$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: zV53o0ZSf54QHV9soz403+akLMJaAKkhj2ZeErfotno= Subject key identifier: C7:84:47:2C:42:89:8E:1C:6B:38:BD:97:93:ED:15:F7:2C:F1:C0:01 Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 04DD Signing time: Sun 19 Oct 2025 01:34:41 +0000 Manifest this update: Sun 19 Oct 2025 01:34:40 +0000 Manifest next update: Sun 26 Oct 2025 01:34:40 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: P+oyz6Twi9rlvXllZN9cmQBXLdcV3X8UgbfAdNDGYlA=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: GWZiL4+KkXKacwwHdWBVfV3QtoEcyH45HgJbisXMlBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45, serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: Oct 19 01:34:40 2025 GMT Not After : Oct 26 01:34:40 2025 GMT Subject: CN=68f44031-f934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:ae:51:c6:af:13:39:09:ef:de:39:cd:ce: ea:50:10:ad:57:9d:ab:41:e2:d0:be:45:6a:d6:ef: 94:03:a5:34:bf:34:9f:81:bc:54:66:e3:d8:06:ad: 5c:66:e0:6e:b6:a7:e6:4c:e0:ea:01:b4:7c:03:f1: 4d:d9:8b:9f:d8:6a:20:22:a1:44:07:6a:3e:4f:50: 99:ed:42:64:31:21:7a:49:61:c5:ee:d2:e7:4b:6d: 27:d6:47:b8:4b:cd:22:84:68:b4:6c:54:10:a4:ff: b8:9f:0d:b0:89:85:37:f3:5e:ba:fe:6b:58:de:f5: d6:47:51:c9:5d:4f:30:97:85:d8:75:ce:ec:d0:bb: 98:8f:4c:a0:ac:b7:ba:8b:22:f5:cf:1d:4f:95:eb: 99:69:7e:97:cf:a6:28:d1:0c:48:b9:f8:44:ea:61: 1a:7c:b8:84:34:84:86:5d:3d:88:31:60:2f:82:26: 38:87:47:57:7f:53:a5:92:2d:74:fa:81:73:eb:5e: ec:71:4b:3a:c0:03:ac:df:19:f9:b8:01:ae:bb:85: 56:bb:ab:3f:d9:30:0d:38:23:99:bc:29:45:a5:46: 8c:97:e8:32:46:a4:f9:d4:ab:03:22:ff:b5:fe:cf: 2a:a4:a6:ed:63:ba:d8:f9:75:6b:fa:d5:6b:95:b0: cc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:84:47:2C:42:89:8E:1C:6B:38:BD:97:93:ED:15:F7:2C:F1:C0:01 X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b5:f3:68:e7:cb:e8:df:78:c5:0e:1c:f3:3a:19:c3:a5:aa: da:03:b9:8e:5c:f2:a5:c2:3a:ac:18:a7:86:92:c8:cd:94:11: 8b:e7:6b:b9:f5:a5:fd:1c:66:64:c2:35:95:4c:33:a6:00:b8: 1a:51:52:bc:5d:3a:7b:08:3c:a8:55:9b:b4:9d:6c:d8:da:da: 28:5e:73:23:a4:7b:52:02:05:db:9c:36:80:e1:41:5c:2e:03: 02:2d:62:53:91:92:e4:e7:9b:2b:f9:38:0e:5c:7e:4e:63:2a: 79:a3:af:05:2d:bb:d9:6f:0e:65:fe:ca:31:3b:88:5b:7a:d2: 85:e1:3f:fe:84:10:00:93:88:09:b8:89:28:74:73:c9:00:d1: 6e:9a:90:95:36:1d:7b:d8:8d:49:77:cb:4f:36:ff:80:1f:93: 6f:6b:79:6c:80:67:85:74:04:88:36:b5:11:a5:c4:b5:47:dc: ed:5e:8b:db:50:c1:d3:a2:0c:46:fe:ca:3b:c9:fe:ee:fe:1c: 7d:88:e2:f4:cb:67:d4:c0:bd:9b:a1:f6:e1:3a:e5:3a:74:36: cf:2d:e8:71:a4:ac:36:a2:97:db:29:eb:30:2c:d1:cc:6f:96: b6:26:22:e9:20:dd:f4:3a:53:8c:19:6a:66:88:84:ef:25:71: 18:94:4e:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjUxMDE5MDEzNDQwWhcNMjUxMDI2MDEzNDQwWjAYMRYwFAYD VQQDEw02OGY0NDAzMS1mOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9yuUcavEzkJ7945zc7qUBCtV52rQeLQvkVq1u+UA6U0vzSfgbxUZuPYBq1c ZuButqfmTODqAbR8A/FN2Yuf2GogIqFEB2o+T1CZ7UJkMSF6SWHF7tLnS20n1ke4 S80ihGi0bFQQpP+4nw2wiYU38166/mtY3vXWR1HJXU8wl4XYdc7s0LuYj0ygrLe6 iyL1zx1PleuZaX6Xz6Yo0QxIufhE6mEafLiENISGXT2IMWAvgiY4h0dXf1Olki10 +oFz617scUs6wAOs3xn5uAGuu4VWu6s/2TANOCOZvClFpUaMl+gyRqT51KsDIv+1 /s8qpKbtY7rY+XVr+tVrlbDMvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeERyxC iY4cazi9l5PtFfcs8cABMB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5tfNo58vo33jFDhzzOhnDparaA7mOXPKlwjqsGKeGksjNlBGL52u5 9aX9HGZkwjWVTDOmALgaUVK8XTp7CDyoVZu0nWzY2tooXnMjpHtSAgXbnDaA4UFc LgMCLWJTkZLk55sr+TgOXH5OYyp5o68FLbvZbw5l/soxO4hbetKF4T/+hBAAk4gJ uIkodHPJANFumpCVNh172I1Jd8tPNv+AH5Nva3lsgGeFdASINrURpcS1R9ztXovb UMHTogxG/so7yf7u/hx9iOL0y2fUwL2bofbhOuU6dDbPLehxpKw2opfbKeswLNHM b5a2JiLpIN30OlOMGWpmiITvJXEYlE4v -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:56 2025 by rpki-client