$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: oc5nvCcR+2cEywdaLM3ol69qQJpC5ouAxp7fOKhkGew= Subject key identifier: F6:2C:08:1D:A2:66:54:D5:28:2D:C9:AD:45:68:30:42:98:55:75:6F Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 0809 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 0801 Signing time: Sat 18 Oct 2025 22:13:36 +0000 Manifest this update: Sat 18 Oct 2025 22:13:35 +0000 Manifest next update: Sat 25 Oct 2025 22:13:35 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: RGE8o1MPzGFSMuCkNlmeZN/IM7XcMlvRhYgIEdqyf1g=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: jObAEaW9jlDTMyIb6A8JZqjslqhvlPIsAzJOzv+NnRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Oct 18 22:13:35 2025 GMT Not After : Oct 25 22:13:35 2025 GMT Subject: CN=68f41110-21a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:56:01:77:e8:5b:f0:61:a0:74:19:78:bd:dd: 74:c1:b1:3d:b3:8d:28:4f:46:59:14:d9:b5:9f:aa: 01:ba:36:39:a0:b3:cd:02:e9:69:d9:79:46:42:2a: db:18:e9:22:54:bc:38:bd:cf:81:bd:de:c3:2f:44: 48:d7:ef:f5:21:8f:fb:ee:64:82:1a:69:52:d6:e9: e1:d6:e8:2a:af:cc:8a:51:d7:1a:37:32:37:6d:48: 09:16:57:6c:6b:95:0d:7c:6e:03:d7:91:ff:26:3a: 00:b9:b6:67:4e:1f:1d:61:62:75:a5:48:6c:0d:42: fa:7c:20:8e:bb:eb:39:fc:13:25:bd:b3:30:51:a0: 35:80:5f:79:81:74:da:69:d9:b5:72:ba:7d:b5:d5: 25:4e:83:9b:38:17:9e:e9:7b:88:3a:df:3e:24:76: 2c:86:ae:3d:6f:a2:c5:4b:00:39:9f:7c:a8:79:a3: 53:82:b6:77:e8:2b:c5:38:23:c4:88:f3:68:c7:e2: 2c:c0:05:41:4e:3e:11:94:3c:bd:bd:0b:fd:43:06: ff:76:25:86:69:eb:dd:79:14:da:4e:55:9c:73:ac: 7b:07:e4:f1:fa:49:0f:34:00:84:57:53:0d:3d:7e: 33:92:d7:be:23:cb:45:6d:a1:94:b2:9d:38:c5:93: a0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2C:08:1D:A2:66:54:D5:28:2D:C9:AD:45:68:30:42:98:55:75:6F X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0f:f1:10:68:ae:58:ea:ae:c4:44:19:6a:90:5e:a0:59:38: 0d:b6:4a:1e:2f:b3:0c:11:31:88:b3:a0:b9:05:79:2b:e9:9f: 69:f6:c6:a1:7e:fc:03:7f:8d:76:80:ee:7f:00:31:04:58:fa: 00:39:47:13:5a:ef:da:6a:90:c5:00:82:3e:4e:7d:61:2a:2a: 88:0f:46:f2:e9:4f:90:a0:1d:46:f2:cb:00:c8:46:50:2f:5c: e3:fb:f4:6a:ac:e9:47:dd:c9:25:10:1b:50:ea:12:a7:36:5b: 67:2c:b5:2e:12:96:12:ce:a1:f7:f5:f6:81:b8:6d:e8:e4:8e: 2e:9a:ae:92:5b:02:f9:84:6d:45:21:1f:db:0d:b7:26:c1:9d: e0:1b:3c:41:48:8b:0b:e5:88:d2:89:7f:bc:d7:9f:95:a5:f7: 33:a4:44:26:5d:65:1c:cd:ca:59:ad:84:de:eb:8d:de:12:a9: 70:23:16:3d:0a:38:0f:f0:2d:bd:ab:75:24:1d:56:4d:c5:54: 21:93:c7:5f:8d:93:74:88:50:bd:ee:97:af:1f:69:2e:dd:42: 8a:27:b1:48:31:6d:ac:70:80:37:d6:7a:83:eb:23:6c:16:6f: 0f:41:18:3a:00:4f:f5:ee:18:f7:f0:5c:11:74:6b:b7:6b:33: 25:91:0a:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUxMDE4MjIxMzM1WhcNMjUxMDI1MjIxMzM1WjAYMRYwFAYD VQQDEw02OGY0MTExMC0yMWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1YBd+hb8GGgdBl4vd10wbE9s40oT0ZZFNm1n6oBujY5oLPNAulp2XlGQirb GOkiVLw4vc+Bvd7DL0RI1+/1IY/77mSCGmlS1unh1ugqr8yKUdcaNzI3bUgJFlds a5UNfG4D15H/JjoAubZnTh8dYWJ1pUhsDUL6fCCOu+s5/BMlvbMwUaA1gF95gXTa adm1crp9tdUlToObOBee6XuIOt8+JHYshq49b6LFSwA5n3yoeaNTgrZ36CvFOCPE iPNox+IswAVBTj4RlDy9vQv9Qwb/diWGaevdeRTaTlWcc6x7B+Tx+kkPNACEV1MN PX4zkte+I8tFbaGUsp04xZOg9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYsCB2i ZlTVKC3JrUVoMEKYVXVvMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1D/EQaK5Y6q7ERBlqkF6gWTgNtkoeL7MMETGIs6C5BXkr6Z9p9sah fvwDf412gO5/ADEEWPoAOUcTWu/aapDFAII+Tn1hKiqID0by6U+QoB1G8ssAyEZQ L1zj+/RqrOlH3cklEBtQ6hKnNltnLLUuEpYSzqH39faBuG3o5I4umq6SWwL5hG1F IR/bDbcmwZ3gGzxBSIsL5YjSiX+815+VpfczpEQmXWUczcpZrYTe643eEqlwIxY9 CjgP8C29q3UkHVZNxVQhk8dfjZN0iFC97pevH2ku3UKKJ7FIMW2scIA31nqD6yNs Fm8PQRg6AE/17hj38FwRdGu3azMlkQpI -----END CERTIFICATE-----Generated at Tue Oct 21 00:44:05 2025 by rpki-client