$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: QLCpLFsWDE18MAQtfSJSw0tnrNJgTowlIjwiXAXM35g= Subject key identifier: 22:B6:AE:32:59:3D:18:B4:94:7A:55:B6:EE:9F:D8:C2:C8:00:D4:4E Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 0950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 0948 Signing time: Sun 02 Nov 2025 20:08:45 +0000 Manifest this update: Sun 02 Nov 2025 20:08:45 +0000 Manifest next update: Sun 09 Nov 2025 20:08:45 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: 05y1b1Sd8qvxS2xUWICNiKe0IzwPAcXfLApdTE2pvoM=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Nov 2 20:08:45 2025 GMT Not After : Nov 9 20:08:45 2025 GMT Subject: CN=6907ba4d-ab37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:4c:2c:28:53:95:76:82:8a:54:f2:bd:6e: 7b:30:19:2e:ae:3e:76:35:29:f6:9f:e7:74:01:16: 0f:cd:a5:a1:a1:0b:07:7c:de:2f:50:ac:b2:71:3d: 9c:20:94:a7:f6:6c:be:b3:2d:41:94:94:c6:5a:dc: 9b:d5:2c:f5:3b:ef:a5:23:88:c4:39:11:d5:48:c9: 25:ff:ce:6e:f7:8e:9c:bd:7f:5e:29:36:5e:92:20: e5:63:85:ba:c0:73:47:aa:41:d8:73:df:ae:ee:d2: 2b:0b:78:b0:f9:9e:44:ef:3a:b9:50:8c:28:9c:b9: 47:00:df:d3:1e:4f:1e:cf:67:92:4b:c4:23:42:97: 4b:db:a2:12:21:33:67:64:d9:eb:d6:88:ea:16:10: 67:2c:a5:aa:35:5e:eb:52:05:bd:5b:01:e3:a3:5e: 9e:49:4d:f8:dd:53:08:f9:cf:c3:5e:ac:ba:83:64: 1b:70:69:b1:9e:40:5e:a6:2e:69:58:cf:4e:d8:ff: 68:54:08:03:31:76:d3:92:bd:36:1a:75:5c:0c:6b: 8a:68:4e:e6:c7:08:81:38:67:b1:5c:4f:49:0e:ba: 42:eb:99:63:8e:ab:b9:1c:bf:ce:61:3f:8e:d1:98: e8:e9:05:c9:75:6b:71:7a:70:f0:b1:b3:39:15:13: 1e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B6:AE:32:59:3D:18:B4:94:7A:55:B6:EE:9F:D8:C2:C8:00:D4:4E X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:5a:3e:12:d3:09:a0:77:0c:d5:ab:8b:2c:5e:56:54:33:39: d3:3b:cb:d8:1e:ae:ea:1d:b1:1b:a3:91:31:8b:31:63:2a:b3: 08:6a:26:73:5e:c7:8d:0d:0e:39:39:fc:65:1b:0e:4c:16:30: 86:3c:14:49:f9:a5:06:8f:b2:74:71:b8:42:00:12:7c:b1:bc: 96:0b:13:31:6b:de:cb:98:07:78:9f:7a:ea:4a:75:22:e5:0e: 6b:f2:fd:d5:9c:ec:87:04:e3:70:63:84:d6:9b:cb:08:c7:09: 56:88:0a:f8:1c:26:4e:a9:49:b4:69:2f:65:8b:93:86:ba:03: 1a:9d:67:e8:be:30:cf:1e:c1:50:9a:00:a1:d5:f3:97:47:a9: 13:e3:b2:1b:40:6e:b4:68:97:f9:d7:73:d0:ca:90:71:00:6d: c0:51:80:fc:a6:87:5e:15:53:ff:e9:48:bc:b1:e8:0e:19:e1: 2e:8c:3d:aa:3d:3a:30:5f:25:8c:15:3d:c6:83:fc:5d:57:5a: ce:61:79:a5:af:8f:79:62:4e:dc:f3:3f:f8:c6:f9:6a:19:8a: 56:39:05:c6:6e:f6:3e:d9:b4:98:a5:ad:5b:ee:20:a8:a5:46: 19:68:a3:c3:05:8f:dd:2c:48:63:0c:01:65:54:ea:ed:33:ce: 8c:0f:1e:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUxMTAyMjAwODQ1WhcNMjUxMTA5MjAwODQ1WjAYMRYwFAYD VQQDEw02OTA3YmE0ZC1hYjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC5MLChTlXaCilTyvW57MBkurj52NSn2n+d0ARYPzaWhoQsHfN4vUKyycT2c IJSn9my+sy1BlJTGWtyb1Sz1O++lI4jEORHVSMkl/85u946cvX9eKTZekiDlY4W6 wHNHqkHYc9+u7tIrC3iw+Z5E7zq5UIwonLlHAN/THk8ez2eSS8QjQpdL26ISITNn ZNnr1ojqFhBnLKWqNV7rUgW9WwHjo16eSU343VMI+c/DXqy6g2QbcGmxnkBepi5p WM9O2P9oVAgDMXbTkr02GnVcDGuKaE7mxwiBOGexXE9JDrpC65ljjqu5HL/OYT+O 0Zjo6QXJdWtxenDwsbM5FRMevQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK2rjJZ PRi0lHpVtu6f2MLIANROMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTWj4S0wmgdwzVq4ssXlZUMznTO8vYHq7qHbEbo5ExizFjKrMIaiZz XseNDQ45OfxlGw5MFjCGPBRJ+aUGj7J0cbhCABJ8sbyWCxMxa97LmAd4n3rqSnUi 5Q5r8v3VnOyHBONwY4TWm8sIxwlWiAr4HCZOqUm0aS9li5OGugManWfovjDPHsFQ mgCh1fOXR6kT47IbQG60aJf513PQypBxAG3AUYD8podeFVP/6Ui8segOGeEujD2q PTowXyWMFT3Gg/xdV1rOYXmlr495Yk7c8z/4xvlqGYpWOQXGbvY+2bSYpa1b7iCo pUYZaKPDBY/dLEhjDAFlVOrtM86MDx6w -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:17 2025 by rpki-client