$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: kz0z77Goy6i6LPqKaEQKnB4wvPLEOZn5O8swxKdTcfw= Subject key identifier: 0A:E0:BB:EC:53:3C:09:EF:80:BA:DE:EE:5E:11:3C:44:CC:3D:E2:42 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 05F4 Signing time: Sun 19 Oct 2025 00:34:43 +0000 Manifest this update: Sun 19 Oct 2025 00:34:43 +0000 Manifest next update: Sun 26 Oct 2025 00:34:43 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: faQ7qiUJwFMRI7zcQuVIhnYZWophxx+E4qQ4FqgHe88=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Oct 19 00:34:43 2025 GMT Not After : Oct 26 00:34:43 2025 GMT Subject: CN=68f43223-6268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:ef:ed:35:6d:be:a2:fd:64:c5:24:45:cd: 85:01:e7:5d:b4:95:0d:d2:33:03:aa:74:57:3b:2f: 9a:80:5d:f9:3b:66:ee:31:e1:79:7e:7f:02:8f:bb: b5:5f:68:e1:a4:0b:bd:87:ff:3c:fa:98:92:98:a2: 7f:82:98:a7:00:0e:5e:d1:0f:01:14:d1:86:80:ff: e3:90:59:1e:84:d2:31:b8:93:97:ab:9a:0e:0d:6f: 4b:49:08:9e:a1:52:60:96:bf:f8:bf:8b:ba:e2:52: 93:b8:92:3c:5d:81:a9:7e:62:84:2f:8e:8e:80:f3: c7:1d:63:94:e6:92:4f:9e:94:4d:53:56:5c:fe:91: 0d:00:f5:b8:d6:33:3e:8f:8c:f8:25:1c:39:ce:51: cb:a5:f4:6d:2c:7e:fa:e5:7b:be:7b:eb:fd:3c:29: ae:db:69:7f:27:e6:4d:5d:16:6a:f6:1d:0e:73:81: c4:05:d0:5c:64:ae:90:27:0b:56:9d:7b:ce:1f:dc: 5c:b1:ac:84:4d:6e:be:c0:ed:f2:21:d0:b8:4a:8c: 2d:66:01:9e:8b:6e:42:75:b0:ec:36:fa:86:9f:46: a1:e9:34:c7:39:f4:93:fb:a7:45:72:fe:6f:bb:42: e5:09:29:f2:93:1f:89:82:87:6e:a2:37:77:68:43: 3c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E0:BB:EC:53:3C:09:EF:80:BA:DE:EE:5E:11:3C:44:CC:3D:E2:42 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:25:6c:41:57:ac:83:07:d0:4a:72:2f:31:78:cf:83:70:5d: 11:56:b8:64:5f:7f:26:f6:c8:df:e6:e0:e2:d6:e0:55:75:57: 26:68:51:a4:35:e0:ad:d7:01:a0:b5:a5:14:cf:44:70:cf:0e: ef:c6:a3:a3:c3:fe:af:0f:e3:af:9d:ad:c1:14:d0:16:46:c2: 94:14:98:b6:f3:e3:3a:52:a1:34:de:70:14:df:98:ee:d2:6a: 70:8b:73:fc:35:24:79:95:24:9b:a8:04:b9:bb:68:03:54:49: 77:d9:05:15:d0:e8:ef:0f:0b:0b:17:8c:f0:13:29:40:5b:b7: 97:52:c3:08:55:e3:68:6e:68:c6:7a:94:96:76:ae:c1:03:01: 8c:2b:75:22:a6:62:a5:da:01:a9:ec:af:29:59:c6:05:d3:6f: 14:6a:51:5e:d5:f5:c2:4b:4c:ca:7d:83:cc:2d:c1:2f:81:46: 19:75:d6:9d:57:62:56:49:89:1d:a3:db:66:cd:66:16:db:99: 42:15:16:aa:71:1a:0e:9c:93:0c:fc:4f:59:ba:72:b1:31:e2: 61:35:4f:4e:29:2c:39:2a:21:cd:29:1b:cf:5b:df:ed:e8:9b: a1:d8:ca:60:d0:7b:19:28:fb:55:e3:5d:5c:76:64:c0:65:9f: 41:29:13:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUxMDE5MDAzNDQzWhcNMjUxMDI2MDAzNDQzWjAYMRYwFAYD VQQDEw02OGY0MzIyMy02MjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06zv7TVtvqL9ZMUkRc2FAeddtJUN0jMDqnRXOy+agF35O2buMeF5fn8Cj7u1 X2jhpAu9h/88+piSmKJ/gpinAA5e0Q8BFNGGgP/jkFkehNIxuJOXq5oODW9LSQie oVJglr/4v4u64lKTuJI8XYGpfmKEL46OgPPHHWOU5pJPnpRNU1Zc/pENAPW41jM+ j4z4JRw5zlHLpfRtLH765Xu+e+v9PCmu22l/J+ZNXRZq9h0Oc4HEBdBcZK6QJwtW nXvOH9xcsayETW6+wO3yIdC4SowtZgGei25CdbDsNvqGn0ah6TTHOfST+6dFcv5v u0LlCSnykx+Jgoduojd3aEM8QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArgu+xT PAnvgLre7l4RPETMPeJCMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/JWxBV6yDB9BKci8xeM+DcF0RVrhkX38m9sjf5uDi1uBVdVcmaFGk NeCt1wGgtaUUz0Rwzw7vxqOjw/6vD+Ovna3BFNAWRsKUFJi28+M6UqE03nAU35ju 0mpwi3P8NSR5lSSbqAS5u2gDVEl32QUV0OjvDwsLF4zwEylAW7eXUsMIVeNobmjG epSWdq7BAwGMK3UipmKl2gGp7K8pWcYF028UalFe1fXCS0zKfYPMLcEvgUYZddad V2JWSYkdo9tmzWYW25lCFRaqcRoOnJMM/E9ZunKxMeJhNU9OKSw5KiHNKRvPW9/t 6Juh2Mpg0HsZKPtV411cdmTAZZ9BKRNG -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:24 2025 by rpki-client