$ rpki-client -vvf rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft File: Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft (raw, json) Hash identifier: dkPHQnlxSdF8bvpqCkkUp9HnGFV/cxSUziIjDD0lP4g= Subject key identifier: E7:B1:10:93:EE:40:62:78:95:A5:8F:B8:E4:5B:26:22:C6:4E:48:B9 Authority key identifier: 63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 Certificate issuer: /CN=A913EE46/serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft Manifest number: 02B3 Signing time: Sun 19 Oct 2025 04:07:16 +0000 Manifest this update: Sun 19 Oct 2025 04:07:15 +0000 Manifest next update: Sun 26 Oct 2025 04:07:15 +0000 Files and hashes: 1: Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl (hash: GXrjNt9+y/ZNdvBVQ7HiyHH3hico6NcV0mSp0jl0Q/o=) 2: 9DFFBC7C12F011EDA0DB0B12C4F9AE02.roa (hash: JWAO5OM1htkOqA8zsEncfXnArds8hOb3Z7zkeDNiSm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EE46, serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Validity Not Before: Oct 19 04:07:15 2025 GMT Not After : Oct 26 04:07:15 2025 GMT Subject: CN=68f463f3-237c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c1:25:7a:15:52:9f:d8:00:86:55:20:8c:91: af:20:b7:db:f8:ae:35:4c:1c:eb:3b:e2:07:58:1e: 63:db:1c:e4:a5:e8:e6:2d:ec:ce:df:ab:7e:e0:4a: cc:d7:28:28:b2:75:e2:b6:f4:c0:c3:69:e0:70:5a: ff:3b:73:dc:2e:6f:6d:b4:b5:91:6b:a4:34:ad:46: 87:f0:09:de:7b:85:da:57:fb:6e:50:7d:b5:e0:97: 33:75:8f:a3:c6:23:27:61:a5:c6:b9:1e:95:90:78: 44:15:2d:bc:14:dc:01:3e:46:a4:e1:2b:ed:96:da: b5:e6:15:be:30:ee:90:06:1a:bd:c6:dc:b7:e0:e1: db:fa:d7:03:ca:1a:0b:d0:1a:71:f4:06:9a:08:01: 6a:3b:ae:51:68:dc:e2:8a:ca:28:30:6a:c9:5e:8a: 7e:06:fe:bb:73:0b:20:28:ee:d9:38:28:01:15:d5: a5:05:b2:ed:c6:58:e7:d1:5a:4d:15:98:ef:b3:93: b9:4f:c6:1e:0d:71:47:95:fc:45:6a:8b:25:32:25: 1a:c2:fe:d7:a2:1b:c4:1c:1e:9e:fb:55:4e:2b:08: 1c:b9:a4:b4:4c:8f:63:19:c0:1a:b6:72:4b:25:d1: 9f:7e:af:c1:5a:32:fa:11:e9:b8:c8:eb:fa:a4:7c: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B1:10:93:EE:40:62:78:95:A5:8F:B8:E4:5B:26:22:C6:4E:48:B9 X509v3 Authority Key Identifier: keyid:63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:49:66:4c:cf:fb:d5:61:5b:4a:0b:de:6b:4a:4e:3a:e2:00: 34:c6:bd:df:93:d5:2a:f9:71:ff:42:82:38:20:81:ba:2e:aa: 3a:41:aa:a1:e5:be:74:42:96:e2:19:27:6b:3d:9f:21:e1:56: 46:d9:1c:e9:fa:d0:a3:cb:c7:b5:41:82:9f:c7:c4:aa:ad:34: 51:78:f3:0a:8c:7a:bc:e5:1c:49:d8:73:4e:1a:d0:5a:94:ec: 45:1d:d3:6e:52:77:84:08:94:e5:ec:3c:ad:76:97:3a:80:ba: b4:4a:55:0e:5e:73:1e:29:b5:c0:83:33:f9:85:2c:ec:53:cb: b7:11:18:c0:fd:39:66:ce:c4:24:fa:d2:c4:64:d9:e9:05:8c: 27:9b:03:21:24:63:51:93:48:b1:fc:86:76:86:cd:67:1f:58: 6b:44:3c:c1:88:08:d5:d3:37:1c:d1:4c:54:b0:db:d7:41:95: a4:4d:e7:b5:9b:f5:f8:9e:8d:15:d9:95:1e:f9:75:f8:05:6a: 32:c3:e5:dc:83:59:82:17:ef:90:a5:94:3c:c2:db:56:b9:8f: 40:7c:18:7e:8d:71:12:58:ab:d0:71:98:5d:35:88:0b:12:34: fd:e3:97:0d:47:6b:ab:6d:6c:17:55:5e:0f:8f:de:de:be:8f: 32:66:4e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VFNDYxMTAvBgNVBAUTKDYzNTE1QjM2NDExMzg0OEZBNTU0RDI4NDJGNTg0MTg3 N0NGNkFGMDAwHhcNMjUxMDE5MDQwNzE1WhcNMjUxMDI2MDQwNzE1WjAYMRYwFAYD VQQDEw02OGY0NjNmMy0yMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsElehVSn9gAhlUgjJGvILfb+K41TBzrO+IHWB5j2xzkpejmLezO36t+4ErM 1ygosnXitvTAw2ngcFr/O3PcLm9ttLWRa6Q0rUaH8Anee4XaV/tuUH214JczdY+j xiMnYaXGuR6VkHhEFS28FNwBPkak4Svtltq15hW+MO6QBhq9xty34OHb+tcDyhoL 0Bpx9AaaCAFqO65RaNziisooMGrJXop+Bv67cwsgKO7ZOCgBFdWlBbLtxljn0VpN FZjvs5O5T8YeDXFHlfxFaoslMiUawv7XohvEHB6e+1VOKwgcuaS0TI9jGcAatnJL JdGffq/BWjL6Eem4yOv6pHx6AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOexEJPu QGJ4laWPuORbJiLGTki5MB8GA1UdIwQYMBaAFGNRWzZBE4SPpVTShC9YQYd89q8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUU0Ni9BRTgyRTEyNjEy RUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJLWxWTktFTDFoQmgzejJy d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxRmJOa0VUaEktbFZOS0VMMWhCaDN6MnJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUU0Ni9BRTgyRTEyNjEyRUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJ LWxWTktFTDFoQmgzejJyd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoSWZMz/vVYVtKC95rSk464gA0xr3fk9Uq+XH/QoI4IIG6Lqo6Qaqh 5b50QpbiGSdrPZ8h4VZG2Rzp+tCjy8e1QYKfx8SqrTRRePMKjHq85RxJ2HNOGtBa lOxFHdNuUneECJTl7Dytdpc6gLq0SlUOXnMeKbXAgzP5hSzsU8u3ERjA/TlmzsQk +tLEZNnpBYwnmwMhJGNRk0ix/IZ2hs1nH1hrRDzBiAjV0zcc0UxUsNvXQZWkTee1 m/X4no0V2ZUe+XX4BWoyw+Xcg1mCF++QpZQ8wttWuY9AfBh+jXESWKvQcZhdNYgL EjT945cNR2urbWwXVV4Pj97evo8yZk5x -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:44 2025 by rpki-client