$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: nRHL50USGXqdarSrtN0sUhPP5MyUyvSK5hOhC/oA3pY= Subject key identifier: 4F:BF:8F:D5:28:27:63:38:71:DD:E8:19:16:A9:CA:D7:0A:EB:87:93 Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 01B3 Signing time: Wed 05 Nov 2025 03:38:55 +0000 Manifest this update: Wed 05 Nov 2025 03:38:55 +0000 Manifest next update: Wed 12 Nov 2025 03:38:55 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: sFDlsFd+CesQfuTCMuoIHCEhJII1/ZXZpr8yyvZaqD4=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: zdwZO0F8HmTS0a7Wa5QQzty6jheoVPgBvRYPbS/dvxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Nov 5 03:38:55 2025 GMT Not After : Nov 12 03:38:55 2025 GMT Subject: CN=690ac6cf-7980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:40:32:e5:a3:b0:30:d6:e1:15:b0:f2:43:56: ae:62:84:21:09:31:1d:9f:51:a4:c9:a1:cf:22:c7: 2e:b6:59:ac:f8:49:aa:92:ac:8f:37:9b:33:3e:f4: 99:6b:ea:c9:ae:f9:f1:22:d6:83:be:68:62:3e:8f: de:e2:4a:b2:b1:a5:2c:a6:65:93:30:e9:b2:7d:e3: 05:65:58:dc:fc:d6:52:b9:5b:42:69:a4:2c:5b:fc: 53:af:46:e4:43:5f:ea:07:c1:ec:b9:c4:d3:70:ee: 36:b4:1a:b6:78:01:e7:41:a4:21:e6:c4:b4:1a:27: fb:e7:1a:66:ba:94:ee:0b:ac:b7:df:cf:18:ef:b8: af:4f:2e:af:c5:9d:19:04:48:7c:c8:57:7c:f8:92: fc:35:6c:4e:b4:83:c5:51:ba:8d:3d:94:03:a5:0d: 77:95:1d:8d:fb:bf:4e:d9:36:5d:d6:bc:98:a3:8b: 4e:f5:e4:fd:8d:57:4e:c8:71:c4:80:a8:b0:f4:10: a4:32:fd:da:f0:9a:f7:8f:ea:42:c3:5d:70:26:57: be:0d:bc:2d:ee:e5:08:99:ed:e8:ca:ab:9b:27:b3: 14:86:d6:cc:06:42:67:94:1b:76:71:38:54:94:e3: 4c:b2:49:88:6d:bf:82:ea:d7:2c:5d:eb:2c:95:3e: c1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BF:8F:D5:28:27:63:38:71:DD:E8:19:16:A9:CA:D7:0A:EB:87:93 X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e1:99:2c:31:c6:79:8f:fd:66:4d:8b:c8:27:32:1d:e3:a0: bd:36:45:1d:45:93:00:fc:be:1a:95:d1:d2:cb:eb:da:bc:55: 9e:b9:18:91:f2:a3:cc:de:6d:04:f2:9f:51:b7:e3:4c:a0:f1: 7e:5e:05:a0:43:b4:50:ba:fe:94:66:fb:e5:83:14:62:89:c1: 13:04:10:18:9c:05:0d:c5:45:70:ed:06:44:fa:0d:e7:0f:1b: 4d:30:78:9a:7c:26:82:06:29:9c:c1:5b:60:0a:30:b9:cd:f0: e6:ce:e4:9e:61:31:21:16:e2:9d:89:ce:94:4b:a8:3f:a0:f1: fe:8b:9f:5f:71:cd:cd:3f:87:90:e1:3d:d9:4e:dc:0d:72:fc: 96:b5:5e:dd:7e:af:01:8a:23:6e:a8:a5:42:7b:2b:ad:06:0e: c9:e6:f5:77:e0:75:3a:77:a4:c6:1c:b2:c9:0e:e6:51:e4:a6: 6d:79:18:71:cb:2e:1b:09:26:64:e9:68:5d:00:cf:58:d3:80: 60:3c:23:c3:8c:3c:49:59:42:7e:6b:29:52:01:22:1a:ac:44: d1:13:ce:84:fd:93:e7:16:7d:ec:69:5d:5f:18:41:d8:7f:05: fa:03:5e:ac:53:eb:1e:4c:fd:82:d7:89:f1:ec:c2:0b:b3:76: 11:73:d7:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUxMTA1MDMzODU1WhcNMjUxMTEyMDMzODU1WjAYMRYwFAYD VQQDEw02OTBhYzZjZi03OTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0Ay5aOwMNbhFbDyQ1auYoQhCTEdn1GkyaHPIscutlms+EmqkqyPN5szPvSZ a+rJrvnxItaDvmhiPo/e4kqysaUspmWTMOmyfeMFZVjc/NZSuVtCaaQsW/xTr0bk Q1/qB8HsucTTcO42tBq2eAHnQaQh5sS0Gif75xpmupTuC6y3388Y77ivTy6vxZ0Z BEh8yFd8+JL8NWxOtIPFUbqNPZQDpQ13lR2N+79O2TZd1ryYo4tO9eT9jVdOyHHE gKiw9BCkMv3a8Jr3j+pCw11wJle+Dbwt7uUIme3oyqubJ7MUhtbMBkJnlBt2cThU lONMskmIbb+C6tcsXesslT7BswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+/j9Uo J2M4cd3oGRapytcK64eTMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC4ZksMcZ5j/1mTYvIJzId46C9NkUdRZMA/L4aldHSy+vavFWeuRiR 8qPM3m0E8p9Rt+NMoPF+XgWgQ7RQuv6UZvvlgxRiicETBBAYnAUNxUVw7QZE+g3n DxtNMHiafCaCBimcwVtgCjC5zfDmzuSeYTEhFuKdic6US6g/oPH+i59fcc3NP4eQ 4T3ZTtwNcvyWtV7dfq8BiiNuqKVCeyutBg7J5vV34HU6d6TGHLLJDuZR5KZteRhx yy4bCSZk6WhdAM9Y04BgPCPDjDxJWUJ+aylSASIarETRE86E/ZPnFn3saV1fGEHY fwX6A16sU+seTP2C14nx7MILs3YRc9fq -----END CERTIFICATE-----Generated at Wed Nov 5 13:02:26 2025 by rpki-client