b3:cd: 9e:a5:9c:18:69:8d:63:87:60:db:a8:ad:a2:3f:e8: 2f:71:36:e2:8c:e1:43:03:97:c0:b3:09:90:2f:ab: 98:01:43:69:a4:2e:23:f0:77:74:49:11:e6:23:92: b5:e7:ff:ef:02:34:52:a1:69:8a:b6:43:86:e3:e9: cd:7a:9e:2c:94:d9:6f:0c:98:f4:60:2e:38:59:2b: 25:ae:7a:5c:5f:1a:df:c2:f5:ef:e2:d1:48:23:b1: 1c:0c:cf:6c:84:94:35:5c:db:86:cc:69:60:3a:15: fc:92:9e:1a:91:1d:65:1e:32:05:b1:a2:a7:cc:ee: 24:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:52:5A:DA:55:A3:6A:18:25:05:EC:56:CE:1D:FF:05:2B:A1:A7:22 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:bd:3c:63:ff:2f:d4:02:33:31:56:ba:df:2b:31:01:3c:d2: 7d:38:5e:c9:6c:20:8d:00:30:b7:2c:b5:b5:3d:33:5e:d7:23: e6:54:27:13:56:6b:e1:c3:f8:17:f2:92:a4:e5:17:49:f2:de: b4:a0:ff:77:20:f6:a3:0e:5c:ce:69:99:6b:cd:b5:07:fd:08: d5:e0:6f:e5:23:28:e0:e7:43:73:22:a7:18:27:a6:99:7c:9d: b0:d1:83:6a:ff:4d:2f:46:25:ce:68:dd:25:90:1a:4d:d7:12: 93:f3:87:75:dc:49:e0:8b:5c:35:90:98:62:c4:61:6d:95:7a: 3e:f4:cf:a4:f1:56:25:24:54:4d:a4:6d:59:4c:cd:d4:42:a3: 0f:39:bd:35:48:9e:e0:3d:66:dd:c5:75:fc:ea:84:1f:c7:3c: aa:00:97:d0:21:ed:c8:2c:d5:0b:7a:f4:ab:44:88:a6:d2:22: 5f:49:fc:2a:d1:8a:f6:54:eb:cf:4d:84:f7:97:99:c5:75:25: d9:ed:77:33:56:30:d0:27:6b:f6:91:03:3a:4e:05:ef:4e:78: 82:2c:7d:f2:30:aa:30:ff:d7:75:af:44:67:13:b2:5e:37:5a: e5:81:fc:26:cf:14:89:94:f0:cf:8e:f5:46:dd:61:90:08:b1: ab:35:6d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUxMTAzMDIwMjA1WhcNMjUxMTEwMDIwMjA1WjAYMRYwFAYD VQQDEw02OTA4MGQxZC1jY2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08zVIYWm2o9X5t65xh1ze/wL+tcL1hSrflqlPnQw8Wd7gSOUOWub9W9w4JNu fkLLYk2jjyN8ZkySfq8Mf6fOpGslXJjwsnX5ry295+Y95nTYO0Pg7mtT6FZmMPKU HuaMPkPBrJxkineI4+UD6xZ/hX4sh6sRIckZ03SfKgZ4XDw3jzGes82epZwYaY1j h2DbqK2iP+gvcTbijOFDA5fAswmQL6uYAUNppC4j8Hd0SRHmI5K15//vAjRSoWmK tkOG4+nNep4slNlvDJj0YC44WSslrnpcXxrfwvXv4tFII7EcDM9shJQ1XNuGzGlg OhX8kp4akR1lHjIFsaKnzO4kpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZSWtpV o2oYJQXsVs4d/wUroaciMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIvTxj/y/UAjMxVrrfKzEBPNJ9OF7JbCCNADC3LLW1PTNe1yPmVCcT Vmvhw/gX8pKk5RdJ8t60oP93IPajDlzOaZlrzbUH/QjV4G/lIyjg50NzIqcYJ6aZ fJ2w0YNq/00vRiXOaN0lkBpN1xKT84d13Engi1w1kJhixGFtlXo+9M+k8VYlJFRN pG1ZTM3UQqMPOb01SJ7gPWbdxXX86oQfxzyqAJfQIe3ILNULevSrRIim0iJfSfwq 0Yr2VOvPTYT3l5nFdSXZ7XczVjDQJ2v2kQM6TgXvTniCLH3yMKow/9d1r0RnE7Je N1rlgfwmzxSJlPDPjvVG3WGQCLGrNW2M -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:13 2025 by rpki-client