$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: /Nnmazwa5yajDwG3cFwT2LUg0iLISSZ14SZLVkYmorw= Subject key identifier: A6:78:16:3A:98:23:47:85:95:3D:84:23:F7:B1:58:03:1E:A6:28:3B Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0C51 Signing time: Sat 18 Oct 2025 19:23:51 +0000 Manifest this update: Sat 18 Oct 2025 19:23:50 +0000 Manifest next update: Sat 25 Oct 2025 19:23:50 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: bbWCKwjCgqYwiQZYBe08l7FTS+6FdFjizT2h3HU71gw=) 2: DF7C7778A97711F0A76BF369C4F9AE02.roa (hash: OSXhKKiDl5kubjEXiVsvjwFhJaQLJC7jeqKNWBQrzaE=) 3: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: mpNtvPGDNyq+PRsSPrmTIOnrME1PEVdh0woyoWhgRGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Oct 18 19:23:50 2025 GMT Not After : Oct 25 19:23:50 2025 GMT Subject: CN=68f3e946-1bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ad:28:ff:42:03:e7:17:d6:11:4c:25:fa:60: a7:09:72:10:80:3a:db:47:b4:2f:c2:0c:6d:ab:59: 09:88:f2:b6:a9:31:07:ad:60:8b:a3:97:ef:f0:c1: 2b:5d:a5:5e:a5:64:29:d5:bb:30:f9:33:0b:e8:92: c1:e4:ae:d1:1a:c5:31:e0:ce:50:a6:da:9d:43:f3: d3:75:73:f1:03:d9:ec:08:05:f5:15:3e:e6:da:a7: 13:68:b3:bd:b8:84:61:71:31:ad:33:1b:d0:cf:5d: 45:e9:c1:d2:1c:2e:95:cb:81:12:60:02:6e:46:d4: 10:84:c7:a0:56:38:b5:88:db:9e:96:70:76:f0:19: 5f:fe:db:07:05:11:cb:17:f0:9c:b1:07:cd:31:50: 22:5b:b3:ee:e9:5b:ea:cd:0e:c9:e6:fd:81:04:74: 3a:26:a3:2c:c4:73:85:95:10:71:e5:33:74:55:4b: 63:71:56:33:62:66:61:f4:34:09:29:49:bc:a4:31: a1:35:ba:64:9b:f0:80:35:0b:b0:80:c1:04:b0:e2: 2e:7a:be:ec:18:01:71:86:cf:50:5c:93:26:dd:c8: 89:50:e6:44:92:fe:3f:a7:9c:67:cb:3b:11:7c:1f: f5:58:e9:2e:44:de:b5:54:76:c9:22:63:ff:88:ff: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:78:16:3A:98:23:47:85:95:3D:84:23:F7:B1:58:03:1E:A6:28:3B X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:23:69:36:32:92:9a:a1:c8:f7:ce:88:d7:fb:91:62:51:1d: 2e:e1:a4:2a:76:01:2c:fd:bd:eb:18:2e:f1:84:d4:58:e3:22: c7:dc:e1:5c:f0:2e:69:c1:b0:6e:71:16:19:fb:02:9e:ac:14: be:5a:f3:1d:8f:33:df:e5:ce:ae:09:57:ce:82:2a:06:19:9d: a3:e1:09:e6:98:5e:5c:f5:a0:00:41:67:25:e1:44:b5:93:f3: 49:0b:3d:33:f4:d7:64:ce:55:4b:c8:b5:4a:f8:49:68:b8:90: 57:50:e6:0b:86:41:47:9c:a6:27:28:3b:ca:27:a7:5c:a7:bb: b5:9a:76:48:d3:69:e3:9e:2c:85:d0:9d:b5:2b:09:05:18:5b: 9b:50:d4:01:3b:4f:0f:da:09:c9:8c:f1:53:17:ab:01:7d:be: 1a:3c:95:d8:46:26:cf:e7:b3:ce:98:b6:e9:58:76:38:22:a4: 42:6f:0b:3a:40:03:32:2e:d4:65:c4:0d:4a:3a:9c:b6:1e:4d: fc:0f:33:36:4b:3e:79:19:ec:57:82:13:40:98:82:ba:dc:3d: 10:0a:20:c4:bf:4c:bb:bf:0d:bf:7e:9b:0f:00:68:4a:e2:e3: 5b:45:77:36:6c:8a:56:cd:9a:c0:f8:f0:f7:0c:c8:0a:2b:5c: b8:2e:fa:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUxMDE4MTkyMzUwWhcNMjUxMDI1MTkyMzUwWjAYMRYwFAYD VQQDEw02OGYzZTk0Ni0xYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqq0o/0ID5xfWEUwl+mCnCXIQgDrbR7Qvwgxtq1kJiPK2qTEHrWCLo5fv8MEr XaVepWQp1bsw+TML6JLB5K7RGsUx4M5QptqdQ/PTdXPxA9nsCAX1FT7m2qcTaLO9 uIRhcTGtMxvQz11F6cHSHC6Vy4ESYAJuRtQQhMegVji1iNuelnB28Blf/tsHBRHL F/CcsQfNMVAiW7Pu6VvqzQ7J5v2BBHQ6JqMsxHOFlRBx5TN0VUtjcVYzYmZh9DQJ KUm8pDGhNbpkm/CANQuwgMEEsOIuer7sGAFxhs9QXJMm3ciJUOZEkv4/p5xnyzsR fB/1WOkuRN61VHbJImP/iP+DoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZ4FjqY I0eFlT2EI/exWAMepig7MB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3I2k2MpKaocj3zojX+5FiUR0u4aQqdgEs/b3rGC7xhNRY4yLH3OFc 8C5pwbBucRYZ+wKerBS+WvMdjzPf5c6uCVfOgioGGZ2j4QnmmF5c9aAAQWcl4US1 k/NJCz0z9NdkzlVLyLVK+ElouJBXUOYLhkFHnKYnKDvKJ6dcp7u1mnZI02njniyF 0J21KwkFGFubUNQBO08P2gnJjPFTF6sBfb4aPJXYRibP57POmLbpWHY4IqRCbws6 QAMyLtRlxA1KOpy2Hk38DzM2Sz55GexXghNAmIK63D0QCiDEv0y7vw2/fpsPAGhK 4uNbRXc2bIpWzZrA+PD3DMgKK1y4Lvr6 -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:00 2025 by rpki-client