$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: Ae3VQv5YkI544YupCwU4pMOGMVIx5qyYSzyfoNzRYGM= Subject key identifier: 2C:DC:16:A6:AC:A4:75:2A:33:08:9E:57:1F:D6:9D:40:DD:75:92:E8 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0CEA Signing time: Tue 04 Nov 2025 18:11:15 +0000 Manifest this update: Tue 04 Nov 2025 18:11:14 +0000 Manifest next update: Tue 11 Nov 2025 18:11:14 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: StkMPfSzRUoR4Cq4A0HsNU4wBz0VikPleopHJdI2z1c=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Nov 4 18:11:14 2025 GMT Not After : Nov 11 18:11:14 2025 GMT Subject: CN=690a41c2-9944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:15:9c:16:49:47:06:2a:cf:31:b5:60:44: 88:2a:44:d8:88:c3:9b:bc:7e:5a:5b:e3:45:a9:7c: 8a:56:74:31:7c:11:78:c0:92:e7:57:4c:37:3c:96: 58:02:8a:71:57:af:fd:2a:fd:f3:2f:68:fd:f8:2e: 5a:ff:f6:8b:f6:9e:28:50:a0:c3:3f:6b:37:59:13: a5:c6:39:96:ca:ad:54:af:e3:c4:cd:c9:bc:ee:fd: 92:ad:4e:af:16:a1:9b:4a:f8:da:7d:53:b7:71:78: dd:04:ec:09:9d:bc:84:46:94:75:c7:95:13:c8:02: f2:ea:ec:fd:97:f4:b8:bd:b4:c6:1e:7d:bd:4b:cc: dc:12:97:41:5f:6c:ed:65:07:e4:1f:4b:32:10:dc: 57:fd:7f:de:9b:d8:8e:0e:54:3c:58:e9:e0:62:9a: d9:c6:75:81:03:e4:da:46:1d:7c:e7:ec:98:1c:e6: dd:18:c9:d3:46:54:01:bb:3f:d4:0a:11:14:8e:ce: 70:46:3f:7b:3e:fa:99:78:02:40:b3:d3:b0:9d:cc: 21:1e:53:75:b3:7b:40:c1:a2:db:38:b2:27:57:fe: 6a:0c:51:96:2b:38:03:cc:8e:a3:8c:11:7f:ba:36: 50:29:cb:fb:34:37:e8:70:11:8c:9c:87:dd:4f:37: 24:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DC:16:A6:AC:A4:75:2A:33:08:9E:57:1F:D6:9D:40:DD:75:92:E8 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:0d:5b:3c:7a:c2:11:60:8f:1e:07:f8:9f:d8:77:39:50:3b: 49:0d:b4:e8:e5:e4:67:ec:f9:60:17:62:b2:21:e7:42:91:63: 97:d6:28:df:e4:95:c7:94:5c:b7:ab:0b:9f:cf:9a:b3:74:d1: dc:ba:b1:75:aa:fa:4f:78:a0:e2:a9:4b:a9:5d:3f:42:6f:a6: 88:ff:99:eb:3d:f5:be:61:59:4e:0d:45:24:38:85:62:0b:ce: 1f:65:ab:17:28:71:25:4e:32:27:b9:91:ed:8c:21:d4:db:c5: d8:86:6a:1c:57:13:85:55:93:e8:4b:bd:66:d9:14:89:ce:e5: 83:f4:5d:13:4d:a7:5d:0d:fc:b0:f1:74:cc:88:34:a4:39:31: 7b:9a:38:41:ed:42:c1:9a:29:63:23:b7:ea:b0:32:dd:55:e8: bf:51:df:0b:5b:75:6d:66:f3:bc:37:46:c0:c9:8b:75:ba:2d: 08:0f:d1:8d:02:64:05:9e:3f:34:14:7f:fa:51:42:0c:c8:9b: a1:fb:dc:ba:13:fc:09:4b:a1:4b:21:91:a5:8d:dd:8b:1b:8e: 79:81:17:59:d2:ea:76:18:cd:86:d6:f5:e2:be:9d:0a:3d:b8: 67:0d:03:b1:c8:2f:63:48:3c:06:44:40:c0:41:44:e7:07:a2: e6:95:e0:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUxMTA0MTgxMTE0WhcNMjUxMTExMTgxMTE0WjAYMRYwFAYD VQQDEw02OTBhNDFjMi05OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2gVnBZJRwYqzzG1YESIKkTYiMObvH5aW+NFqXyKVnQxfBF4wJLnV0w3PJZY AopxV6/9Kv3zL2j9+C5a//aL9p4oUKDDP2s3WROlxjmWyq1Ur+PEzcm87v2SrU6v FqGbSvjafVO3cXjdBOwJnbyERpR1x5UTyALy6uz9l/S4vbTGHn29S8zcEpdBX2zt ZQfkH0syENxX/X/em9iODlQ8WOngYprZxnWBA+TaRh185+yYHObdGMnTRlQBuz/U ChEUjs5wRj97PvqZeAJAs9OwncwhHlN1s3tAwaLbOLInV/5qDFGWKzgDzI6jjBF/ ujZQKcv7NDfocBGMnIfdTzcktwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzcFqas pHUqMwieVx/WnUDddZLoMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATDVs8esIRYI8eB/if2Hc5UDtJDbTo5eRn7PlgF2KyIedCkWOX1ijf 5JXHlFy3qwufz5qzdNHcurF1qvpPeKDiqUupXT9Cb6aI/5nrPfW+YVlODUUkOIVi C84fZasXKHElTjInuZHtjCHU28XYhmocVxOFVZPoS71m2RSJzuWD9F0TTaddDfyw 8XTMiDSkOTF7mjhB7ULBmiljI7fqsDLdVei/Ud8LW3VtZvO8N0bAyYt1ui0ID9GN AmQFnj80FH/6UUIMyJuh+9y6E/wJS6FLIZGljd2LG455gRdZ0up2GM2G1vXivp0K PbhnDQOxyC9jSDwGREDAQUTnB6LmleB3 -----END CERTIFICATE-----Generated at Wed Nov 5 13:55:19 2025 by rpki-client