$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: y6iPNwqO/0j8AQqrIiCQarSHyczR2s1m1JZXYiB2VP4= Subject key identifier: 19:83:B0:DC:46:6F:68:09:13:18:AD:4F:95:18:E3:3A:4B:65:27:CF Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C3E Signing time: Mon 20 Oct 2025 19:17:25 +0000 Manifest this update: Mon 20 Oct 2025 19:17:24 +0000 Manifest next update: Mon 27 Oct 2025 19:17:24 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: weXSmV/j3P38ZLjkS50yHVI+QVAC2//xOgNk0HeUBAU=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: oTWmtO2mgStqeMj6jPmXnnLNrPwchhiOjUM05tQ62SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Oct 20 19:17:24 2025 GMT Not After : Oct 27 19:17:24 2025 GMT Subject: CN=68f68ac4-3359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f2:37:46:e4:3e:f9:c8:cb:80:c7:81:ae:16: db:40:f7:9b:6d:40:87:a0:c2:54:50:89:72:70:33: 6d:05:73:8c:44:f1:22:ae:35:a5:14:c6:80:2a:6b: 37:43:45:25:e6:c0:7b:e8:21:08:8d:6c:79:20:73: cf:a1:63:e6:0c:4b:aa:3b:70:38:74:ff:98:e5:13: 71:09:45:5b:75:3e:f4:95:60:28:68:42:19:22:1a: 03:84:c8:62:c8:f9:8a:5e:a1:6b:e5:44:06:64:ff: 9f:64:a7:64:c8:3f:7f:ce:a4:43:73:80:8f:04:c3: 45:8c:5a:de:fb:99:0b:33:4c:0e:2e:5e:20:31:49: f8:e6:40:5f:c7:c0:5d:a9:c0:24:10:5f:4a:93:aa: 21:66:7a:08:62:5f:91:90:6b:a0:a5:7a:f0:aa:98: d9:19:8c:f5:df:47:d6:dd:a4:1d:ed:c1:bf:8c:bf: 08:d3:6c:78:bf:52:48:b4:68:43:7c:39:10:9e:b0: b5:44:25:93:d0:90:99:b5:40:cf:9a:f8:1c:fa:59: d4:95:53:11:1c:24:de:1c:57:b9:59:e2:e5:fc:98: e8:aa:72:76:ae:3f:df:dc:06:c3:29:b0:c7:66:eb: 8f:0b:d1:c4:25:bd:46:45:28:9b:31:db:e7:a4:8a: c1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:83:B0:DC:46:6F:68:09:13:18:AD:4F:95:18:E3:3A:4B:65:27:CF X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f2:06:57:aa:bb:af:90:21:47:51:db:c7:de:77:14:47:eb: 44:90:df:f7:4d:61:56:9f:52:05:14:ed:2d:c5:53:0d:cc:15: d6:7a:a3:2d:9e:62:2b:59:1d:57:e1:8b:40:85:b9:aa:96:17: cf:a8:75:55:73:ef:ee:9e:db:18:19:9e:2e:29:d4:a8:58:8b: 33:c3:4c:ea:ce:73:2a:7e:99:a9:20:db:64:80:83:2e:08:c0: d7:c5:14:b2:6a:75:e7:9d:4d:27:2d:c6:03:b4:72:ca:8c:27: c0:70:16:7a:15:f9:e3:01:e5:82:40:12:ee:ac:c4:a4:3e:12: 3c:d0:9e:23:10:33:e2:ad:30:8a:61:b7:87:ae:82:2d:f0:a4: b8:3d:2d:b8:64:ff:0a:b3:9f:e4:22:b3:2b:d6:eb:19:3a:c2: 5f:8f:0b:89:46:a7:64:79:9e:19:7a:ca:95:73:0e:4f:a2:29: 58:16:a2:7d:e5:b2:5e:54:66:9d:66:41:4b:1b:7c:76:d3:87: 54:08:d1:2e:15:a9:d6:b0:5a:19:ad:79:10:a4:13:8a:38:d9: 17:65:61:ce:81:f1:69:bd:02:86:b4:a7:26:4a:ad:77:96:d0: 76:31:fb:e9:bd:7e:f6:37:d2:67:41:01:c1:f8:a9:7e:80:c3: 53:27:b5:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUxMDIwMTkxNzI0WhcNMjUxMDI3MTkxNzI0WjAYMRYwFAYD VQQDEw02OGY2OGFjNC0zMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfI3RuQ++cjLgMeBrhbbQPebbUCHoMJUUIlycDNtBXOMRPEirjWlFMaAKms3 Q0Ul5sB76CEIjWx5IHPPoWPmDEuqO3A4dP+Y5RNxCUVbdT70lWAoaEIZIhoDhMhi yPmKXqFr5UQGZP+fZKdkyD9/zqRDc4CPBMNFjFre+5kLM0wOLl4gMUn45kBfx8Bd qcAkEF9Kk6ohZnoIYl+RkGugpXrwqpjZGYz130fW3aQd7cG/jL8I02x4v1JItGhD fDkQnrC1RCWT0JCZtUDPmvgc+lnUlVMRHCTeHFe5WeLl/JjoqnJ2rj/f3AbDKbDH ZuuPC9HEJb1GRSibMdvnpIrBQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmDsNxG b2gJExitT5UY4zpLZSfPMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN8gZXqruvkCFHUdvH3ncUR+tEkN/3TWFWn1IFFO0txVMNzBXWeqMt nmIrWR1X4YtAhbmqlhfPqHVVc+/untsYGZ4uKdSoWIszw0zqznMqfpmpINtkgIMu CMDXxRSyanXnnU0nLcYDtHLKjCfAcBZ6FfnjAeWCQBLurMSkPhI80J4jEDPirTCK YbeHroIt8KS4PS24ZP8Ks5/kIrMr1usZOsJfjwuJRqdkeZ4ZesqVcw5PoilYFqJ9 5bJeVGadZkFLG3x204dUCNEuFanWsFoZrXkQpBOKONkXZWHOgfFpvQKGtKcmSq13 ltB2MfvpvX72N9JnQQHB+Kl+gMNTJ7WS -----END CERTIFICATE-----Generated at Tue Oct 21 02:11:24 2025 by rpki-client