$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: Tkf8d18OB9C99IDWwNVYjcbFPLcgGamsmHYh78JVT1Q= Subject key identifier: 09:B4:7F:30:D6:CF:10:CA:3F:AE:13:CA:8F:23:FD:60:6A:02:2B:C8 Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0FC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0FAC Signing time: Sat 18 Oct 2025 18:07:30 +0000 Manifest this update: Sat 18 Oct 2025 18:07:30 +0000 Manifest next update: Sat 25 Oct 2025 18:07:30 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: +yxFbFrsSXAvnBKnI/AckhvUgXBT99wQxcg1ggI3PtQ=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4033 (0xfc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Oct 18 18:07:30 2025 GMT Not After : Oct 25 18:07:30 2025 GMT Subject: CN=68f3d762-2a08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:9e:67:7e:e5:c7:43:6e:ae:5d:bf:da:0f: b4:2a:1c:c0:bb:3c:5c:82:ed:e0:ce:a6:71:8a:e1: 09:bf:b3:85:4d:e1:12:50:f7:cd:0b:99:c5:14:36: b7:94:f9:c4:5f:05:90:da:a0:7d:a1:88:33:2b:c8: 94:6f:1f:b9:9a:4f:a0:5c:d1:3f:2a:1c:37:ff:f6: c6:eb:0e:14:f1:f0:7d:4b:6f:17:9f:21:47:2b:b8: 3f:65:26:63:a1:82:50:67:02:9c:9b:69:22:62:6c: 22:d3:f9:95:05:0b:ee:b6:fc:d9:58:b6:1e:8d:06: 5e:03:b7:9d:6e:e1:8b:7c:ae:87:6e:cb:c9:37:12: e4:2d:c0:27:a4:82:45:49:2c:d4:fb:f5:fd:17:f0: 43:5b:1f:94:fd:de:6c:59:a7:f0:ed:c8:c7:c8:e3: 4c:98:99:4f:dc:6c:c2:2b:d0:e0:c0:3d:b9:4e:ad: 5b:1b:99:45:fc:e4:96:41:94:2a:0c:ee:34:aa:44: 2a:82:01:3f:a3:3d:bc:24:65:ef:19:da:74:64:50: be:91:65:c9:d5:fa:7c:fc:16:30:b5:48:13:0a:2f: 1d:02:a4:a2:8f:87:ee:52:23:06:67:67:a1:ea:f8: 82:56:9b:d2:77:fa:e1:1d:f2:ab:e0:5f:e2:0d:35: c6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B4:7F:30:D6:CF:10:CA:3F:AE:13:CA:8F:23:FD:60:6A:02:2B:C8 X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c6:54:0d:3b:7a:0e:70:94:9c:cd:f7:db:72:a9:8c:3e:fc: 39:84:03:09:da:0f:db:f8:2b:21:6a:e8:98:b9:46:4b:87:d3: 7b:7a:65:ad:cd:53:e4:5a:32:a6:5c:29:7b:0b:1d:2d:8f:18: 3a:97:da:77:b3:95:19:45:99:82:4d:e0:21:63:51:c1:12:ad: 1d:83:ad:87:23:55:62:1a:4f:58:10:b6:d8:18:78:fe:16:63: 0e:ff:14:06:40:55:56:1c:3f:18:1b:36:79:7d:3d:73:39:25: 57:2d:d2:30:d6:71:0d:0b:a5:90:5a:1b:0c:ca:61:00:45:55: ab:c5:24:76:d1:b1:e1:a7:a1:61:88:9e:1d:4d:a1:60:b4:46: 60:96:af:98:e5:d7:7d:ce:ed:05:74:f2:f5:d0:b7:9d:6b:94: b0:8a:36:d1:f8:e1:1d:2c:44:6a:30:33:9c:d0:02:05:ac:67: 46:63:8e:25:ff:08:bc:7f:d8:a0:0a:aa:74:b9:61:6d:2c:bf: 7c:e2:3c:7a:dc:ac:58:ea:89:55:8f:27:db:ba:26:0e:3a:18: 0f:c5:c9:3a:cf:ae:de:85:1a:d6:92:73:08:99:48:12:fa:28: 2f:8f:df:79:aa:f4:05:5a:1c:89:0e:0a:11:7b:bd:ad:44:42: f1:e2:31:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUxMDE4MTgwNzMwWhcNMjUxMDI1MTgwNzMwWjAYMRYwFAYD VQQDEw02OGYzZDc2Mi0yYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq92eZ37lx0Nurl2/2g+0KhzAuzxcgu3gzqZxiuEJv7OFTeESUPfNC5nFFDa3 lPnEXwWQ2qB9oYgzK8iUbx+5mk+gXNE/Khw3//bG6w4U8fB9S28XnyFHK7g/ZSZj oYJQZwKcm2kiYmwi0/mVBQvutvzZWLYejQZeA7edbuGLfK6HbsvJNxLkLcAnpIJF SSzU+/X9F/BDWx+U/d5sWafw7cjHyONMmJlP3GzCK9DgwD25Tq1bG5lF/OSWQZQq DO40qkQqggE/oz28JGXvGdp0ZFC+kWXJ1fp8/BYwtUgTCi8dAqSij4fuUiMGZ2eh 6viCVpvSd/rhHfKr4F/iDTXG6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm0fzDW zxDKP64Tyo8j/WBqAivIMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3xlQNO3oOcJSczffbcqmMPvw5hAMJ2g/b+CshauiYuUZLh9N7emWt zVPkWjKmXCl7Cx0tjxg6l9p3s5UZRZmCTeAhY1HBEq0dg62HI1ViGk9YELbYGHj+ FmMO/xQGQFVWHD8YGzZ5fT1zOSVXLdIw1nENC6WQWhsMymEARVWrxSR20bHhp6Fh iJ4dTaFgtEZglq+Y5dd9zu0FdPL10Leda5SwijbR+OEdLERqMDOc0AIFrGdGY44l /wi8f9igCqp0uWFtLL984jx63KxY6olVjyfbuiYOOhgPxck6z67ehRrWknMImUgS +igvj995qvQFWhyJDgoRe72tRELx4jF/ -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:13 2025 by rpki-client