$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft File: ycf7MVXuXrRUGnY3mYlwgGpG878.mft (raw, json) Hash identifier: T9/eShWtOsSiaZVRLYPl0IYKYotZFiKAWUelrN/m+pg= Subject key identifier: 2F:DD:8B:CD:8A:47:9E:93:9A:6C:A5:F6:BC:81:28:0A:09:69:28:69 Authority key identifier: C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF Certificate issuer: /CN=A919AB96/serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft Manifest number: 2A Signing time: Wed 05 Nov 2025 07:54:04 +0000 Manifest this update: Wed 05 Nov 2025 07:54:03 +0000 Manifest next update: Wed 12 Nov 2025 07:54:03 +0000 Files and hashes: 1: ycf7MVXuXrRUGnY3mYlwgGpG878.crl (hash: ei7HfdHnAxsZpZHemEFxpYGm3fR0o7/aoc47/OwTytI=) 2: CDD6FA7CAD8511F08C759F59C4F9AE02.roa (hash: yXrHOs4+nJaaVCnnX4/LliEWbcY6OxUiaroiLnewb70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AB96, serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF Validity Not Before: Nov 5 07:54:03 2025 GMT Not After : Nov 12 07:54:03 2025 GMT Subject: CN=690b029b-f850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:74:79:dc:e5:4b:2e:76:10:43:ff:12:3a: fa:40:40:15:4a:f0:9d:29:f4:7e:b6:9e:26:b5:bb: 48:fd:8a:f0:ed:77:4e:df:0e:72:f1:5f:6c:f9:5d: d0:b4:ee:9e:6a:ff:ad:f3:24:2e:b2:71:5b:f1:d5: 03:e3:30:71:41:9f:fe:ad:fa:b9:9a:43:4e:a6:50: 3b:bf:dc:6a:c6:48:0f:2c:dc:65:f7:22:3d:e4:61: e1:01:22:42:dc:d8:dd:d1:f2:4b:32:62:02:de:c9: b0:54:44:5c:d6:36:1d:6b:59:03:2b:f1:f1:0c:c6: 5a:85:a9:97:63:65:f8:ab:d5:aa:0c:8f:bd:c4:44: e3:39:33:25:6d:91:96:4e:a5:2f:8f:65:98:c7:7c: 88:87:24:6f:be:0d:bc:c5:5e:9f:69:14:fe:a4:3f: eb:34:07:33:f7:b3:04:b4:83:ef:38:58:f8:3b:24: 44:46:72:6d:1c:ca:90:14:a3:ba:97:35:a4:0e:73: 88:d9:e9:2a:9f:80:a9:56:da:6e:bf:37:80:31:31: 61:97:11:65:57:d8:6c:17:8b:22:54:c6:50:b1:56: 2e:4d:e7:29:b6:08:9f:a5:14:ed:e6:b3:d9:b9:87: 27:c7:c5:8e:29:47:0d:94:4a:15:98:f4:b5:63:fc: e9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DD:8B:CD:8A:47:9E:93:9A:6C:A5:F6:BC:81:28:0A:09:69:28:69 X509v3 Authority Key Identifier: keyid:C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:1d:e8:88:b7:4f:6d:5b:24:14:b1:45:fa:66:58:d3:a9:59: 60:1b:e0:8c:16:91:dd:da:25:55:2f:26:2f:c0:fc:2c:65:42: 35:fe:f8:dd:55:19:f9:ac:48:f2:1c:28:ae:a2:b2:be:ea:df: c3:ec:77:11:e9:7a:d1:0c:93:9e:00:96:90:30:40:ed:e0:06: df:4e:7f:82:75:41:59:73:62:e0:a6:1a:ce:ce:1e:0f:dc:05: 25:a4:1a:af:fd:67:b6:c8:49:f7:ef:3b:ca:7f:4e:54:c6:f9: 55:a1:e3:af:00:fd:6e:8b:b1:35:ed:23:fc:08:a0:47:28:9a: f0:7b:d8:0f:93:7f:8b:9e:3c:00:56:f6:e0:f5:49:23:e9:9f: 4b:1c:55:f5:c2:97:fa:c2:3c:50:bf:63:b6:e2:92:06:e3:ac: 67:85:cf:ab:aa:9a:c2:ab:68:73:74:27:f7:ba:32:01:55:6b: 93:d7:1d:ec:1c:55:08:d4:30:2f:0b:91:11:2f:01:7a:b6:c8: 7c:88:01:05:a2:78:aa:36:07:32:cd:f7:da:99:d4:07:21:8c: 04:97:ef:8e:7f:b5:d4:b3:df:f5:ff:45:cc:d0:e7:04:a0:ef: 6a:16:81:f1:d3:a6:4b:84:cb:3e:ee:23:46:64:49:01:95:cc: ef:71:03:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUI5NjExMC8GA1UEBRMoQzlDN0ZCMzE1NUVFNUVCNDU0MUE3NjM3OTk4OTcwODA2 QTQ2RjNCRjAeFw0yNTExMDUwNzU0MDNaFw0yNTExMTIwNzU0MDNaMBgxFjAUBgNV BAMTDTY5MGIwMjliLWY4NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5YHR53OVLLnYQQ/8SOvpAQBVK8J0p9H62nia1u0j9ivDtd07fDnLxX2z5XdC0 7p5q/63zJC6ycVvx1QPjMHFBn/6t+rmaQ06mUDu/3GrGSA8s3GX3Ij3kYeEBIkLc 2N3R8ksyYgLeybBURFzWNh1rWQMr8fEMxlqFqZdjZfir1aoMj73EROM5MyVtkZZO pS+PZZjHfIiHJG++DbzFXp9pFP6kP+s0BzP3swS0g+84WPg7JERGcm0cypAUo7qX NaQOc4jZ6SqfgKlW2m6/N4AxMWGXEWVX2GwXiyJUxlCxVi5N5ym2CJ+lFO3ms9m5 hyfHxY4pRw2UShWY9LVj/Ol3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUL92LzYpH npOabKX2vIEoCglpKGkwHwYDVR0jBBgwFoAUycf7MVXuXrRUGnY3mYlwgGpG878w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBQjk2LzExNjU2MTMyN0Y3 RjExRjA4NDE3NTkzRkM0RjlBRTAyL3ljZjdNVlh1WHJSVUduWTNtWWx3Z0dwRzg3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWNmN01WWHVYclJVR25ZM21ZbHdnR3BHODc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB Qjk2LzExNjU2MTMyN0Y3RjExRjA4NDE3NTkzRkM0RjlBRTAyL3ljZjdNVlh1WHJS VUduWTNtWWx3Z0dwRzg3OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALMd6Ii3T21bJBSxRfpmWNOpWWAb4IwWkd3aJVUvJi/A/CxlQjX++N1V GfmsSPIcKK6isr7q38PsdxHpetEMk54AlpAwQO3gBt9Of4J1QVlzYuCmGs7OHg/c BSWkGq/9Z7bISffvO8p/TlTG+VWh468A/W6LsTXtI/wIoEcomvB72A+Tf4uePABW 9uD1SSPpn0scVfXCl/rCPFC/Y7bikgbjrGeFz6uqmsKraHN0J/e6MgFVa5PXHewc VQjUMC8LkREvAXq2yHyIAQWieKo2BzLN99qZ1AchjASX745/tdSz3/X/RczQ5wSg 72oWgfHTpkuEyz7uI0ZkSQGVzO9xAxk= -----END CERTIFICATE-----Generated at Wed Nov 5 19:08:14 2025 by rpki-client