$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: 82wHXy3FAxxso1OO+qoQr8Y46q8gBJQNolcykUl2pR4= Subject key identifier: EA:54:C8:35:E4:61:BD:2E:7F:30:03:57:16:EF:AC:0D:5A:65:F0:52 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0226 Signing time: Wed 05 Nov 2025 02:10:00 +0000 Manifest this update: Wed 05 Nov 2025 02:09:59 +0000 Manifest next update: Wed 12 Nov 2025 02:09:59 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: 1nbeZZWS11LZ1qn1PnZdo9ByJNSfbTy6Y1+y4S8Df84=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Nov 5 02:09:59 2025 GMT Not After : Nov 12 02:09:59 2025 GMT Subject: CN=690ab1f7-93d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:e9:c6:14:89:2e:87:3a:6c:be:89:7e:09: af:2b:26:a5:a4:8e:20:d5:bf:fb:0c:56:5b:15:9f: 30:c6:7a:93:7c:0e:1e:4a:ad:dc:c1:04:63:10:79: 05:b1:18:c2:69:af:f6:94:67:13:0e:f0:e8:46:59: 11:2d:49:22:e9:9e:ac:09:78:29:3e:88:8e:4c:b3: db:7e:11:5d:d5:a1:60:ef:e0:30:55:f7:8c:43:8c: f3:ac:6e:6e:7c:0e:49:ac:c8:0f:15:03:e8:e8:a1: 1c:c4:74:93:c9:6e:32:a3:9d:b1:f9:80:70:8e:6c: 49:0f:31:b2:22:9b:1f:12:48:1d:95:f4:72:cd:ff: b8:a6:50:45:69:c8:02:b4:94:d5:d3:1c:65:e7:20: f6:52:81:7f:c0:c4:27:41:47:4d:18:a0:15:b8:70: 86:a4:4e:ca:70:ae:c8:99:05:f5:c6:78:1c:28:9d: 05:ec:b4:36:4c:5c:fd:d4:62:c3:37:e6:ff:53:c6: 56:8d:fc:9e:7a:01:af:89:b1:b7:44:9a:44:29:79: 6b:9a:9c:d7:50:bf:07:17:15:e3:2f:ff:7b:0a:a7: cb:c7:cf:72:f3:a7:1b:31:98:8b:6b:87:2f:e6:73: 89:12:23:b3:b4:2a:01:b6:58:72:2f:3e:e5:29:ff: 37:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:54:C8:35:E4:61:BD:2E:7F:30:03:57:16:EF:AC:0D:5A:65:F0:52 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:93:e4:ff:71:62:a4:54:3e:5e:90:96:d4:ce:67:7b:2d:d6: 69:4d:86:d3:4a:39:81:fa:36:31:6d:ed:b5:e4:5f:fe:96:23: 29:1d:d0:44:7d:ce:b7:69:9a:2c:1a:b6:d0:00:21:ba:a3:44: ec:41:e2:4a:4b:f8:16:2e:e8:8c:89:af:1f:b2:6d:4b:d9:f7: 9a:4e:a6:63:57:6b:dc:41:19:00:f7:4f:54:2c:14:96:57:d8: 11:b4:d7:60:d4:d5:9e:21:86:f0:ff:bf:8e:df:dd:b8:cc:76: e3:b2:14:c2:8a:9c:08:9a:8d:ad:a6:d3:c8:bd:1b:8c:8c:00: fb:e1:5c:67:fb:b4:a5:24:5f:32:f3:5c:a3:83:71:f8:ad:c9: 97:e3:1d:9d:4a:5c:78:c5:86:c2:4d:a6:44:78:f3:92:b0:4d: 2c:aa:fc:0b:0c:25:b6:2c:67:1d:3c:96:97:67:72:a8:9d:0e: 88:46:c1:3a:54:b2:e3:e1:cc:df:51:28:e6:46:29:88:fb:57: 45:c3:6f:17:68:be:94:b4:52:2a:b1:f1:97:7f:70:ab:a0:9e: 67:1d:db:40:16:1c:fb:69:8e:66:d0:7a:1f:50:17:0b:9e:ed: ef:21:98:cf:0c:b2:1f:e4:5a:6d:f1:0a:42:8f:54:cf:8d:c0: 4c:62:3f:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUxMTA1MDIwOTU5WhcNMjUxMTEyMDIwOTU5WjAYMRYwFAYD VQQDEw02OTBhYjFmNy05M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXLpxhSJLoc6bL6JfgmvKyalpI4g1b/7DFZbFZ8wxnqTfA4eSq3cwQRjEHkF sRjCaa/2lGcTDvDoRlkRLUki6Z6sCXgpPoiOTLPbfhFd1aFg7+AwVfeMQ4zzrG5u fA5JrMgPFQPo6KEcxHSTyW4yo52x+YBwjmxJDzGyIpsfEkgdlfRyzf+4plBFacgC tJTV0xxl5yD2UoF/wMQnQUdNGKAVuHCGpE7KcK7ImQX1xngcKJ0F7LQ2TFz91GLD N+b/U8ZWjfyeegGvibG3RJpEKXlrmpzXUL8HFxXjL/97CqfLx89y86cbMZiLa4cv 5nOJEiOztCoBtlhyLz7lKf83NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpUyDXk Yb0ufzADVxbvrA1aZfBSMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzk+T/cWKkVD5ekJbUzmd7LdZpTYbTSjmB+jYxbe215F/+liMpHdBE fc63aZosGrbQACG6o0TsQeJKS/gWLuiMia8fsm1L2feaTqZjV2vcQRkA909ULBSW V9gRtNdg1NWeIYbw/7+O3924zHbjshTCipwImo2tptPIvRuMjAD74Vxn+7SlJF8y 81yjg3H4rcmX4x2dSlx4xYbCTaZEePOSsE0sqvwLDCW2LGcdPJaXZ3KonQ6IRsE6 VLLj4czfUSjmRimI+1dFw28XaL6UtFIqsfGXf3CroJ5nHdtAFhz7aY5m0HofUBcL nu3vIZjPDLIf5Fpt8QpCj1TPjcBMYj9L -----END CERTIFICATE-----Generated at Thu Nov 6 06:08:01 2025 by rpki-client