$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft File: y2bgNeLweFj09ztHjc2FpjakJQo.mft (raw, json) Hash identifier: XBPJttHQnOtT3rKvqZ7soQjBn5RA9AuEiCRfsJSbSMg= Subject key identifier: 3D:82:84:38:B6:8D:1E:F1:FB:ED:DA:B8:C9:4B:87:9D:A2:D6:AA:D3 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft Manifest number: 011C Signing time: Mon 03 Nov 2025 04:54:46 +0000 Manifest this update: Mon 03 Nov 2025 04:54:45 +0000 Manifest next update: Mon 10 Nov 2025 04:54:45 +0000 Files and hashes: 1: y2bgNeLweFj09ztHjc2FpjakJQo.crl (hash: JYXPJlWujGIlmQAc1O03ZbHBFFg+rQPipkpauAajm/M=) 2: 851515FC1C8711EF964ED80AC4F9AE02.roa (hash: ZVnEYOHXINGZEw1RnF1Uj9Pw7AnbBUgkIn8eDQrA8T4=) 3: 82D8082A292611EF875A5C36C4F9AE02.roa (hash: LUt9DJS6Jpbs8PDzvIpOLhLuEq85uifRo0wnGTYcGuc=) 4: AF27640226FA11F0B0383240C4F9AE02.roa (hash: 1i0d6pr2ELd59qaQmu9345pITiiNAhlVL8hxc+i1TcY=) 5: 24D519F226FA11F0B737393FC4F9AE02.roa (hash: 08jGNnEflD8e5x3Cs8u4vH+jCRzHFAlUOBfwuUSSNb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: Nov 3 04:54:45 2025 GMT Not After : Nov 10 04:54:45 2025 GMT Subject: CN=69083595-b306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:59:5c:f5:36:46:8e:bc:73:6d:51:d2:62: ae:94:32:cc:12:c4:2d:c4:da:88:30:30:ba:c8:dc: e2:1e:1b:56:2b:cc:58:c3:aa:99:59:fa:3d:e6:cb: ab:36:0b:b4:72:20:f4:1a:a0:14:99:c8:74:68:8f: c2:10:31:31:9f:45:4b:f5:70:f2:ef:73:26:c9:cb: 08:3b:64:88:18:74:24:f7:03:0a:83:90:4b:2e:92: c0:2d:41:43:ca:00:8a:cb:58:0e:b3:1c:9e:e3:d4: 16:23:c6:c4:44:d5:c2:fc:1d:21:06:90:ed:24:bb: 79:e4:03:ca:2a:39:90:81:af:b6:06:1e:50:6c:62: 12:42:0f:ae:5d:4f:e1:c6:49:b0:3c:e1:1c:6d:80: ad:75:39:0a:5a:7c:90:c6:14:ee:ff:db:6c:ba:50: c0:c3:83:38:3d:d8:94:eb:41:e1:12:97:b2:5b:e8: c1:d6:c3:00:a8:a5:95:3d:14:f0:ae:12:c3:ef:7f: a5:4c:9a:ce:10:6e:d3:1f:86:ad:f6:0c:d0:5f:24: b5:fd:10:36:fb:53:15:3e:e8:de:15:aa:e3:55:cf: da:81:c9:f8:3c:af:3b:62:ac:0d:62:91:fb:3a:4a: 25:64:99:b1:0d:88:74:95:c5:0e:8e:19:c6:17:0f: 87:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:82:84:38:B6:8D:1E:F1:FB:ED:DA:B8:C9:4B:87:9D:A2:D6:AA:D3 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f8:a3:92:f4:26:17:e9:09:12:7e:d9:1a:ab:3e:8d:5d:aa: 9e:69:8e:3b:f8:44:1e:da:23:dc:0e:37:01:85:b5:ca:47:92: 8f:07:c1:59:99:52:7a:69:c5:88:11:9e:f6:5a:39:d1:d7:0b: 99:19:81:2d:71:95:73:5d:77:ae:3d:83:16:d8:66:02:f8:33: 50:2b:ff:03:4d:47:86:9e:c1:7c:7e:0a:f1:c8:2f:01:32:f0: cf:d5:04:cc:ab:0b:41:50:00:2f:07:4a:76:31:10:4a:c8:c0: 74:54:fe:a1:90:a7:89:22:83:e9:71:8a:1b:a4:5d:63:09:aa: d4:f8:a2:1a:1b:cf:8f:ed:e3:4e:5b:c4:cd:b8:f8:0a:85:a5: 17:a1:6b:1e:27:a3:f1:f8:48:a4:be:7c:28:1e:56:c8:94:e3: ba:2f:8d:9e:56:9f:9e:43:02:cc:d1:85:17:d5:5b:ce:7f:53: c7:ed:8e:26:50:90:f6:b5:79:8e:2a:42:62:71:f3:4c:f3:c8: ac:3f:aa:66:b3:e6:51:8f:a3:a3:ca:de:9a:fa:a9:de:96:0f: d9:46:8f:6d:1b:09:d6:fc:29:be:49:9b:83:3a:60:3d:db:d9: 24:12:1e:58:5c:1b:51:8a:71:42:30:91:d6:95:99:f4:9f:35: 26:f0:af:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUxMTAzMDQ1NDQ1WhcNMjUxMTEwMDQ1NDQ1WjAYMRYwFAYD VQQDEw02OTA4MzU5NS1iMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5ZZXPU2Ro68c21R0mKulDLMEsQtxNqIMDC6yNziHhtWK8xYw6qZWfo95sur Ngu0ciD0GqAUmch0aI/CEDExn0VL9XDy73MmycsIO2SIGHQk9wMKg5BLLpLALUFD ygCKy1gOsxye49QWI8bERNXC/B0hBpDtJLt55APKKjmQga+2Bh5QbGISQg+uXU/h xkmwPOEcbYCtdTkKWnyQxhTu/9tsulDAw4M4PdiU60HhEpeyW+jB1sMAqKWVPRTw rhLD73+lTJrOEG7TH4at9gzQXyS1/RA2+1MVPujeFarjVc/agcn4PK87YqwNYpH7 OkolZJmxDYh0lcUOjhnGFw+HDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2ChDi2 jR7x++3auMlLh52i1qrTMB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VG ajA5enRIamMyRnBqYWtKUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6+KOS9CYX6QkSftkaqz6NXaqeaY47+EQe2iPcDjcBhbXKR5KPB8FZ mVJ6acWIEZ72WjnR1wuZGYEtcZVzXXeuPYMW2GYC+DNQK/8DTUeGnsF8fgrxyC8B MvDP1QTMqwtBUAAvB0p2MRBKyMB0VP6hkKeJIoPpcYobpF1jCarU+KIaG8+P7eNO W8TNuPgKhaUXoWseJ6Px+EikvnwoHlbIlOO6L42eVp+eQwLM0YUX1VvOf1PH7Y4m UJD2tXmOKkJicfNM88isP6pms+ZRj6Ojyt6a+qnelg/ZRo9tGwnW/Cm+SZuDOmA9 29kkEh5YXBtRinFCMJHWlZn0nzUm8K8n -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:42 2025 by rpki-client