$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: L+/UZ9ryKuCIVaW+BzZW25mMH2oN0oTKEjXQ/gS6AXM= Subject key identifier: 32:1B:EE:B4:4C:E0:E4:A7:64:61:E6:DB:8A:48:FF:D1:D3:92:62:91 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 01B7 Signing time: Wed 05 Nov 2025 03:12:59 +0000 Manifest this update: Wed 05 Nov 2025 03:12:58 +0000 Manifest next update: Wed 12 Nov 2025 03:12:58 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: 8torQNiv+Dw4uCvAHW0glL6J0H9Oa6wUuqcB/SObCGE=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: 1HSPz5fptSUhMZGOqCo4GWHbK/jQcYLJDQgsd3l//0k=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: qxrX+Z3cG6vZ3aS4ZRQYNGD9CmXUX4wxNipZHWRT9gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Nov 5 03:12:58 2025 GMT Not After : Nov 12 03:12:58 2025 GMT Subject: CN=690ac0bb-4697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3e:5b:a8:ae:6f:75:58:8f:8a:24:04:61:10: cf:d8:c9:38:e9:e1:9f:38:62:a2:63:11:ec:11:b3: 85:c8:e4:27:da:af:c9:b1:89:c4:d8:91:72:aa:6c: 1b:21:f4:95:8d:b5:d9:4b:92:65:d2:30:54:6a:d8: 6a:e3:39:5e:67:d3:bb:d3:2d:0e:82:f4:81:55:03: f7:5e:60:65:9f:94:a0:5e:22:6e:99:d7:71:32:52: 15:e8:6a:d4:41:68:b3:57:10:9a:9d:3e:25:8c:4e: 10:f4:40:e5:bf:f6:e2:45:5a:66:9f:cb:04:0b:0e: d0:00:a3:d8:8d:a3:82:d0:7a:4c:ef:33:27:19:b2: 38:6d:ee:71:d9:15:50:55:8d:f2:d6:09:2f:05:b7: 37:50:38:96:f2:d5:b5:11:57:6d:a2:20:89:72:32: 4c:7c:7a:a8:21:9c:fb:6c:9d:fd:71:56:86:9f:c2: fe:64:6a:de:0d:c3:11:d5:c4:fc:c6:e5:fe:33:a4: 61:bd:28:ae:d5:20:52:f8:51:0f:12:05:09:d5:4d: 23:f1:35:53:f0:14:fa:8d:66:9b:4f:ba:b7:18:cf: 31:5b:7c:f5:4c:44:55:05:57:98:2d:a4:c0:49:c5: f0:82:a3:e2:9b:0a:d4:70:6d:24:24:38:15:47:93: ae:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:EE:B4:4C:E0:E4:A7:64:61:E6:DB:8A:48:FF:D1:D3:92:62:91 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:cc:c7:40:59:19:13:26:d6:46:b4:43:2c:45:cc:40:45:99: 97:48:35:25:d1:37:09:a2:eb:43:44:44:9c:fa:1e:71:b0:20: 0a:83:ea:4e:b0:49:e7:4e:39:5e:b7:da:50:c2:1c:f6:e7:eb: 5f:41:13:b1:b3:f3:dd:39:dc:56:18:32:7c:63:89:7d:9e:08: 07:72:83:33:6a:13:3f:da:08:65:d1:28:e6:53:c6:5b:89:01: 64:e5:21:1e:c0:c7:2e:2c:fe:30:8d:8d:e1:4c:3f:97:0f:3b: 58:4c:51:ae:81:04:15:3d:10:00:79:5a:d2:0b:94:8e:b5:2c: 6d:00:dd:b2:64:d1:88:e8:11:d9:ab:a5:13:03:f9:43:a1:05: ac:0f:f9:4b:b4:c7:e0:5a:63:97:96:03:7e:2f:b4:2e:59:37: 6f:34:fb:b9:86:89:3d:dd:cc:af:d4:d4:34:3a:11:55:b8:9c: 9e:bf:1b:01:f9:d3:08:8a:be:52:81:e2:a1:7d:df:a2:25:1c: af:fe:db:1d:89:48:92:26:f9:ff:d2:9d:4c:7a:a0:88:52:95: 5a:46:6c:cd:78:bd:02:6e:9e:4c:77:21:8a:4f:b4:dd:a6:57: 09:81:d2:00:40:d1:12:6b:c4:58:f6:bf:8a:87:74:92:5a:e8: 73:f3:00:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUxMTA1MDMxMjU4WhcNMjUxMTEyMDMxMjU4WjAYMRYwFAYD VQQDEw02OTBhYzBiYi00Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzT5bqK5vdViPiiQEYRDP2Mk46eGfOGKiYxHsEbOFyOQn2q/JsYnE2JFyqmwb IfSVjbXZS5Jl0jBUathq4zleZ9O70y0OgvSBVQP3XmBln5SgXiJumddxMlIV6GrU QWizVxCanT4ljE4Q9EDlv/biRVpmn8sECw7QAKPYjaOC0HpM7zMnGbI4be5x2RVQ VY3y1gkvBbc3UDiW8tW1EVdtoiCJcjJMfHqoIZz7bJ39cVaGn8L+ZGreDcMR1cT8 xuX+M6RhvSiu1SBS+FEPEgUJ1U0j8TVT8BT6jWabT7q3GM8xW3z1TERVBVeYLaTA ScXwgqPimwrUcG0kJDgVR5OuhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIb7rRM 4OSnZGHm24pI/9HTkmKRMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqzMdAWRkTJtZGtEMsRcxARZmXSDUl0TcJoutDRESc+h5xsCAKg+pO sEnnTjlet9pQwhz25+tfQROxs/PdOdxWGDJ8Y4l9nggHcoMzahM/2ghl0SjmU8Zb iQFk5SEewMcuLP4wjY3hTD+XDztYTFGugQQVPRAAeVrSC5SOtSxtAN2yZNGI6BHZ q6UTA/lDoQWsD/lLtMfgWmOXlgN+L7QuWTdvNPu5hok93cyv1NQ0OhFVuJyevxsB +dMIir5SgeKhfd+iJRyv/tsdiUiSJvn/0p1MeqCIUpVaRmzNeL0Cbp5MdyGKT7Td plcJgdIAQNESa8RY9r+Kh3SSWuhz8wBa -----END CERTIFICATE-----Generated at Wed Nov 5 16:31:39 2025 by rpki-client