$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: DtPBFSTjvDC8S1Sohn5cIQdUdf4pQLylJKh0V8bjVN4= Subject key identifier: 7C:08:7D:6D:25:47:7A:64:3A:40:35:87:01:63:C6:30:F0:59:F0:12 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 0223 Signing time: Sun 19 Oct 2025 04:28:22 +0000 Manifest this update: Sun 19 Oct 2025 04:28:22 +0000 Manifest next update: Sun 26 Oct 2025 04:28:22 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: E9X+GfukqW/ssQc415iz1KUeLGSRGxzJ4UVEUUp47C0=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: WbvHWJpGhR5F5UQEA2wky32hyI5JtD8Tsxw8FwN0LUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Oct 19 04:28:22 2025 GMT Not After : Oct 26 04:28:22 2025 GMT Subject: CN=68f468e6-4b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e4:d1:47:7c:31:10:87:01:d8:01:e2:0d:16: 24:37:7f:64:92:a5:8d:9a:a0:a2:08:43:89:67:fb: bf:25:2d:ae:3c:d7:09:6e:8c:b1:68:1e:4c:eb:c3: 2b:ad:0a:ea:3c:59:08:26:e3:b5:3d:3f:b3:33:a4: dc:c0:3c:2a:4c:66:23:35:5d:c3:49:e7:ff:c4:1f: 64:ce:31:4c:19:7f:a7:d1:f6:a2:ec:bb:c2:da:bc: bb:76:ed:46:3e:40:3a:7e:3b:40:db:9a:46:6f:05: 9f:75:8b:12:e5:b4:ee:24:82:c3:10:c0:79:7c:97: f7:73:50:82:48:be:95:f3:cc:1a:6a:86:80:56:c4: a0:9d:a5:30:c0:fa:ac:86:41:7b:0a:7c:64:be:ab: 4e:b8:a4:e4:bc:65:4f:9b:49:fd:43:b8:02:81:de: e9:84:08:a3:5e:b8:1b:28:73:7c:7c:e0:81:56:f9: 57:9f:0e:6a:1f:7b:cf:b0:de:41:0e:6a:c6:17:26: ba:c6:0c:58:c8:0a:7f:78:b7:e1:3f:0f:a4:01:6a: 67:f4:1b:34:9c:88:be:ab:d3:f0:97:e9:31:e9:32: b7:62:41:1d:67:75:01:f3:80:d4:6a:d8:5c:ff:34: 46:13:2d:57:ac:9d:6d:b9:34:1a:32:35:89:d5:36: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:08:7D:6D:25:47:7A:64:3A:40:35:87:01:63:C6:30:F0:59:F0:12 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:f8:b4:10:01:c6:53:78:fe:b8:af:f9:6e:fb:f5:ed:53:63: 3e:82:56:11:e5:d6:46:4a:e9:c0:bd:f6:fd:2e:66:24:c8:0c: 15:83:83:2c:e0:d7:8c:e6:b8:32:93:24:4b:8b:32:20:08:f1: 65:87:ba:f8:09:05:da:ce:29:1b:3d:63:9c:3a:bc:de:cf:7f: 08:9d:ee:be:78:4d:d3:14:bd:dc:72:83:d3:2f:09:30:b4:f8: 37:fc:dd:ff:98:24:76:69:09:cc:9d:9a:1b:51:81:7a:47:48: e2:7f:0d:d4:3a:00:d8:f7:da:55:4c:d5:1d:94:38:6d:81:6f: 0a:58:a0:5d:83:2b:1a:3f:9f:6f:e2:3b:de:19:3c:43:fd:84: dc:cc:53:fb:c6:d9:5f:27:ea:cd:ea:65:cc:9f:bf:08:94:6c: d3:37:8f:b8:ee:e3:cf:3f:00:08:f6:f6:21:ca:4c:0d:44:d8: e9:fe:d0:eb:50:6e:40:f3:e9:5c:91:b1:86:da:7c:b0:cb:71: 77:df:75:45:2c:eb:34:f5:d3:74:03:f7:77:08:fd:26:e5:49: 7e:b5:0f:02:e9:a8:18:d4:40:6f:8f:1e:b9:40:4d:d6:46:31: 83:7c:2d:bb:c0:ea:ca:cc:a0:b5:3c:e8:34:15:ac:b1:ae:29: 2a:e6:08:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUxMDE5MDQyODIyWhcNMjUxMDI2MDQyODIyWjAYMRYwFAYD VQQDEw02OGY0NjhlNi00YjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneTRR3wxEIcB2AHiDRYkN39kkqWNmqCiCEOJZ/u/JS2uPNcJboyxaB5M68Mr rQrqPFkIJuO1PT+zM6TcwDwqTGYjNV3DSef/xB9kzjFMGX+n0fai7LvC2ry7du1G PkA6fjtA25pGbwWfdYsS5bTuJILDEMB5fJf3c1CCSL6V88waaoaAVsSgnaUwwPqs hkF7CnxkvqtOuKTkvGVPm0n9Q7gCgd7phAijXrgbKHN8fOCBVvlXnw5qH3vPsN5B DmrGFya6xgxYyAp/eLfhPw+kAWpn9Bs0nIi+q9Pwl+kx6TK3YkEdZ3UB84DUathc /zRGEy1XrJ1tuTQaMjWJ1TZcMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwIfW0l R3pkOkA1hwFjxjDwWfASMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp+LQQAcZTeP64r/lu+/XtU2M+glYR5dZGSunAvfb9LmYkyAwVg4Ms 4NeM5rgykyRLizIgCPFlh7r4CQXazikbPWOcOrzez38Ine6+eE3TFL3ccoPTLwkw tPg3/N3/mCR2aQnMnZobUYF6R0jifw3UOgDY99pVTNUdlDhtgW8KWKBdgysaP59v 4jveGTxD/YTczFP7xtlfJ+rN6mXMn78IlGzTN4+47uPPPwAI9vYhykwNRNjp/tDr UG5A8+lckbGG2nywy3F333VFLOs09dN0A/d3CP0m5Ul+tQ8C6agY1EBvjx65QE3W RjGDfC27wOrKzKC1POg0Fayxrikq5gid -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:45 2025 by rpki-client