$ rpki-client -vvf rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft File: zYmoJo6xHjMPvUTASHINEyXFpgs.mft (raw, json) Hash identifier: Ulm7cHj/MFDmynjm2QoSqm4GnQDPjJ1X5dQ+s3KWX0A= Subject key identifier: B4:CA:97:20:C3:D7:C5:02:C1:18:32:B2:BE:A5:14:36:A4:28:61:4D Authority key identifier: CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B Certificate issuer: /CN=A9144261/serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft Manifest number: 016D Signing time: Mon 03 Nov 2025 03:58:07 +0000 Manifest this update: Mon 03 Nov 2025 03:58:06 +0000 Manifest next update: Mon 10 Nov 2025 03:58:06 +0000 Files and hashes: 1: zYmoJo6xHjMPvUTASHINEyXFpgs.crl (hash: mZ0qW7f8Ut1QmpMYpPHiTvyXhB+wucI9mQGuSBp+Jq0=) 2: 0DFFB0D2989111EEB7938523C4F9AE02.roa (hash: 05BxmRyvKNcOlG0da2lnXsYOxEsMKdSx2ZRkaVaMWv4=) 3: EEF965C0989011EE982B5B23C4F9AE02.roa (hash: cOcYEcKHuf/JYD0AEBC5IpcPkABHQnNi85MejRVjkMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144261, serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Validity Not Before: Nov 3 03:58:06 2025 GMT Not After : Nov 10 03:58:06 2025 GMT Subject: CN=6908284f-9bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:44:69:a2:31:ae:9e:0c:03:7a:17:37:30:3d: 7d:30:c1:e9:ca:f0:41:0b:b3:c4:71:c0:4e:0b:f1: 07:38:29:c8:a1:ae:40:3b:8b:de:82:84:4b:f4:82: d7:57:b5:e0:4f:c0:3e:77:d5:17:10:21:b4:a9:2d: fc:88:38:5e:46:89:48:58:6f:71:b9:39:01:50:c4: 1c:0d:bb:2b:89:bb:e8:f0:05:03:d9:09:29:58:27: fc:5b:d7:a0:5a:51:2b:b1:ec:d7:ba:76:6a:5c:80: 2e:e3:1b:ad:36:f7:71:37:8a:3b:4c:ec:fe:61:84: 0c:a4:d0:f7:41:ed:00:8d:f9:0a:59:71:45:10:4c: cc:10:e8:f2:8d:75:91:20:70:5f:55:2c:26:35:cc: b4:ff:b2:9e:c2:8e:46:1e:14:2d:5f:85:aa:a2:a2: 48:f0:d7:a7:c6:26:9c:9d:98:13:ee:39:6a:cd:8e: 13:10:0d:c0:22:d6:15:a0:67:59:b9:38:02:92:e7: 3b:ff:9c:8c:ea:36:81:1b:c3:e0:d1:64:7c:d6:20: e5:87:09:78:fd:2a:f4:98:f7:93:03:aa:17:34:46: 75:01:50:dd:fb:e4:28:ec:1a:b0:35:00:01:55:4a: 1e:62:05:e1:8f:31:6e:84:77:64:d1:1e:ef:70:16: 13:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CA:97:20:C3:D7:C5:02:C1:18:32:B2:BE:A5:14:36:A4:28:61:4D X509v3 Authority Key Identifier: keyid:CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6a:0b:8e:e6:48:31:68:9a:a3:c5:24:91:49:89:d1:43:a1: 91:47:f9:c9:10:fc:c9:ec:df:1d:04:ad:d6:61:37:44:b3:49: 3d:05:0f:88:eb:c3:e7:8e:93:17:46:3a:8a:1e:5b:8b:72:4a: 9a:fb:19:5c:e7:59:a7:c5:b3:c2:47:d6:63:6d:4b:73:aa:c9: ef:11:05:38:e9:d0:6a:13:c5:f2:7c:f3:44:f8:54:35:6c:56: aa:48:53:a5:3e:93:08:40:fa:d3:7c:2c:34:4b:c9:7f:3e:dc: 41:ae:a5:fd:8c:1d:9f:ac:30:79:5c:cc:8b:13:9c:86:3d:10: c4:3e:cb:cb:60:16:cc:4d:50:8f:8f:fb:42:ab:18:be:1c:cc: 33:cb:b3:3d:75:e9:65:65:97:d6:d9:56:34:e8:1b:4a:86:70: b6:0b:41:61:8a:4e:b9:67:d7:22:ba:0c:94:38:a4:4c:56:7f: 80:ae:2f:ea:5e:11:38:67:53:b4:7d:bf:db:ea:03:4f:c9:53: c3:5c:d2:fc:2a:a8:69:34:40:a6:88:8e:07:0e:15:92:6b:6b: a7:75:69:96:e5:54:e0:8c:3c:09:01:09:b0:72:2e:a9:3c:c4: 44:52:ee:71:52:b0:96:98:ec:82:80:45:a0:49:ba:e6:67:9b: f1:56:d9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyNjExMTAvBgNVBAUTKENEODlBODI2OEVCMTFFMzMwRkJENDRDMDQ4NzIwRDEz MjVDNUE2MEIwHhcNMjUxMTAzMDM1ODA2WhcNMjUxMTEwMDM1ODA2WjAYMRYwFAYD VQQDEw02OTA4Mjg0Zi05YmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvERpojGungwDehc3MD19MMHpyvBBC7PEccBOC/EHOCnIoa5AO4vegoRL9ILX V7XgT8A+d9UXECG0qS38iDheRolIWG9xuTkBUMQcDbsribvo8AUD2QkpWCf8W9eg WlErsezXunZqXIAu4xutNvdxN4o7TOz+YYQMpND3Qe0AjfkKWXFFEEzMEOjyjXWR IHBfVSwmNcy0/7Kewo5GHhQtX4WqoqJI8NenxiacnZgT7jlqzY4TEA3AItYVoGdZ uTgCkuc7/5yM6jaBG8Pg0WR81iDlhwl4/Sr0mPeTA6oXNEZ1AVDd++Qo7BqwNQAB VUoeYgXhjzFuhHdk0R7vcBYTRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTKlyDD 18UCwRgysr6lFDakKGFNMB8GA1UdIwQYMBaAFM2JqCaOsR4zD71EwEhyDRMlxaYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDI2MS9EMDY1QkM0Qzkz NDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhqTVB2VVRBU0hJTkV5WEZw Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pZbW9KbzZ4SGpNUHZVVEFTSElORXlYRnBncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDI2MS9EMDY1QkM0QzkzNDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhq TVB2VVRBU0hJTkV5WEZwZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByaguO5kgxaJqjxSSRSYnRQ6GRR/nJEPzJ7N8dBK3WYTdEs0k9BQ+I 68PnjpMXRjqKHluLckqa+xlc51mnxbPCR9ZjbUtzqsnvEQU46dBqE8XyfPNE+FQ1 bFaqSFOlPpMIQPrTfCw0S8l/PtxBrqX9jB2frDB5XMyLE5yGPRDEPsvLYBbMTVCP j/tCqxi+HMwzy7M9dellZZfW2VY06BtKhnC2C0Fhik65Z9ciugyUOKRMVn+Ari/q XhE4Z1O0fb/b6gNPyVPDXNL8KqhpNECmiI4HDhWSa2undWmW5VTgjDwJAQmwci6p PMREUu5xUrCWmOyCgEWgSbrmZ5vxVtlY -----END CERTIFICATE-----Generated at Tue Nov 4 23:43:34 2025 by rpki-client