$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: VcAq5VdEebvk1e+Y9qGxT9t4RlOkZ93GlwFvMwc3OGo= Subject key identifier: 8F:0F:2E:C2:17:80:B4:06:E6:AB:CD:3A:73:B1:50:F7:1D:2B:12:20 Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 0186 Signing time: Mon 03 Nov 2025 03:40:48 +0000 Manifest this update: Mon 03 Nov 2025 03:40:47 +0000 Manifest next update: Mon 10 Nov 2025 03:40:47 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: VoafOnqyfSDY1xs3Zjzt8wtCU1ZlSMEAm3ndT8ef8jo=) 2: A910F37297CE11F0885B0A30C4F9AE02.roa (hash: cQK647yMwwLX45q9mOT0EIccACxOtmPbIGvaw9w+/pc=) 3: B752E03A97CE11F0ADE43030C4F9AE02.roa (hash: UlT/oF85OcS2SKCUgl+PsPTlbGKhNl+SEibXUqkYmEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Nov 3 03:40:47 2025 GMT Not After : Nov 10 03:40:47 2025 GMT Subject: CN=6908243f-69e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b4:97:39:fb:ef:d8:90:c0:6f:f0:44:95:bf: 85:f8:a6:8f:98:a7:3c:fc:ac:60:b5:a5:13:0a:c0: 8a:27:28:b9:41:5b:b5:15:f0:de:bd:c6:af:5b:72: 67:0b:4c:ba:91:ee:6f:b4:b5:fc:6e:41:61:6b:74: 71:da:30:b7:67:d9:26:0f:69:5f:10:aa:75:e9:39: b2:f0:bd:68:ed:de:86:7f:75:ac:01:f0:63:98:52: 3e:18:4c:9f:2a:ff:cb:fe:64:da:76:8a:65:cc:f5: d5:8c:07:11:42:0a:33:ad:fe:a4:5c:4b:b8:ad:d4: 87:60:66:bc:2a:3f:94:7f:61:80:66:16:cd:1b:e4: f3:60:2d:8b:9c:5d:e8:02:62:45:e9:2b:5f:25:67: a9:18:87:18:0d:e6:92:ff:56:21:43:14:0b:1e:4a: 92:b1:17:9e:26:7a:3b:78:b3:5f:0f:fc:af:ea:c7: 23:a2:87:63:51:24:a4:bf:a2:c5:91:74:90:db:3d: 35:ef:13:cf:84:d6:b7:ca:9a:4f:9b:55:e4:9d:e0: 3d:95:50:f9:0a:25:3e:94:41:e4:d0:c0:cb:3d:d4: fd:02:9a:b1:a5:5a:2d:da:04:f3:22:da:6d:8a:d8: ee:1c:5b:4b:86:0d:69:45:05:a6:87:f0:31:43:e8: 48:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0F:2E:C2:17:80:B4:06:E6:AB:CD:3A:73:B1:50:F7:1D:2B:12:20 X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:83:39:b7:82:aa:90:b7:97:2c:17:2f:c2:c4:87:ae:cf:5d: fb:2f:3f:58:c0:99:3f:c5:7a:c6:57:ba:2e:b4:ad:22:72:88: 09:ed:51:35:91:9f:51:9b:09:eb:e2:f7:fb:b2:e0:ff:01:ac: d3:34:89:70:2c:09:5b:77:58:0d:d3:42:57:ec:81:36:47:f3: 8a:30:6a:f2:c1:7b:00:16:37:30:ab:6e:61:e6:43:fc:dc:7c: 8e:83:79:e3:62:d3:5f:97:05:07:74:c4:01:55:9c:33:28:45: 0c:a8:f1:70:c5:e3:5f:0f:83:69:5e:3f:de:5a:d3:c1:d0:ec: 87:34:e5:42:27:04:72:ff:d4:74:16:51:f3:5c:91:3f:b1:8e: 32:a0:00:77:f9:2b:29:ad:e4:fd:0a:b6:b9:96:a6:ae:51:be: cf:cb:63:06:b2:20:dc:8f:28:16:c0:4e:78:0d:46:40:cd:9a: 5e:7b:94:be:2d:8a:24:30:24:91:7b:20:41:1f:21:15:6d:8b: a0:2a:0b:d3:9e:3a:6c:a8:58:57:18:fd:71:f8:ce:9a:b1:47: 3f:81:46:af:57:91:a5:08:6e:ab:6b:20:1c:ca:10:8f:ec:53: 01:0c:4a:d9:ea:4c:24:57:2a:a6:ce:fc:76:76:20:47:b3:14: 4e:08:e3:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjUxMTAzMDM0MDQ3WhcNMjUxMTEwMDM0MDQ3WjAYMRYwFAYD VQQDEw02OTA4MjQzZi02OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorSXOfvv2JDAb/BElb+F+KaPmKc8/KxgtaUTCsCKJyi5QVu1FfDevcavW3Jn C0y6ke5vtLX8bkFha3Rx2jC3Z9kmD2lfEKp16Tmy8L1o7d6Gf3WsAfBjmFI+GEyf Kv/L/mTadoplzPXVjAcRQgozrf6kXEu4rdSHYGa8Kj+Uf2GAZhbNG+TzYC2LnF3o AmJF6StfJWepGIcYDeaS/1YhQxQLHkqSsReeJno7eLNfD/yv6scjoodjUSSkv6LF kXSQ2z017xPPhNa3yppPm1XkneA9lVD5CiU+lEHk0MDLPdT9ApqxpVot2gTzItpt itjuHFtLhg1pRQWmh/AxQ+hIawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8PLsIX gLQG5qvNOnOxUPcdKxIgMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXgzm3gqqQt5csFy/CxIeuz137Lz9YwJk/xXrGV7outK0icogJ7VE1 kZ9Rmwnr4vf7suD/AazTNIlwLAlbd1gN00JX7IE2R/OKMGrywXsAFjcwq25h5kP8 3HyOg3njYtNflwUHdMQBVZwzKEUMqPFwxeNfD4NpXj/eWtPB0OyHNOVCJwRy/9R0 FlHzXJE/sY4yoAB3+SspreT9Cra5lqauUb7Py2MGsiDcjygWwE54DUZAzZpee5S+ LYokMCSReyBBHyEVbYugKgvTnjpsqFhXGP1x+M6asUc/gUavV5GlCG6rayAcyhCP 7FMBDErZ6kwkVyqmzvx2diBHsxROCONH -----END CERTIFICATE-----Generated at Tue Nov 4 18:58:57 2025 by rpki-client