$ rpki-client -vvf rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft File: y7Nb36Nai-snCaTbsy49IWLsH6g.mft (raw, json) Hash identifier: K5Lce5oEhzRzBaowK19pg+BlwWZnvd8qLprs1Q2Wsek= Subject key identifier: 12:EF:52:0F:0F:E0:97:24:A1:CB:A0:23:07:0E:C4:6E:BC:9C:54:71 Authority key identifier: CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 Certificate issuer: /CN=A919130F/serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft Manifest number: 5C Signing time: Mon 03 Nov 2025 07:06:01 +0000 Manifest this update: Mon 03 Nov 2025 07:06:01 +0000 Manifest next update: Mon 10 Nov 2025 07:06:01 +0000 Files and hashes: 1: y7Nb36Nai-snCaTbsy49IWLsH6g.crl (hash: iLPOtkSjzV07aDViwbD1ObCUvV5kNnoGrdsqhToTXmc=) 2: 26B1D24C2A4211F08783A40EC4F9AE02.roa (hash: 3bcDVvnCHw6LlppchOqrgSyXHliARmZhxXNaF8dSpvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919130F, serialNumber=CBB35BDFA35A8BEB2709A4DBB32E3D2162EC1FA8 Validity Not Before: Nov 3 07:06:01 2025 GMT Not After : Nov 10 07:06:01 2025 GMT Subject: CN=69085459-4422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6c:54:b2:3f:be:48:77:1c:a7:35:25:e3:ca: c4:03:68:88:39:58:ea:ca:c2:11:20:e5:12:97:c3: 62:5c:af:97:8c:f9:e2:1e:52:5d:1b:79:c8:88:83: de:58:0e:c3:04:53:2d:55:e8:33:1e:e7:46:a1:9d: 3d:26:70:94:a1:d6:5d:17:21:e0:15:9d:55:18:21: 5d:f5:dd:f1:1d:a1:07:7e:f4:4d:aa:5a:bf:dd:dc: ed:f9:6d:32:e5:d6:cf:d7:d0:98:6f:d4:ed:6b:ff: 48:2b:08:b5:ee:3f:51:88:44:1f:e3:74:e3:9c:c3: 71:20:f2:54:79:0c:b2:9b:24:07:fa:cb:46:3d:ab: 83:b7:5c:c4:e2:55:8e:ac:e5:a6:37:7e:6a:61:39: 3b:a9:a1:16:6c:f8:df:29:95:9b:c0:12:72:65:d4: 59:88:3b:6a:c0:03:58:23:2d:8f:71:e9:fc:cb:92: d5:c4:b9:47:6a:4c:03:67:28:54:5c:6e:3f:c5:18: 85:9f:42:dd:40:56:cc:ed:24:fe:97:e3:62:89:20: 99:46:18:d3:94:5f:b8:46:88:bf:96:ab:32:2a:28: b6:af:f5:fc:06:7a:0b:89:8d:b8:78:05:4a:3c:ce: be:7e:d7:46:d0:32:97:53:df:8d:8f:5d:4d:6b:49: 88:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EF:52:0F:0F:E0:97:24:A1:CB:A0:23:07:0E:C4:6E:BC:9C:54:71 X509v3 Authority Key Identifier: keyid:CB:B3:5B:DF:A3:5A:8B:EB:27:09:A4:DB:B3:2E:3D:21:62:EC:1F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7Nb36Nai-snCaTbsy49IWLsH6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919130F/72E2C4242A4111F08321934CC4F9AE02/y7Nb36Nai-snCaTbsy49IWLsH6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:54:a8:37:b7:88:85:a8:4f:11:5e:bb:23:a4:29:02:82:94: 10:f6:41:56:d0:7b:65:f7:b0:01:43:4b:0a:19:ab:df:82:67: 69:a9:02:f5:27:96:d3:57:d4:fc:a5:22:48:d9:66:28:c6:d1: 21:67:78:fa:84:09:16:86:85:83:39:5a:55:7d:8a:9c:0e:07: 95:32:78:73:bc:e4:64:47:ca:0e:b6:e1:3e:03:8d:c0:d9:0a: 1f:7d:52:b8:b3:60:2c:c1:01:fa:a9:6f:1d:9c:e6:f4:5b:99: 15:7e:25:f1:60:05:0c:c6:3c:1d:fc:d1:c1:c8:42:ad:e2:83: d7:a2:bd:e2:a0:5c:39:4b:ad:69:db:21:93:10:53:51:bc:dd: 01:4f:0d:02:51:c4:61:31:c1:80:ee:e8:87:fe:64:2c:ad:46: 5b:de:4f:5d:05:fd:3e:b2:b4:2e:4e:ee:1b:0c:2b:a1:05:ab: 05:58:11:73:46:fe:b3:65:89:f2:45:41:52:c0:78:e9:f8:c6: 2d:92:aa:18:6b:81:fc:90:e6:3f:fb:cd:94:e9:2b:d7:bd:ea: fd:7e:e7:15:8f:9b:45:a2:7b:d3:f4:78:c9:dd:69:df:f3:02: 09:9f:03:59:73:de:9d:a6:ba:3f:98:56:4b:85:12:37:13:47: 94:3d:6c:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTMwRjExMC8GA1UEBRMoQ0JCMzVCREZBMzVBOEJFQjI3MDlBNERCQjMyRTNEMjE2 MkVDMUZBODAeFw0yNTExMDMwNzA2MDFaFw0yNTExMTAwNzA2MDFaMBgxFjAUBgNV BAMTDTY5MDg1NDU5LTQ0MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGbFSyP75IdxynNSXjysQDaIg5WOrKwhEg5RKXw2Jcr5eM+eIeUl0beciIg95Y DsMEUy1V6DMe50ahnT0mcJSh1l0XIeAVnVUYIV313fEdoQd+9E2qWr/d3O35bTLl 1s/X0Jhv1O1r/0grCLXuP1GIRB/jdOOcw3Eg8lR5DLKbJAf6y0Y9q4O3XMTiVY6s 5aY3fmphOTupoRZs+N8plZvAEnJl1FmIO2rAA1gjLY9x6fzLktXEuUdqTANnKFRc bj/FGIWfQt1AVsztJP6X42KJIJlGGNOUX7hGiL+WqzIqKLav9fwGeguJjbh4BUo8 zr5+10bQMpdT342PXU1rSYgbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEu9SDw/g lyShy6AjBw7EbrycVHEwHwYDVR0jBBgwFoAUy7Nb36Nai+snCaTbsy49IWLsH6gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMzBGLzcyRTJDNDI0MkE0 MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1zbkNhVGJzeTQ5SVdMc0g2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTdOYjM2TmFpLXNuQ2FUYnN5NDlJV0xzSDZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx MzBGLzcyRTJDNDI0MkE0MTExRjA4MzIxOTM0Q0M0RjlBRTAyL3k3TmIzNk5haS1z bkNhVGJzeTQ5SVdMc0g2Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE9UqDe3iIWoTxFeuyOkKQKClBD2QVbQe2X3sAFDSwoZq9+CZ2mpAvUn ltNX1PylIkjZZijG0SFnePqECRaGhYM5WlV9ipwOB5UyeHO85GRHyg624T4DjcDZ Ch99UrizYCzBAfqpbx2c5vRbmRV+JfFgBQzGPB380cHIQq3ig9eiveKgXDlLrWnb IZMQU1G83QFPDQJRxGExwYDu6If+ZCytRlveT10F/T6ytC5O7hsMK6EFqwVYEXNG /rNlifJFQVLAeOn4xi2SqhhrgfyQ5j/7zZTpK9e96v1+5xWPm0Wie9P0eMndad/z AgmfA1lz3p2muj+YVkuFEjcTR5Q9bEY= -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:59 2025 by rpki-client