$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: 5zruChWHT17MGjVDvIgjsnLG+qe/FAv2LWx2ayFIjyo= Subject key identifier: FB:FE:E7:00:A2:51:65:60:E4:7B:D6:DD:DC:08:8A:88:66:97:7C:DB Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: E4 Signing time: Sun 19 Oct 2025 08:27:29 +0000 Manifest this update: Sun 19 Oct 2025 08:27:29 +0000 Manifest next update: Sun 26 Oct 2025 08:27:29 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: F6WAlatjVoargCJsGEaH06qVyB35Z6CnRldh0BsUt6Y=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Oct 19 08:27:29 2025 GMT Not After : Oct 26 08:27:29 2025 GMT Subject: CN=68f4a0f1-cd01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:59:86:65:36:fa:f5:88:a0:b7:a4:a0:ac:5a: e1:05:4f:1c:63:a4:e6:a8:91:1c:f8:d5:3b:7b:a4: 08:59:f1:6a:31:7c:d1:c5:cc:89:35:16:ec:d7:66: 61:0a:2d:ca:f9:b9:e6:59:95:4c:35:57:2e:33:01: 32:97:97:a7:bc:5e:83:8b:d0:ef:64:c0:ff:05:57: 85:80:71:4d:0c:69:a7:1e:0e:56:09:1d:6e:03:50: 81:53:f1:7b:eb:ac:0b:f7:e8:8e:1f:c8:85:fa:f7: b6:ae:38:db:9c:df:4d:7d:0d:06:cf:6a:00:4a:5e: 58:3e:c9:5a:68:b9:13:9d:60:e8:29:5b:62:aa:f2: 36:b4:34:ae:68:8f:ed:b1:8a:e2:f9:0d:e2:11:0b: a4:a2:e3:54:60:57:53:33:0f:67:e8:da:e4:47:2a: 06:49:2d:f7:fb:13:20:ac:4e:68:a0:bd:82:66:a6: 75:88:0b:7d:dd:7b:cb:07:02:e7:8a:ad:ed:09:4e: 7f:c8:0a:99:f4:fb:c5:a5:02:5c:89:a3:c3:b7:1f: 6b:85:e8:0d:20:7c:fe:0b:38:de:e1:25:34:74:5f: bf:14:f5:cf:a4:b1:bb:f3:cb:4e:81:28:aa:2b:64: 7c:1f:f7:fd:d6:35:f5:7e:2a:dd:3d:ac:cd:4f:1e: 40:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FE:E7:00:A2:51:65:60:E4:7B:D6:DD:DC:08:8A:88:66:97:7C:DB X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:56:f5:97:c7:23:e6:3d:75:e0:c6:2b:97:74:b8:38:38:39: 1c:d5:2d:8d:87:35:7c:fd:c8:2d:09:d6:a0:4e:dd:86:4b:46: 2b:a0:c6:24:e4:78:d7:9d:69:84:73:f0:cb:1d:d7:35:e2:ff: 00:7a:72:2c:a9:17:95:c0:9a:89:b5:9b:d4:10:4e:39:f0:e4: d8:ea:52:58:5f:2c:2f:19:9b:00:a2:78:5f:09:c9:55:da:00: 83:73:03:82:39:9e:0a:d7:43:9d:a8:5b:2b:10:99:54:ec:09: 77:23:95:b9:01:4c:47:2f:23:f5:2c:fa:92:0f:0b:f0:92:0e: 62:47:e7:8d:a5:5d:83:f0:f8:fc:90:26:58:c7:65:7f:77:dd: 3f:01:65:1f:dc:61:b0:3e:61:4e:e9:09:aa:92:9a:96:37:41: 3b:d3:1e:76:49:77:a2:e1:92:bb:74:7c:1e:96:63:b5:b2:46: 70:a3:9d:d4:1f:3c:53:1c:22:d2:de:45:3e:11:43:e6:b8:07: 91:5e:b8:36:e6:47:85:9f:1f:c4:c2:6c:7e:e5:f2:e9:83:18: 1e:bb:3c:32:4a:bc:c3:ac:4b:cd:b2:ad:73:72:89:b4:18:ec: a9:24:18:f0:6f:ee:9e:ae:4e:ad:d5:e4:24:a4:80:83:63:a0: c7:43:a3:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUxMDE5MDgyNzI5WhcNMjUxMDI2MDgyNzI5WjAYMRYwFAYD VQQDEw02OGY0YTBmMS1jZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFmGZTb69Yigt6SgrFrhBU8cY6TmqJEc+NU7e6QIWfFqMXzRxcyJNRbs12Zh Ci3K+bnmWZVMNVcuMwEyl5envF6Di9DvZMD/BVeFgHFNDGmnHg5WCR1uA1CBU/F7 66wL9+iOH8iF+ve2rjjbnN9NfQ0Gz2oASl5YPslaaLkTnWDoKVtiqvI2tDSuaI/t sYri+Q3iEQukouNUYFdTMw9n6NrkRyoGSS33+xMgrE5ooL2CZqZ1iAt93XvLBwLn iq3tCU5/yAqZ9PvFpQJciaPDtx9rhegNIHz+Czje4SU0dF+/FPXPpLG788tOgSiq K2R8H/f91jX1firdPazNTx5AfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv+5wCi UWVg5HvW3dwIiohml3zbMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHVvWXxyPmPXXgxiuXdLg4ODkc1S2NhzV8/cgtCdagTt2GS0YroMYk 5HjXnWmEc/DLHdc14v8AenIsqReVwJqJtZvUEE458OTY6lJYXywvGZsAonhfCclV 2gCDcwOCOZ4K10OdqFsrEJlU7Al3I5W5AUxHLyP1LPqSDwvwkg5iR+eNpV2D8Pj8 kCZYx2V/d90/AWUf3GGwPmFO6QmqkpqWN0E70x52SXei4ZK7dHwelmO1skZwo53U HzxTHCLS3kU+EUPmuAeRXrg25keFnx/Ewmx+5fLpgxgeuzwySrzDrEvNsq1zcom0 GOypJBjwb+6erk6t1eQkpICDY6DHQ6Oj -----END CERTIFICATE-----Generated at Mon Oct 20 10:52:03 2025 by rpki-client