$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft File: y2bgNeLweFj09ztHjc2FpjakJQo.mft (raw, json) Hash identifier: cGaeGj++8He1xCk/a4TOrZ2HSkkyWM9V+0DVeHfV6MQ= Subject key identifier: C2:F3:A5:34:EB:28:9D:C4:2B:6F:5B:92:F2:2F:A7:4B:1F:72:65:24 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft Manifest number: 011D Signing time: Wed 05 Nov 2025 05:03:33 +0000 Manifest this update: Wed 05 Nov 2025 05:03:33 +0000 Manifest next update: Wed 12 Nov 2025 05:03:33 +0000 Files and hashes: 1: y2bgNeLweFj09ztHjc2FpjakJQo.crl (hash: aCkvYAxUMw7xd1oCehmGjtOoIuyjwPfw1YIIxt1hPwE=) 2: 851515FC1C8711EF964ED80AC4F9AE02.roa (hash: ZVnEYOHXINGZEw1RnF1Uj9Pw7AnbBUgkIn8eDQrA8T4=) 3: 82D8082A292611EF875A5C36C4F9AE02.roa (hash: LUt9DJS6Jpbs8PDzvIpOLhLuEq85uifRo0wnGTYcGuc=) 4: AF27640226FA11F0B0383240C4F9AE02.roa (hash: 1i0d6pr2ELd59qaQmu9345pITiiNAhlVL8hxc+i1TcY=) 5: 24D519F226FA11F0B737393FC4F9AE02.roa (hash: 08jGNnEflD8e5x3Cs8u4vH+jCRzHFAlUOBfwuUSSNb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: Nov 5 05:03:33 2025 GMT Not After : Nov 12 05:03:33 2025 GMT Subject: CN=690adaa5-3207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d5:d5:52:b7:35:58:da:92:b7:de:d0:a8:ce: f5:6d:fc:d6:df:9f:de:54:ea:59:3d:04:3d:a2:f3: cb:84:9b:b1:23:43:73:a2:40:ef:53:18:be:54:66: 30:12:c4:e0:7d:69:a9:75:7a:d7:43:5e:34:cd:67: 04:f2:f9:54:98:09:14:3d:7f:11:34:32:07:00:34: ee:6a:76:5e:38:2b:23:a0:2f:bb:92:4f:5a:07:0a: 79:92:14:bd:0a:56:e4:b2:89:54:7d:d6:82:fb:11: 00:23:d6:c8:4f:23:c6:48:e0:fc:2b:b7:f2:2c:87: 86:29:68:e9:00:3d:f8:ad:ab:e1:46:c6:c7:e5:9b: ac:ea:bd:35:1b:f5:66:2a:bc:fe:30:94:0d:97:3b: a3:d2:1d:ad:cf:16:49:15:d0:38:b0:bf:74:d9:ec: a3:f7:13:d2:34:38:db:35:8c:3f:a8:cd:4b:e1:d2: f6:3b:40:1d:ee:75:79:16:d7:d0:d8:65:d7:fa:ba: a0:e6:61:1d:54:b0:19:26:71:38:06:da:63:de:d4: 0a:73:86:0f:29:79:b0:b9:ea:2d:17:1b:b5:9b:a2: 97:3a:37:7e:74:85:fc:81:58:0d:cd:f9:9a:a4:61: fd:e5:34:79:4a:c5:e8:d1:c1:f5:7c:5a:34:e2:d3: 8e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F3:A5:34:EB:28:9D:C4:2B:6F:5B:92:F2:2F:A7:4B:1F:72:65:24 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:52:c7:87:29:a7:7a:a7:29:16:73:0b:dd:6f:ed:f7:bc:fd: 7a:b2:95:27:e6:ae:aa:97:07:9d:7d:d3:59:14:0e:bb:e9:2b: 9c:61:30:db:16:11:c0:78:82:90:3a:2e:57:aa:35:9b:9a:f7: 39:43:65:e3:5f:fd:a8:9c:b2:c2:9b:ae:81:79:7e:16:c1:28: 35:a9:4d:87:76:8f:8e:6f:d6:b5:40:dd:34:ef:2c:07:08:d2: 14:1c:9c:f8:f8:ad:9a:66:11:87:8c:ce:52:64:67:bd:f6:eb: 79:b8:75:87:6e:f0:fc:1c:b3:f2:34:94:c7:d6:ec:38:8f:45: 8c:31:0c:f3:73:68:2e:51:a8:d7:4e:75:43:83:cb:0c:81:14: 20:2b:49:51:a2:a6:76:ae:05:48:91:c8:e3:0c:43:70:55:8f: 2a:1d:5f:f3:63:4b:42:05:49:f0:1a:51:cb:13:c7:ca:67:bd: d0:80:eb:8c:b8:43:cf:19:77:a5:f9:3f:89:7a:34:c8:c5:ae: c6:e2:fd:0e:a5:d6:10:24:b5:b0:9b:24:5e:0d:85:56:2d:76: 0c:79:97:60:05:c5:36:ab:50:9f:6a:79:fd:48:d7:a3:63:6c: 21:c8:c8:38:96:a5:27:e2:f1:72:7b:68:6f:9d:52:ac:1d:7c: 68:d6:90:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUxMTA1MDUwMzMzWhcNMjUxMTEyMDUwMzMzWjAYMRYwFAYD VQQDEw02OTBhZGFhNS0zMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NXVUrc1WNqSt97QqM71bfzW35/eVOpZPQQ9ovPLhJuxI0NzokDvUxi+VGYw EsTgfWmpdXrXQ140zWcE8vlUmAkUPX8RNDIHADTuanZeOCsjoC+7kk9aBwp5khS9 ClbksolUfdaC+xEAI9bITyPGSOD8K7fyLIeGKWjpAD34ravhRsbH5Zus6r01G/Vm Krz+MJQNlzuj0h2tzxZJFdA4sL902eyj9xPSNDjbNYw/qM1L4dL2O0Ad7nV5FtfQ 2GXX+rqg5mEdVLAZJnE4Btpj3tQKc4YPKXmwueotFxu1m6KXOjd+dIX8gVgNzfma pGH95TR5SsXo0cH1fFo04tOOzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLzpTTr KJ3EK29bkvIvp0sfcmUkMB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VG ajA5enRIamMyRnBqYWtKUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYUseHKad6pykWcwvdb+33vP16spUn5q6qlwedfdNZFA676SucYTDb FhHAeIKQOi5XqjWbmvc5Q2XjX/2onLLCm66BeX4WwSg1qU2Hdo+Ob9a1QN007ywH CNIUHJz4+K2aZhGHjM5SZGe99ut5uHWHbvD8HLPyNJTH1uw4j0WMMQzzc2guUajX TnVDg8sMgRQgK0lRoqZ2rgVIkcjjDENwVY8qHV/zY0tCBUnwGlHLE8fKZ73QgOuM uEPPGXel+T+JejTIxa7G4v0OpdYQJLWwmyReDYVWLXYMeZdgBcU2q1Cfann9SNej Y2whyMg4lqUn4vFye2hvnVKsHXxo1pCN -----END CERTIFICATE-----Generated at Wed Nov 5 13:07:21 2025 by rpki-client