$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft File: dBBmhNVnVypTS-yentek_D2x4sY.mft (raw, json) Hash identifier: iAzC0ZLVN+YJhNuE4X76j+TPqG3Fqsh6yZaJ/luyXZY= Subject key identifier: 67:12:74:16:E4:D6:A4:B5:AE:A1:D9:71:10:9D:BB:0B:E5:0C:9F:1A Authority key identifier: 74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 Certificate issuer: /CN=A911A0B9/serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Certificate serial: 0474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft Manifest number: 0467 Signing time: Wed 05 Nov 2025 00:16:36 +0000 Manifest this update: Wed 05 Nov 2025 00:16:35 +0000 Manifest next update: Wed 12 Nov 2025 00:16:35 +0000 Files and hashes: 1: dBBmhNVnVypTS-yentek_D2x4sY.crl (hash: MkhTHKUjZXCvAx+q43Tmc+DsWHihocpD6rtqYxIvN+A=) 2: 79B9645874F911F0BD52962FC4F9AE02.roa (hash: wu+Dox9IU3hwRlFzpqIU7gx86wEYNjyUbkdxdJNUmAk=) 3: A4819EE074F811F0B6925F6DC4F9AE02.roa (hash: ZoO9/vgjXlzY6ba7aXl9T6bpn7UBr556K0Ew0N0yuz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1140 (0x474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0B9, serialNumber=74106684D567572A534BEC9E9ED7A4FC3DB1E2C6 Validity Not Before: Nov 5 00:16:35 2025 GMT Not After : Nov 12 00:16:35 2025 GMT Subject: CN=690a9764-c529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:c9:35:81:09:90:a5:1c:f8:c1:46:01:a9: 17:81:db:3f:e2:82:72:af:0f:42:4f:35:3f:14:8d: 0b:99:b2:d0:29:86:55:00:75:96:dd:6f:69:f9:6d: 66:f8:97:92:7d:b8:7e:8c:d5:1a:d9:d5:f2:ba:16: 8d:11:20:04:ba:bc:80:1d:07:ab:57:55:e0:86:05: c5:26:e6:83:f6:79:20:57:2f:bc:56:b7:30:20:df: 56:e4:df:64:99:96:ed:49:b8:16:f8:b9:c0:dc:c5: 5f:09:64:60:05:01:18:ea:47:ce:f3:b3:63:de:36: 2c:92:5b:3d:d9:ea:12:49:76:84:b8:10:88:e5:a2: 62:da:ae:15:47:8b:29:43:a7:75:b0:ef:fc:a0:f8: b6:f5:37:63:c2:46:9f:41:c6:f8:6d:72:14:f7:8a: 6d:83:f3:55:91:58:be:9c:5c:21:b4:cf:e7:f1:c4: b3:14:37:64:eb:86:23:c0:8b:82:65:ac:84:ca:87: 5a:ea:1c:aa:20:a9:c5:34:71:08:1f:e2:cc:8c:3d: 1a:94:a5:e4:75:70:2e:e6:b8:02:99:f1:a0:17:43: 69:10:64:74:25:d4:07:6c:61:12:4d:89:8e:3a:80: f4:24:12:38:3a:35:d1:3e:cc:72:22:3e:b6:8c:f2: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:12:74:16:E4:D6:A4:B5:AE:A1:D9:71:10:9D:BB:0B:E5:0C:9F:1A X509v3 Authority Key Identifier: keyid:74:10:66:84:D5:67:57:2A:53:4B:EC:9E:9E:D7:A4:FC:3D:B1:E2:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBBmhNVnVypTS-yentek_D2x4sY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0B9/2E06D6DE6FB811ECA5677C78C4F9AE02/dBBmhNVnVypTS-yentek_D2x4sY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:73:ae:09:a4:fd:6c:8d:26:2f:a4:a1:16:80:18:f5:79:e3: 28:0e:2f:5c:90:32:9c:d5:cb:80:1d:f8:07:98:bc:7e:30:a3: fb:c2:de:1f:da:05:55:cf:62:73:44:bf:c8:23:0d:9b:2b:1f: d3:12:70:3f:dc:d0:ab:40:d1:cc:28:b1:d9:ae:95:c2:29:08: 5a:c8:61:46:c7:32:49:d8:e9:b5:fd:e4:f0:2c:05:1f:c9:31: 2a:27:4a:e6:16:f0:85:32:2a:7b:c1:18:a8:ea:2b:27:61:a8: aa:39:31:57:51:1d:ed:ab:fb:83:13:f5:d6:a2:af:6e:9e:44: b8:46:21:18:f0:66:d8:f6:bd:05:fd:61:26:fe:4d:4c:b2:33: bb:ea:02:6f:f7:1f:72:49:86:6c:4f:d5:ba:6a:49:71:15:6a: 5f:35:9d:40:82:bb:74:d4:48:c3:6d:b6:ea:60:db:19:cd:41: 7b:e7:41:80:94:b7:2f:f3:2a:fa:8c:93:45:2a:44:6c:d4:5d: 43:12:49:55:d1:0e:af:b3:a4:69:2f:f0:bd:76:66:4c:13:b5: e1:26:42:26:6a:e6:67:e1:f6:70:fb:f1:20:dc:9a:23:fa:ec: 4a:f2:f7:bf:4d:23:6e:73:ad:36:90:84:b4:55:3f:18:93:6a: c8:74:17:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQjkxMTAvBgNVBAUTKDc0MTA2Njg0RDU2NzU3MkE1MzRCRUM5RTlFRDdBNEZD M0RCMUUyQzYwHhcNMjUxMTA1MDAxNjM1WhcNMjUxMTEyMDAxNjM1WjAYMRYwFAYD VQQDEw02OTBhOTc2NC1jNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI3JNYEJkKUc+MFGAakXgds/4oJyrw9CTzU/FI0LmbLQKYZVAHWW3W9p+W1m +JeSfbh+jNUa2dXyuhaNESAEuryAHQerV1XghgXFJuaD9nkgVy+8VrcwIN9W5N9k mZbtSbgW+LnA3MVfCWRgBQEY6kfO87Nj3jYskls92eoSSXaEuBCI5aJi2q4VR4sp Q6d1sO/8oPi29TdjwkafQcb4bXIU94ptg/NVkVi+nFwhtM/n8cSzFDdk64YjwIuC ZayEyoda6hyqIKnFNHEIH+LMjD0alKXkdXAu5rgCmfGgF0NpEGR0JdQHbGESTYmO OoD0JBI4OjXRPsxyIj62jPLtjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcSdBbk 1qS1rqHZcRCduwvlDJ8aMB8GA1UdIwQYMBaAFHQQZoTVZ1cqU0vsnp7XpPw9seLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBCOS8yRTA2RDZERTZG QjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5cFRTLXllbnRla19EMng0 c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RCQm1oTlZuVnlwVFMteWVudGVrX0QyeDRzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTBCOS8yRTA2RDZERTZGQjgxMUVDQTU2NzdDNzhDNEY5QUUwMi9kQkJtaE5WblZ5 cFRTLXllbnRla19EMng0c1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIc64JpP1sjSYvpKEWgBj1eeMoDi9ckDKc1cuAHfgHmLx+MKP7wt4f 2gVVz2JzRL/IIw2bKx/TEnA/3NCrQNHMKLHZrpXCKQhayGFGxzJJ2Om1/eTwLAUf yTEqJ0rmFvCFMip7wRio6isnYaiqOTFXUR3tq/uDE/XWoq9unkS4RiEY8GbY9r0F /WEm/k1MsjO76gJv9x9ySYZsT9W6aklxFWpfNZ1Agrt01EjDbbbqYNsZzUF750GA lLcv8yr6jJNFKkRs1F1DEklV0Q6vs6RpL/C9dmZME7XhJkImauZn4fZw+/Eg3Joj +uxK8ve/TSNuc602kIS0VT8Yk2rIdBeU -----END CERTIFICATE-----Generated at Wed Nov 5 15:42:51 2025 by rpki-client