$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: HEDqG+EXRfNRmLTiTRRnCp5k3kBlqgCN/sHHrsflh7k= Subject key identifier: 50:84:B4:1B:3C:EB:51:42:3A:6E:26:46:16:CA:9B:DB:10:2A:2B:73 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 0485 Signing time: Mon 03 Nov 2025 00:03:57 +0000 Manifest this update: Mon 03 Nov 2025 00:03:56 +0000 Manifest next update: Mon 10 Nov 2025 00:03:56 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: o9uFSRuqhNONHAafAQOSQ9fII2Sc3A1iCgoyT+Ja0zI=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: fiRDq8Ve2DGr8VfowojUVTWRBK4XLT82cjdE+awZmkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62, serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: Nov 3 00:03:56 2025 GMT Not After : Nov 10 00:03:56 2025 GMT Subject: CN=6907f16c-b7a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0f:8e:1c:2e:da:67:7b:08:1a:07:de:04:48: 5b:93:12:df:62:2b:fc:be:03:2c:dd:b0:ac:c6:53: 7a:8c:ed:3b:8c:61:ff:cd:63:4c:e4:13:80:bc:e2: 81:b1:d4:a5:24:9b:c2:8b:05:49:60:aa:7f:c1:a2: 62:bf:e2:f1:a3:ec:9f:8c:71:b7:08:2f:8a:62:c7: 24:da:2d:da:56:a7:f9:a4:db:51:77:9c:4c:60:b9: 97:5f:a7:54:29:4c:0f:26:db:20:27:ea:7e:1e:62: 31:0d:2f:1c:17:23:1e:ac:af:62:25:5f:2e:09:d6: 8a:ed:ae:ec:c7:d0:69:44:37:1c:c1:6a:bd:32:b6: 83:c4:7f:06:61:19:44:c8:aa:57:af:62:af:2d:c6: 4a:ec:9e:7c:a8:7b:09:12:8e:d6:cc:cc:76:f7:ff: af:61:78:c7:8f:87:fd:08:22:bd:41:df:e0:6d:82: 44:89:7b:b2:b5:b6:a5:70:48:5d:87:f2:d0:85:37: 11:3c:11:d6:e0:16:ec:9b:d5:cd:e4:f5:7d:60:52: 73:5a:7c:25:42:c8:e7:7a:46:2a:0e:cf:a4:94:83: b3:18:04:ef:4c:de:4f:a8:38:6b:51:94:ff:27:d2: 75:e7:36:12:f9:61:6e:a5:0e:d9:c9:c6:a7:dc:0a: c3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:84:B4:1B:3C:EB:51:42:3A:6E:26:46:16:CA:9B:DB:10:2A:2B:73 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:df:28:8d:49:0c:2b:ad:c3:59:74:69:c7:16:78:44:f1:a3: d0:56:72:68:a6:fd:3c:5f:e7:c8:1a:6b:c2:79:71:6a:9b:e7: f5:37:2d:22:02:59:17:20:df:2d:32:52:bc:d8:e5:e9:a9:fe: 0d:c9:32:ab:98:a8:f9:26:e8:c3:e6:a5:b1:97:b4:25:1b:a6: bd:38:3e:9e:d0:f0:05:07:1d:3c:9a:a0:fc:d8:60:96:d1:a3: 92:e6:94:e4:c4:7d:e5:ba:17:02:c7:ff:1c:39:dc:0d:ef:a7: 33:70:1d:19:49:37:be:21:99:b2:4d:f5:28:d5:eb:34:98:74: e1:34:f2:f8:94:e3:7b:fd:9b:94:7d:02:20:4f:ad:4b:46:a5: e5:cd:3b:20:d5:2e:d7:80:77:5e:76:bd:3e:36:89:a6:cf:dc: 69:7a:7c:65:60:62:0d:86:4a:30:d7:fe:f8:9d:7a:95:dc:10: 46:11:14:68:71:19:a1:f3:f7:26:b9:d8:1c:45:1f:ee:bd:f3: bb:29:7a:d9:fa:7f:6e:d8:10:47:de:7a:29:fd:8e:e7:55:bf: 91:27:3b:1a:d4:7b:2d:df:61:78:21:62:7f:a1:0d:a0:d0:2b: 78:e9:f9:b3:31:10:3d:a3:26:69:75:b3:3c:64:6f:af:90:a2: 50:f3:6d:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjUxMTAzMDAwMzU2WhcNMjUxMTEwMDAwMzU2WjAYMRYwFAYD VQQDEw02OTA3ZjE2Yy1iN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqA+OHC7aZ3sIGgfeBEhbkxLfYiv8vgMs3bCsxlN6jO07jGH/zWNM5BOAvOKB sdSlJJvCiwVJYKp/waJiv+Lxo+yfjHG3CC+KYsck2i3aVqf5pNtRd5xMYLmXX6dU KUwPJtsgJ+p+HmIxDS8cFyMerK9iJV8uCdaK7a7sx9BpRDccwWq9MraDxH8GYRlE yKpXr2KvLcZK7J58qHsJEo7WzMx29/+vYXjHj4f9CCK9Qd/gbYJEiXuytbalcEhd h/LQhTcRPBHW4Bbsm9XN5PV9YFJzWnwlQsjnekYqDs+klIOzGATvTN5PqDhrUZT/ J9J15zYS+WFupQ7Zycan3ArDHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCEtBs8 61FCOm4mRhbKm9sQKitzMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl3yiNSQwrrcNZdGnHFnhE8aPQVnJopv08X+fIGmvCeXFqm+f1Ny0i AlkXIN8tMlK82OXpqf4NyTKrmKj5JujD5qWxl7QlG6a9OD6e0PAFBx08mqD82GCW 0aOS5pTkxH3luhcCx/8cOdwN76czcB0ZSTe+IZmyTfUo1es0mHThNPL4lON7/ZuU fQIgT61LRqXlzTsg1S7XgHdedr0+Nommz9xpenxlYGINhkow1/74nXqV3BBGERRo cRmh8/cmudgcRR/uvfO7KXrZ+n9u2BBH3nop/Y7nVb+RJzsa1Hst32F4IWJ/oQ2g 0Ct46fmzMRA9oyZpdbM8ZG+vkKJQ823Y -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:22 2025 by rpki-client