$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: /wvQ5dDFbYrbJaBaXOMjSISilBOKzUuIL94gchLBkpk= Subject key identifier: 65:3D:43:1F:79:06:4A:66:26:A2:3A:A6:18:90:DB:4A:A4:58:7E:E2 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0211 Signing time: Mon 03 Nov 2025 02:10:55 +0000 Manifest this update: Mon 03 Nov 2025 02:10:55 +0000 Manifest next update: Mon 10 Nov 2025 02:10:55 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: N17qA2sIt2uYTu0Au7u8yZIo98ocA3PTaCbFHMu/x5c=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Nov 3 02:10:55 2025 GMT Not After : Nov 10 02:10:55 2025 GMT Subject: CN=69080f2f-1fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:90:66:fa:50:3d:d4:09:73:3d:85:41:27:c0: 2d:8c:69:72:31:ed:4f:24:00:8c:96:16:62:25:60: bd:35:7b:26:1b:2f:3c:92:bd:b9:ad:00:f2:17:9f: 52:66:e7:38:f2:c9:7e:76:46:22:52:28:69:79:b6: fc:65:07:78:ae:bf:72:fb:f4:a7:87:6a:2c:57:d8: 62:65:6a:a3:54:7c:32:7e:f3:5a:72:63:31:6c:dc: 94:db:90:68:96:b6:92:2b:c6:85:5c:90:55:71:f5: 8c:a6:c2:8b:ad:04:fa:33:29:d8:4c:f4:a2:ec:34: f5:74:a6:9b:19:5f:8d:7d:cf:42:63:f6:51:6f:0a: e8:82:73:d0:42:75:0a:6e:bb:3d:96:21:0f:c9:d9: 26:d5:31:b9:64:5d:2c:ab:55:08:f4:8e:f2:5b:34: f9:f8:3a:65:0e:95:bd:c2:34:90:be:a1:e0:29:37: be:84:e9:8b:78:68:a3:04:32:24:05:cb:9f:43:2d: 5e:6b:a9:82:fb:ee:67:15:21:18:7f:c9:0e:41:55: 3c:60:eb:53:7e:86:43:e1:36:22:87:97:e0:6a:b9: b5:11:07:17:44:28:6f:96:e5:0c:36:ad:49:06:34: b8:a9:1d:1a:18:ee:e6:df:c8:4c:40:85:fa:5b:32: f6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3D:43:1F:79:06:4A:66:26:A2:3A:A6:18:90:DB:4A:A4:58:7E:E2 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:11:81:ca:20:c7:aa:1c:7b:85:32:0c:49:fb:7c:a3:ac:56: 9d:4f:e5:18:2c:b0:19:cf:68:f9:f6:d9:e1:d0:b3:72:91:8f: 33:8e:03:58:1e:59:ba:cf:28:f4:77:af:20:ad:e1:eb:3b:7b: 4e:a0:42:de:50:59:69:de:d7:b0:34:e2:8d:83:b9:15:15:31: 82:a4:f3:56:93:38:72:3f:5f:05:49:f2:42:74:bc:f5:66:e4: 42:4f:4d:1c:75:75:40:03:6b:52:b8:b5:97:dd:76:b4:b9:4a: 73:79:61:d4:7b:c4:00:71:1a:56:ae:e9:d7:3a:6b:38:c3:cc: 1e:4a:21:2b:a1:2b:4f:3e:98:2f:6b:fe:b2:64:0d:10:40:2c: 89:ca:86:3c:ae:4f:38:07:81:b5:9b:f1:1f:e1:c5:02:34:51: b4:8d:8b:69:eb:b7:bb:64:db:00:24:e6:93:92:c2:ba:72:d6: a8:44:65:58:70:90:ef:d6:04:16:a9:e5:dc:27:28:1a:8f:e5: 6c:00:e4:d4:f0:48:02:9b:4f:f9:6e:66:9c:0b:1e:da:14:2f: 98:cf:56:1a:23:0b:4a:8f:39:45:3b:f0:c4:dd:b4:b6:04:b3: 59:74:ef:05:67:92:80:bc:6c:85:85:e2:0c:01:db:ad:66:d4: c6:42:b8:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUxMTAzMDIxMDU1WhcNMjUxMTEwMDIxMDU1WjAYMRYwFAYD VQQDEw02OTA4MGYyZi0xZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZBm+lA91AlzPYVBJ8AtjGlyMe1PJACMlhZiJWC9NXsmGy88kr25rQDyF59S Zuc48sl+dkYiUihpebb8ZQd4rr9y+/Snh2osV9hiZWqjVHwyfvNacmMxbNyU25Bo lraSK8aFXJBVcfWMpsKLrQT6MynYTPSi7DT1dKabGV+Nfc9CY/ZRbwrognPQQnUK brs9liEPydkm1TG5ZF0sq1UI9I7yWzT5+DplDpW9wjSQvqHgKTe+hOmLeGijBDIk BcufQy1ea6mC++5nFSEYf8kOQVU8YOtTfoZD4TYih5fgarm1EQcXRChvluUMNq1J BjS4qR0aGO7m38hMQIX6WzL2zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGU9Qx95 BkpmJqI6phiQ20qkWH7iMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOEYHKIMeqHHuFMgxJ+3yjrFadT+UYLLAZz2j59tnh0LNykY8zjgNY Hlm6zyj0d68greHrO3tOoELeUFlp3tewNOKNg7kVFTGCpPNWkzhyP18FSfJCdLz1 ZuRCT00cdXVAA2tSuLWX3Xa0uUpzeWHUe8QAcRpWrunXOms4w8weSiEroStPPpgv a/6yZA0QQCyJyoY8rk84B4G1m/Ef4cUCNFG0jYtp67e7ZNsAJOaTksK6ctaoRGVY cJDv1gQWqeXcJygaj+VsAOTU8EgCm0/5bmacCx7aFC+Yz1YaIwtKjzlFO/DE3bS2 BLNZdO8FZ5KAvGyFheIMAdutZtTGQri/ -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:32 2025 by rpki-client