$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: gr3iGvNwyWUzF2n3l+okdcnqttvJhIxBMTG7bGfmu+I= Subject key identifier: D2:97:A5:C1:31:58:63:B0:CC:09:F4:DE:85:6F:68:9E:D9:CE:80:0A Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0A58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0A48 Signing time: Tue 04 Nov 2025 19:47:11 +0000 Manifest this update: Tue 04 Nov 2025 19:47:10 +0000 Manifest next update: Tue 11 Nov 2025 19:47:10 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: hVxiheqSV8jIznsiX3RYimDRrU/9+OXLoO+BLPTjvsI=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: WJcxZE//v/qgwM5L8UFDfgSzlZEjCMButWifhGqcTAY=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Nov 4 19:47:10 2025 GMT Not After : Nov 11 19:47:10 2025 GMT Subject: CN=690a583f-a1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a0:c5:46:30:96:80:ae:04:fc:76:76:8c:1c: c9:07:97:27:53:89:20:59:66:21:d7:71:9c:ad:f3: ad:6d:4b:ec:9e:44:85:ad:77:a1:a3:c8:07:4b:74: 80:de:d9:34:44:b4:80:86:ee:6b:c6:fa:3c:84:36: f6:96:37:d3:74:76:b1:9e:24:b7:b8:77:b1:64:d4: 80:61:93:bd:a8:fa:a2:89:22:b5:5d:f4:b5:b2:ed: ae:fc:e0:f9:fc:6e:2e:31:3c:29:5f:f1:38:d2:72: 23:22:a4:51:3b:bc:1b:26:25:c4:34:64:cd:22:b3: 79:6a:3e:ef:94:b8:2c:eb:e6:3f:90:d7:ee:47:5b: bf:1b:db:7b:60:f3:ab:c8:41:ec:08:32:eb:44:3d: 6b:00:b7:72:70:37:4d:52:13:73:79:0b:3b:56:02: 86:a9:ce:9b:dd:fa:36:1f:1d:cd:63:d8:ca:6f:da: cd:4e:00:4a:84:1c:11:98:c4:d7:2a:e9:d8:7c:49: 3e:99:f2:7d:ae:d0:96:22:62:65:e2:23:08:af:1c: ee:67:99:96:60:98:09:3c:1e:76:a9:58:72:8b:0c: fd:ea:6e:ef:12:c6:43:c9:c7:61:83:52:e4:d8:3a: 20:9f:98:0a:1d:f1:a5:eb:20:3c:94:3c:51:a3:bb: ab:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:97:A5:C1:31:58:63:B0:CC:09:F4:DE:85:6F:68:9E:D9:CE:80:0A X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:1f:78:ab:1a:04:7c:cf:1c:d5:30:9c:b1:bc:75:47:d6:59: 38:76:44:e4:6b:99:61:a3:50:ad:75:a7:ee:29:a4:b1:f8:84: 0a:b4:6f:c7:4a:6b:16:2e:98:be:0e:c4:fd:f6:4a:89:a6:d9: bf:1d:bc:17:c5:d9:d1:2b:a5:8a:4e:be:87:cf:6e:62:8c:8f: ab:18:ad:69:c9:d7:1e:f2:80:49:7c:3d:47:52:8d:64:a5:cf: db:47:08:87:fb:64:2e:44:c0:f7:79:7a:72:3e:e2:a5:57:28: 68:a5:04:c0:fb:df:d8:1f:e1:50:13:e2:e3:b4:23:88:ed:f1: fd:c7:f5:e3:05:42:74:66:23:81:d8:9d:1d:49:80:db:1f:01: 73:fb:d9:93:49:74:af:d9:64:d4:1a:ae:74:1f:1a:10:72:3e: d1:3f:85:d0:3b:fc:da:30:e6:6e:80:df:83:f7:7b:96:e1:0b: b0:a0:30:e4:3c:85:2c:fa:49:88:c5:09:eb:16:87:63:ff:2d: e9:66:aa:97:5b:b0:a7:02:8c:04:f8:3b:8c:37:d1:38:be:d9: 39:c7:fc:ed:43:c7:b8:6e:36:63:92:79:57:57:7d:27:f7:35: e0:a0:53:17:1f:aa:ec:b4:88:eb:72:9e:2c:0e:e3:1e:dc:a5: 85:ee:bd:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUxMTA0MTk0NzEwWhcNMjUxMTExMTk0NzEwWjAYMRYwFAYD VQQDEw02OTBhNTgzZi1hMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56DFRjCWgK4E/HZ2jBzJB5cnU4kgWWYh13GcrfOtbUvsnkSFrXeho8gHS3SA 3tk0RLSAhu5rxvo8hDb2ljfTdHaxniS3uHexZNSAYZO9qPqiiSK1XfS1su2u/OD5 /G4uMTwpX/E40nIjIqRRO7wbJiXENGTNIrN5aj7vlLgs6+Y/kNfuR1u/G9t7YPOr yEHsCDLrRD1rALdycDdNUhNzeQs7VgKGqc6b3fo2Hx3NY9jKb9rNTgBKhBwRmMTX KunYfEk+mfJ9rtCWImJl4iMIrxzuZ5mWYJgJPB52qVhyiwz96m7vEsZDycdhg1Lk 2Dogn5gKHfGl6yA8lDxRo7urnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKXpcEx WGOwzAn03oVvaJ7ZzoAKMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2H3irGgR8zxzVMJyxvHVH1lk4dkTka5lho1CtdafuKaSx+IQKtG/H SmsWLpi+DsT99kqJptm/HbwXxdnRK6WKTr6Hz25ijI+rGK1pydce8oBJfD1HUo1k pc/bRwiH+2QuRMD3eXpyPuKlVyhopQTA+9/YH+FQE+LjtCOI7fH9x/XjBUJ0ZiOB 2J0dSYDbHwFz+9mTSXSv2WTUGq50HxoQcj7RP4XQO/zaMOZugN+D93uW4QuwoDDk PIUs+kmIxQnrFodj/y3pZqqXW7CnAowE+DuMN9E4vtk5x/ztQ8e4bjZjknlXV30n 9zXgoFMXH6rstIjrcp4sDuMe3KWF7r2J -----END CERTIFICATE-----Generated at Wed Nov 5 11:38:17 2025 by rpki-client