$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: jP010FLlHg5J52bdy8HLayJurK3QTEheGiCu0boxDzY= Subject key identifier: 0B:6D:84:DD:3C:02:3C:03:3A:EA:FE:42:B3:4E:2F:0E:04:99:C0:C7 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 02C8 Signing time: Wed 05 Nov 2025 01:29:29 +0000 Manifest this update: Wed 05 Nov 2025 01:29:28 +0000 Manifest next update: Wed 12 Nov 2025 01:29:28 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: 0XTRg3Ymn5DhhFs6dOG07whOylVVqHRLJ7GBUBgJOuc=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Nov 5 01:29:28 2025 GMT Not After : Nov 12 01:29:28 2025 GMT Subject: CN=690aa878-1b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4a:67:c1:3f:c8:ca:7b:4b:69:81:9d:09:5d: 65:3c:9c:51:13:2a:5a:83:54:c6:9e:e6:e6:4c:49: 17:4f:2c:1b:ae:73:a3:1a:61:3d:11:f8:ad:53:e4: 05:fa:47:e2:92:7a:0a:97:69:90:a9:c0:65:45:33: 20:64:03:ac:ab:39:0c:1f:77:60:c2:71:f9:7c:7d: 08:09:07:99:6e:36:cd:02:73:eb:47:f1:f9:c0:2f: 8c:09:4b:8b:2b:82:be:4b:52:53:1e:f7:f8:67:f6: b7:8a:3d:1c:25:bc:91:a5:85:53:09:1d:4e:86:95: 9b:21:60:3d:e7:9e:15:02:4c:4d:94:a9:3c:82:e6: fc:87:12:2e:77:00:e5:a1:b2:f9:27:85:4a:b6:71: fe:df:d1:59:0d:f0:ea:d5:51:07:b1:d7:ea:48:ff: 09:8c:e9:f9:df:81:64:e8:16:cf:43:32:2a:c6:ff: b9:b5:2d:ca:c4:bb:e4:78:fe:3b:af:c1:ff:2c:4e: f5:e6:dc:e8:49:68:7d:7e:4c:da:8d:3d:07:47:a0: 9e:12:e4:4c:36:e5:b2:53:5f:2b:54:2d:a1:a0:23: ca:61:21:c8:2d:b7:79:51:fb:53:42:fe:af:6c:36: 16:7a:92:e9:b4:98:61:04:ec:e6:f4:aa:ce:af:ab: 70:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6D:84:DD:3C:02:3C:03:3A:EA:FE:42:B3:4E:2F:0E:04:99:C0:C7 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:1b:2d:c9:82:08:fd:b2:f9:b3:14:44:b4:89:52:b8:ba:b1: 43:4a:eb:96:b4:f1:ba:53:88:09:2e:06:54:32:9a:c4:e0:16: 90:92:d3:7e:79:f2:9d:38:7d:57:23:a1:1c:a1:b2:55:4b:9e: 0e:6a:a3:68:03:fc:84:bd:89:50:3d:d3:00:8b:a1:fc:07:d2: d5:f5:fe:88:73:2a:02:9f:a3:4c:9d:96:86:e6:bb:1c:66:9a: 2b:99:d9:16:54:9e:27:bb:27:d4:ff:fb:7a:29:96:b7:fc:0a: e9:62:24:c8:0c:2d:87:40:b0:30:fb:0f:29:2b:7e:aa:8f:fe: dc:4f:ed:35:0a:0d:f9:63:20:e4:3a:55:7a:4d:13:ce:df:c3: e8:3e:c1:4d:d2:57:0e:a0:8e:ff:63:7d:01:29:ef:a8:13:34: fd:1b:ce:35:37:ea:78:2f:7a:43:70:04:85:01:9b:47:5a:de: 69:c9:a9:69:be:58:59:d4:b3:d8:08:ae:d7:e0:17:d4:7a:f7: 7d:c3:71:65:32:08:e4:6c:37:36:2d:e0:5f:e0:8d:8e:e8:e5: c4:e9:49:b2:be:50:6e:d9:61:98:73:cb:65:a6:22:4a:61:3f: 7b:9d:92:54:ab:c4:8e:e2:c2:10:83:66:97:58:20:eb:71:0c: bf:92:2e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUxMTA1MDEyOTI4WhcNMjUxMTEyMDEyOTI4WjAYMRYwFAYD VQQDEw02OTBhYTg3OC0xYjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0pnwT/IyntLaYGdCV1lPJxREypag1TGnubmTEkXTywbrnOjGmE9EfitU+QF +kfiknoKl2mQqcBlRTMgZAOsqzkMH3dgwnH5fH0ICQeZbjbNAnPrR/H5wC+MCUuL K4K+S1JTHvf4Z/a3ij0cJbyRpYVTCR1OhpWbIWA9554VAkxNlKk8gub8hxIudwDl obL5J4VKtnH+39FZDfDq1VEHsdfqSP8JjOn534Fk6BbPQzIqxv+5tS3KxLvkeP47 r8H/LE715tzoSWh9fkzajT0HR6CeEuRMNuWyU18rVC2hoCPKYSHILbd5UftTQv6v bDYWepLptJhhBOzm9KrOr6twZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtthN08 AjwDOur+QrNOLw4EmcDHMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9Gy3Jggj9svmzFES0iVK4urFDSuuWtPG6U4gJLgZUMprE4BaQktN+ efKdOH1XI6EcobJVS54OaqNoA/yEvYlQPdMAi6H8B9LV9f6IcyoCn6NMnZaG5rsc ZpormdkWVJ4nuyfU//t6KZa3/ArpYiTIDC2HQLAw+w8pK36qj/7cT+01Cg35YyDk OlV6TRPO38PoPsFN0lcOoI7/Y30BKe+oEzT9G841N+p4L3pDcASFAZtHWt5pyalp vlhZ1LPYCK7X4BfUevd9w3FlMgjkbDc2LeBf4I2O6OXE6UmyvlBu2WGYc8tlpiJK YT97nZJUq8SO4sIQg2aXWCDrcQy/ki71 -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:20 2025 by rpki-client