$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: B/AmR88AbZXbI3QWDA3Tn2tpgtJ/uSo2RroRVDgcAlM= Subject key identifier: B0:09:57:1D:DE:70:31:C3:15:26:CD:DD:89:B2:E5:FA:17:26:57:1E Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 016B Signing time: Wed 05 Nov 2025 04:09:41 +0000 Manifest this update: Wed 05 Nov 2025 04:09:40 +0000 Manifest next update: Wed 12 Nov 2025 04:09:40 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: gEIV8CHKW/G4HOMePhgCNLbs/oAzIEbBA7a89q956O0=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: YgNQfKH2j9vPQAWdAUFYDmXhZo5ythnv/oTPT+Ay1+4=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: fOjJ/Gc3Xo61GkkgaAWGTG7vIfdk8OnS5/7uboXrlc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Nov 5 04:09:40 2025 GMT Not After : Nov 12 04:09:40 2025 GMT Subject: CN=690ace04-f425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:b8:dc:d6:2e:05:9b:41:ff:c0:15:e1:7c: b7:d6:cb:b9:e3:79:7c:d7:67:54:c6:f1:46:26:62: e3:d8:4c:f0:08:f7:4f:43:fc:0b:f7:66:de:34:59: 66:72:ea:e1:eb:6d:c0:a3:8e:81:ef:7d:75:02:42: 47:c5:bd:54:a0:8e:d6:2c:57:af:1b:9e:13:23:07: 0b:3e:bb:2d:56:18:63:33:7c:96:f0:5d:60:70:b1: 66:6c:39:37:af:0c:10:c0:73:2a:65:0f:9b:c6:bb: 2c:ce:74:d9:45:8e:66:68:8f:f8:55:d7:9e:0c:40: 06:8f:c0:e5:cb:d7:30:3b:d2:2e:0d:54:30:dc:82: b0:56:43:ea:2e:79:12:23:05:f1:b9:54:3a:d8:52: 71:e3:ea:80:63:be:e4:4d:7b:53:f9:0b:f2:cd:25: c6:60:90:51:58:6f:fb:74:59:ba:3a:91:3e:70:88: fc:e1:18:48:d0:9c:8d:dc:f8:56:b1:41:2b:05:60: 2c:53:a4:40:72:74:e7:6f:ba:ce:04:c3:45:24:e5: f5:18:cb:8e:65:9b:93:28:52:ee:2d:d1:51:9f:eb: 92:a9:c2:e8:1e:6a:c2:88:12:7e:39:e6:9e:ac:72: 6c:54:fa:0f:49:25:12:99:b7:f0:71:94:69:28:29: 63:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:09:57:1D:DE:70:31:C3:15:26:CD:DD:89:B2:E5:FA:17:26:57:1E X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:81:57:57:2c:13:ac:42:43:94:51:a2:28:8d:bf:a9:6d:f4: 37:8b:60:a5:a3:9b:27:b7:6d:16:03:98:0d:11:23:ab:af:28: db:55:c9:5e:0d:a8:8a:10:93:2e:ac:49:ca:42:b8:48:fb:72: ca:5e:9e:52:f1:e9:2a:93:31:f5:f7:f1:ed:70:9c:3f:1d:2b: 92:85:13:35:71:fd:83:a2:9c:c6:6c:df:45:90:56:98:cf:9d: 12:15:13:d7:a8:a0:9d:a3:09:2b:f5:56:09:67:a5:49:c3:f5: 3f:15:38:1e:e4:8c:f5:90:38:fd:ed:8b:96:d0:ac:80:1d:fd: ca:db:ba:5e:5f:97:93:c3:2f:71:d2:cd:b9:88:c2:d7:8c:f0: 4c:9c:d3:37:f4:8f:78:88:10:10:5b:99:c1:e5:17:f5:54:c5: 52:db:f1:ea:64:03:aa:71:73:f9:04:db:02:a2:8b:ce:02:5d: 6f:36:eb:93:07:80:a7:5a:85:67:0c:86:fb:f2:26:5d:39:c8: 8e:86:46:82:e9:65:af:1f:b4:eb:98:53:bb:d8:4f:4b:7a:b2: 4d:38:2b:74:ff:26:91:19:4e:b2:68:b6:3b:8d:c2:07:d2:70: 23:85:69:a3:c8:47:84:3c:eb:e5:f6:6e:78:21:2d:54:10:1f: 37:46:e6:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUxMTA1MDQwOTQwWhcNMjUxMTEyMDQwOTQwWjAYMRYwFAYD VQQDEw02OTBhY2UwNC1mNDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfO43NYuBZtB/8AV4Xy31su543l812dUxvFGJmLj2EzwCPdPQ/wL92beNFlm curh623Ao46B7311AkJHxb1UoI7WLFevG54TIwcLPrstVhhjM3yW8F1gcLFmbDk3 rwwQwHMqZQ+bxrssznTZRY5maI/4VdeeDEAGj8Dly9cwO9IuDVQw3IKwVkPqLnkS IwXxuVQ62FJx4+qAY77kTXtT+QvyzSXGYJBRWG/7dFm6OpE+cIj84RhI0JyN3PhW sUErBWAsU6RAcnTnb7rOBMNFJOX1GMuOZZuTKFLuLdFRn+uSqcLoHmrCiBJ+Oeae rHJsVPoPSSUSmbfwcZRpKCljEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAJVx3e cDHDFSbN3Ymy5foXJlceMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGgVdXLBOsQkOUUaIojb+pbfQ3i2Clo5snt20WA5gNESOrryjbVcle DaiKEJMurEnKQrhI+3LKXp5S8ekqkzH19/HtcJw/HSuShRM1cf2DopzGbN9FkFaY z50SFRPXqKCdowkr9VYJZ6VJw/U/FTge5Iz1kDj97YuW0KyAHf3K27peX5eTwy9x 0s25iMLXjPBMnNM39I94iBAQW5nB5Rf1VMVS2/HqZAOqcXP5BNsCoovOAl1vNuuT B4CnWoVnDIb78iZdOciOhkaC6WWvH7TrmFO72E9LerJNOCt0/yaRGU6yaLY7jcIH 0nAjhWmjyEeEPOvl9m54IS1UEB83RuZA -----END CERTIFICATE-----Generated at Wed Nov 5 14:35:13 2025 by rpki-client