$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft File: vY9TgeGI5FgPskcsJxoFQp4tXCI.mft (raw, json) Hash identifier: YVEi3+wbm8rsmL2NqMWVZl3aqW3aYmH9QM8Us2KTwRk= Subject key identifier: 43:7F:F8:32:F7:E1:84:D5:EA:E6:BF:13:0C:15:30:8A:FB:7F:A9:FE Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft Manifest number: 1B44 Signing time: Tue 04 Nov 2025 16:22:43 +0000 Manifest this update: Tue 04 Nov 2025 16:22:43 +0000 Manifest next update: Tue 11 Nov 2025 16:22:43 +0000 Files and hashes: 1: vY9TgeGI5FgPskcsJxoFQp4tXCI.crl (hash: 2wYm9Av/YZok9uB+3qqEHTDFONf3egTvCtvG3NSffA4=) 2: 59029A32233A11E78D48837AC4F9AE02.roa (hash: XfYeKxfatX6id5bBv2XHc88RkA9A8XtPbM07HmC0bY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6991 (0x1b4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: Nov 4 16:22:43 2025 GMT Not After : Nov 11 16:22:43 2025 GMT Subject: CN=690a2853-2b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:ec:f2:ff:88:2d:a2:24:ab:2e:30:26:ad: dd:ee:8b:5c:53:a2:6b:a9:fe:81:4a:b0:3a:aa:26: 8c:de:bb:a9:54:96:f2:43:14:e1:91:0b:a0:f8:6b: 4b:1d:20:59:7a:0a:36:8c:21:c6:fd:f1:36:20:24: a0:94:54:51:d7:db:73:55:dd:db:66:34:53:d0:74: 52:bb:17:17:1f:5b:0a:bf:21:17:a9:7e:c7:fe:e8: 4f:17:c0:f7:e4:1a:ed:ac:cc:33:2a:03:e6:d2:ca: 62:e5:85:58:ef:c5:b8:09:54:e6:3f:2f:77:48:a0: 0f:a8:c0:2e:11:54:16:88:c9:c7:a0:c0:67:2f:f0: 79:5c:47:b6:ed:19:08:c5:df:11:30:d1:fa:1e:2f: 1d:af:16:42:80:17:10:b4:50:52:7b:32:2f:25:0e: f7:7a:d3:97:d7:42:c3:33:34:e2:99:7c:3c:3e:3e: a0:80:ef:88:66:d6:a4:79:94:78:bb:93:68:a4:e9: 2e:cb:9c:8d:22:86:3b:f2:fa:94:28:75:78:74:50: 89:90:85:26:9f:3d:0a:c3:2c:1b:a7:78:45:5f:c5: 85:53:39:a0:f8:11:e7:0c:af:23:a0:45:0a:d5:99: 0d:0f:49:77:22:cb:03:ff:5d:0a:8b:8a:9d:3a:90: f5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:7F:F8:32:F7:E1:84:D5:EA:E6:BF:13:0C:15:30:8A:FB:7F:A9:FE X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2a:76:a0:eb:37:07:15:bf:05:dd:e8:0d:79:41:da:3a:1a: 5c:71:09:3b:26:71:a1:8c:f9:21:30:a0:24:39:d1:e7:1c:bb: 8d:04:3c:1f:a9:d0:15:2c:fc:28:e7:62:5e:76:bb:c2:e3:3f: f1:a8:68:2e:29:06:3d:1d:22:52:35:3b:52:15:87:49:f5:a2: 70:af:02:fa:3b:64:58:34:d3:a0:05:d5:58:58:77:68:12:9e: da:04:2c:93:27:e6:9c:84:af:e6:f3:39:f4:a8:d9:0f:4e:c3: f6:74:40:c5:bb:78:ab:27:f3:96:23:96:d0:95:11:f6:35:88: dd:e9:a9:9d:d8:83:eb:81:e2:86:8f:f5:b6:44:1d:d2:b0:ab: 7a:d0:86:c1:7f:0d:53:93:69:45:0d:75:64:a5:65:b7:3c:8f: 5e:c6:ad:a3:bb:26:11:b8:2a:8c:36:09:70:45:5c:80:27:90: 88:aa:90:36:96:0e:aa:70:7d:01:cc:bf:c2:7a:40:48:9c:ea: b8:0e:ba:01:2e:9d:ad:76:a6:31:fc:a2:09:1c:ea:bf:ba:8c: 30:2e:da:0d:0c:91:64:a0:2a:c7:7b:75:98:3d:af:5c:34:f2: 55:8e:2a:d0:a1:21:a4:3a:f7:a7:7f:4f:4b:ba:df:c4:ca:fe: 20:fc:95:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUxMTA0MTYyMjQzWhcNMjUxMTExMTYyMjQzWjAYMRYwFAYD VQQDEw02OTBhMjg1My0yYjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdbs8v+ILaIkqy4wJq3d7otcU6Jrqf6BSrA6qiaM3rupVJbyQxThkQug+GtL HSBZego2jCHG/fE2ICSglFRR19tzVd3bZjRT0HRSuxcXH1sKvyEXqX7H/uhPF8D3 5BrtrMwzKgPm0spi5YVY78W4CVTmPy93SKAPqMAuEVQWiMnHoMBnL/B5XEe27RkI xd8RMNH6Hi8drxZCgBcQtFBSezIvJQ73etOX10LDMzTimXw8Pj6ggO+IZtakeZR4 u5NopOkuy5yNIoY78vqUKHV4dFCJkIUmnz0Kwywbp3hFX8WFUzmg+BHnDK8joEUK 1ZkND0l3IssD/10Ki4qdOpD1vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEN/+DL3 4YTV6ua/EwwVMIr7f6n+MB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDY2RC8xRUIwOTI1NDIzMzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVG Z1Bza2NzSnhvRlFwNHRYQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDKnag6zcHFb8F3egNeUHaOhpccQk7JnGhjPkhMKAkOdHnHLuNBDwf qdAVLPwo52JedrvC4z/xqGguKQY9HSJSNTtSFYdJ9aJwrwL6O2RYNNOgBdVYWHdo Ep7aBCyTJ+achK/m8zn0qNkPTsP2dEDFu3irJ/OWI5bQlRH2NYjd6amd2IPrgeKG j/W2RB3SsKt60IbBfw1Tk2lFDXVkpWW3PI9exq2juyYRuCqMNglwRVyAJ5CIqpA2 lg6qcH0BzL/CekBInOq4DroBLp2tdqYx/KIJHOq/uowwLtoNDJFkoCrHe3WYPa9c NPJVjirQoSGkOvenf09Lut/Eyv4g/JVx -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:11 2025 by rpki-client