$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: 5OUBCmwvP4RGFZp/iOnjomLY0wWy5LllQDER50KXPnw= Subject key identifier: F6:CE:81:92:8E:AF:9B:05:00:15:22:F4:50:62:09:C7:76:F3:EE:74 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B55 Signing time: Tue 04 Nov 2025 16:23:22 +0000 Manifest this update: Tue 04 Nov 2025 16:23:21 +0000 Manifest next update: Tue 11 Nov 2025 16:23:21 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: lc6Jmr0nh6+HtRgthojeK15K0UJUW80+mFVZlzzFyL0=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: oDUDCtB16Or1sjmfh66q9QNKG7wVjA7QhKP9OaRJ6BM=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: nIAs30E8H29mzqDFrdKOfE9HHVMVMBE4sIisN1lJHH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7043 (0x1b83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Nov 4 16:23:21 2025 GMT Not After : Nov 11 16:23:21 2025 GMT Subject: CN=690a2879-e72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8d:ca:7c:f3:96:ad:bc:83:44:17:cd:62:0b: 97:2f:c1:e7:02:02:f2:b0:7b:39:62:3f:e6:1e:c3: 9f:6f:6e:8a:46:51:ba:dc:b8:e7:98:36:bb:fe:74: 8a:c6:49:2f:6c:8b:8b:f9:98:aa:d0:1d:0f:66:e6: 60:78:36:6e:1f:eb:96:42:28:51:97:5e:d3:a0:61: b4:a4:1e:a7:74:7d:87:0a:45:d7:20:fe:a1:d5:91: 4d:98:24:68:d7:22:35:30:ce:9f:d2:26:cc:d9:0b: 2d:fa:f0:79:ce:ea:a2:e9:ec:49:37:80:96:61:f5: d6:3a:33:10:45:b3:c1:81:7f:cc:a5:1f:57:63:1b: e3:81:a8:0b:ed:a2:80:8a:a7:e4:50:de:88:9d:72: 4c:71:a7:8b:48:cb:1e:18:e3:e0:d3:78:0e:e4:7b: ed:d8:45:96:9c:e5:95:89:cf:6c:df:41:2a:ac:f9: e7:c0:91:b5:b2:81:57:77:75:68:65:20:5e:4f:fd: ba:7a:13:56:25:3c:20:96:e7:2e:35:48:bc:31:40: 5a:44:51:8e:cc:8e:d3:93:e9:10:90:37:49:80:7f: 39:f9:20:94:f9:d5:df:4f:be:88:ee:f0:7a:63:43: 60:f2:7d:6e:71:6a:07:01:81:c6:24:dd:33:c5:63: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CE:81:92:8E:AF:9B:05:00:15:22:F4:50:62:09:C7:76:F3:EE:74 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:7b:8c:db:ad:e1:9c:db:00:9e:97:9e:41:64:a6:c0:07:b4: f2:8b:04:6c:14:f2:b8:a3:38:4e:2f:44:3b:01:dd:48:50:78: e9:7a:32:1a:19:ba:b3:95:f1:89:ab:6d:d2:0e:53:a2:58:83: 1d:db:d9:eb:0b:99:50:a2:3a:55:05:8c:81:14:c1:00:ed:10: 07:43:6f:b9:ef:5f:ed:a3:a2:9c:9c:77:09:91:d6:c0:35:82: c1:50:26:e5:56:f6:f9:01:31:22:22:25:8a:0e:bb:e2:41:55: 53:04:b7:61:2f:c0:a7:5d:f9:1b:85:1f:bd:93:b6:98:b1:41: 65:94:47:7c:3b:c4:a4:87:33:5a:a8:2d:03:21:6c:29:29:84: 90:f0:8b:55:cc:d7:9d:03:3e:3a:bf:a3:61:e9:95:7b:65:93: cb:55:21:e9:24:f0:7f:92:51:6a:06:42:58:2a:0b:e7:8c:d2: ba:3f:a1:47:37:57:32:e4:63:80:27:70:ca:ed:2f:a3:f2:bf: 56:28:03:3e:a8:1a:74:96:f4:d1:4e:02:cb:70:78:62:e2:f6: 76:6e:45:00:64:ef:cb:d2:8c:8b:f2:2a:7d:c0:20:c0:0e:cb: f7:e8:21:c6:b4:81:c5:48:61:66:09:93:73:93:40:03:0c:91: b4:98:eb:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUxMTA0MTYyMzIxWhcNMjUxMTExMTYyMzIxWjAYMRYwFAYD VQQDEw02OTBhMjg3OS1lNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAno3KfPOWrbyDRBfNYguXL8HnAgLysHs5Yj/mHsOfb26KRlG63LjnmDa7/nSK xkkvbIuL+Ziq0B0PZuZgeDZuH+uWQihRl17ToGG0pB6ndH2HCkXXIP6h1ZFNmCRo 1yI1MM6f0ibM2Qst+vB5zuqi6exJN4CWYfXWOjMQRbPBgX/MpR9XYxvjgagL7aKA iqfkUN6InXJMcaeLSMseGOPg03gO5Hvt2EWWnOWVic9s30EqrPnnwJG1soFXd3Vo ZSBeT/26ehNWJTwglucuNUi8MUBaRFGOzI7Tk+kQkDdJgH85+SCU+dXfT76I7vB6 Y0Ng8n1ucWoHAYHGJN0zxWPQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbOgZKO r5sFABUi9FBiCcd28+50MB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2e4zbreGc2wCel55BZKbAB7TyiwRsFPK4ozhOL0Q7Ad1IUHjpejIa GbqzlfGJq23SDlOiWIMd29nrC5lQojpVBYyBFMEA7RAHQ2+571/to6KcnHcJkdbA NYLBUCblVvb5ATEiIiWKDrviQVVTBLdhL8CnXfkbhR+9k7aYsUFllEd8O8SkhzNa qC0DIWwpKYSQ8ItVzNedAz46v6Nh6ZV7ZZPLVSHpJPB/klFqBkJYKgvnjNK6P6FH N1cy5GOAJ3DK7S+j8r9WKAM+qBp0lvTRTgLLcHhi4vZ2bkUAZO/L0oyL8ip9wCDA Dsv36CHGtIHFSGFmCZNzk0ADDJG0mOsl -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:57 2025 by rpki-client