$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: aEM2/0Qd8WIIofDozFOiiHgFsIVd9QZPu6DRxmpaj1I= Subject key identifier: 3D:A6:17:4B:D0:22:F6:95:F8:79:B4:33:74:6A:39:44:86:F2:91:68 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07CF Signing time: Sat 18 Oct 2025 22:36:01 +0000 Manifest this update: Sat 18 Oct 2025 22:36:00 +0000 Manifest next update: Sat 25 Oct 2025 22:36:00 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: zW4M+yiTl2eHmiXDEiagi0v708tqSTs8ldTU5rfCiec=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Oct 18 22:36:00 2025 GMT Not After : Oct 25 22:36:00 2025 GMT Subject: CN=68f41651-15f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9b:7c:6e:c5:c2:ab:46:a5:5b:bd:03:d8:2a: 3f:bc:a3:e7:2d:64:03:5c:a4:2d:f9:72:96:e6:b7: 07:de:a4:bb:8f:d4:13:a9:79:44:e6:b4:12:e3:10: 07:65:e1:c1:6b:19:37:1c:a8:57:56:5e:5a:fd:74: 6c:ea:ea:ee:69:35:82:55:05:c0:c8:a6:22:f7:00: b2:45:af:c1:8c:8a:d2:21:3e:8e:5f:a1:08:71:cf: 06:ef:18:40:82:6a:c9:63:c8:0e:bd:09:1e:f1:13: c2:e1:52:0f:23:1a:9a:1e:94:85:ec:c2:70:b1:f5: 02:7b:02:39:5b:a9:70:36:3a:39:d3:01:89:0b:27: 6b:e6:06:87:22:57:50:e5:a2:76:eb:e0:db:73:c2: f0:3e:1c:4f:98:44:b7:be:17:63:5d:0b:28:66:db: 3d:92:77:32:0c:30:ee:f0:0b:32:c5:c7:8d:a7:23: 33:68:ee:43:eb:0d:ea:8f:8a:39:93:fb:3b:0c:6f: 19:c9:51:83:5c:c3:6a:d0:15:ad:e1:57:ec:cb:13: fb:d7:81:17:37:73:4c:a0:b5:56:86:1b:a1:0a:90: 99:96:f0:90:1d:48:c5:f7:26:9e:fa:90:37:d2:fa: 0f:53:41:95:46:16:b7:07:6b:79:1b:23:8f:d8:58: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A6:17:4B:D0:22:F6:95:F8:79:B4:33:74:6A:39:44:86:F2:91:68 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c2:3f:25:be:23:4f:c7:64:d7:e4:d2:41:f8:68:03:5c:71: 76:e0:dd:64:ca:f5:fd:6d:26:9c:e7:81:ca:6b:69:38:09:49: bd:eb:c5:34:92:c8:ac:aa:72:a9:5d:ba:d2:99:0c:3e:18:e5: c1:13:d3:10:8b:23:06:e0:78:21:16:5a:92:de:72:50:d7:ee: 9f:81:63:e4:0b:ce:5c:eb:ac:71:93:42:85:8c:99:8a:c8:ee: 82:d2:97:6c:f1:dc:be:a1:2b:0d:0d:4d:b4:71:7f:a8:12:30: 8f:6c:bc:f7:b9:92:39:c4:27:72:61:b4:ff:53:c2:5d:50:86: f2:77:e8:62:41:65:ab:99:e0:33:9e:f8:89:f1:04:61:cf:38: d2:3e:c1:ed:cb:98:a4:ac:8f:de:d8:0a:d7:77:d0:61:8e:61: 6c:47:14:fe:a2:41:60:24:ed:9b:9f:90:9c:a1:dd:a2:a6:f4: ba:cf:98:09:ac:67:ee:bf:f4:1e:90:90:b1:49:08:81:d0:a1: 11:76:76:d1:ef:0d:b6:13:29:ab:72:53:c7:d5:2d:a2:3b:ee: 04:53:bc:37:3e:9a:34:5c:00:03:ed:c1:23:ec:8f:97:39:8a: f6:05:1b:7a:14:ce:70:92:b4:4b:a7:a3:b1:99:33:01:b8:7b: 79:80:23:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMDE4MjIzNjAwWhcNMjUxMDI1MjIzNjAwWjAYMRYwFAYD VQQDEw02OGY0MTY1MS0xNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15t8bsXCq0alW70D2Co/vKPnLWQDXKQt+XKW5rcH3qS7j9QTqXlE5rQS4xAH ZeHBaxk3HKhXVl5a/XRs6uruaTWCVQXAyKYi9wCyRa/BjIrSIT6OX6EIcc8G7xhA gmrJY8gOvQke8RPC4VIPIxqaHpSF7MJwsfUCewI5W6lwNjo50wGJCydr5gaHIldQ 5aJ26+Dbc8LwPhxPmES3vhdjXQsoZts9kncyDDDu8AsyxceNpyMzaO5D6w3qj4o5 k/s7DG8ZyVGDXMNq0BWt4VfsyxP714EXN3NMoLVWhhuhCpCZlvCQHUjF9yae+pA3 0voPU0GVRha3B2t5GyOP2FjbLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2mF0vQ IvaV+Hm0M3RqOUSG8pFoMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlwj8lviNPx2TX5NJB+GgDXHF24N1kyvX9bSac54HKa2k4CUm968U0 ksisqnKpXbrSmQw+GOXBE9MQiyMG4HghFlqS3nJQ1+6fgWPkC85c66xxk0KFjJmK yO6C0pds8dy+oSsNDU20cX+oEjCPbLz3uZI5xCdyYbT/U8JdUIbyd+hiQWWrmeAz nviJ8QRhzzjSPsHty5ikrI/e2ArXd9BhjmFsRxT+okFgJO2bn5Ccod2ipvS6z5gJ rGfuv/QekJCxSQiB0KERdnbR7w22EymrclPH1S2iO+4EU7w3Ppo0XAAD7cEj7I+X OYr2BRt6FM5wkrRLp6OxmTMBuHt5gCPK -----END CERTIFICATE-----Generated at Mon Oct 20 04:23:58 2025 by rpki-client