$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: nekG0rSOv6+LsfW5csNqsjNPPWOkWjWj73ziknKjaHo= Subject key identifier: 06:B9:00:A4:1D:EA:65:DE:3B:FF:C1:D9:2D:F6:CE:C6:B1:19:7E:58 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 211E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 2112 Signing time: Sat 18 Oct 2025 16:12:16 +0000 Manifest this update: Sat 18 Oct 2025 16:12:16 +0000 Manifest next update: Sat 25 Oct 2025 16:12:16 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: gPRHZAFomNvQdeKe4/Nko4Ye368GUU61dnsWNB2+JYo=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: oBzh3F7vXr0+lbZGHQqiGoRJzyM9Q1R1dON0koDXQXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8478 (0x211e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Oct 18 16:12:16 2025 GMT Not After : Oct 25 16:12:16 2025 GMT Subject: CN=68f3bc60-1287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:9a:18:70:cc:28:8d:16:45:d1:70:4c:6b: 33:04:e1:04:45:bb:10:c8:25:06:3c:7f:98:5a:b8: eb:5f:3b:3d:cb:89:48:b5:45:1a:ec:05:c8:d2:a6: df:9f:78:d1:5a:8c:a6:70:ad:f0:d5:5a:c8:01:66: f3:ae:60:0d:6d:50:f9:b5:41:c1:2c:cf:be:c4:91: e3:4d:aa:52:2c:01:34:ed:e8:fb:b0:51:ab:52:cf: 1d:9a:cb:8a:a8:7b:21:2b:ce:e2:cb:6e:53:a1:89: f8:d0:53:f8:de:28:97:2e:63:bf:1c:5f:22:2b:81: 26:a0:c4:5a:fe:b2:89:19:ee:30:22:e5:c1:aa:81: f8:1f:d2:74:df:ec:ff:8b:62:11:4b:d2:9a:aa:db: 56:b3:c3:02:33:4c:1d:2a:95:0a:ae:df:1b:5f:d9: f0:3d:0d:ef:0d:31:e3:c3:f7:3b:73:05:e6:89:4b: 47:d2:41:16:eb:81:a6:df:54:9a:98:9b:48:7c:da: 2f:12:53:eb:59:c9:c6:04:e3:03:b7:3b:c0:3d:62: 8e:ba:14:31:eb:ad:64:0b:d0:41:a8:9b:ac:5b:ba: 61:22:89:95:8c:26:6a:36:b4:f6:ac:7c:39:aa:6f: 5a:af:ea:77:22:0c:9a:8d:36:3e:26:d8:30:9c:f2: f3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B9:00:A4:1D:EA:65:DE:3B:FF:C1:D9:2D:F6:CE:C6:B1:19:7E:58 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:bc:a8:35:c5:d8:43:1e:ae:2e:b5:83:aa:f1:a8:24:68:ef: 7c:70:e4:2d:6f:e8:28:4f:aa:57:72:d8:d4:d8:72:cb:fb:79: e8:a5:ca:7a:66:61:f3:02:65:d5:b0:29:8a:e4:fa:ba:10:55: 75:bc:04:55:81:67:c5:41:fe:e1:ec:40:e8:18:b3:51:8c:c3: aa:ff:c5:e6:82:21:0a:1d:10:88:7c:f4:9e:d2:e2:1a:2e:b1: ab:b4:23:21:90:37:01:f8:66:18:56:7f:6a:15:36:91:76:79: c1:b5:b0:a3:93:56:09:a7:2a:39:7c:c5:b5:b6:80:c9:38:36: 71:87:3c:a7:ce:3e:56:17:10:0c:8b:24:f8:b2:98:1f:0d:2d: 6d:46:2f:5f:c6:ab:94:5d:e2:5e:b2:6d:bd:3f:98:f7:91:16: 38:2c:e4:0f:e5:e1:bb:a8:7d:c4:e9:29:eb:ff:4f:3e:bf:66: eb:9a:09:19:15:88:fe:84:7c:42:95:5b:ff:a5:d7:49:5a:ec: f0:ed:d5:4a:8e:13:03:da:7c:e2:19:2c:27:c5:f6:90:90:77: 6d:1a:1a:8e:e0:76:2d:d5:a6:33:4b:06:8d:b9:32:e1:05:a2: 20:7b:fd:51:97:8e:80:96:4a:52:62:54:67:49:a3:dc:1c:c8: 4f:9d:4b:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUxMDE4MTYxMjE2WhcNMjUxMDI1MTYxMjE2WjAYMRYwFAYD VQQDEw02OGYzYmM2MC0xMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7GaGHDMKI0WRdFwTGszBOEERbsQyCUGPH+YWrjrXzs9y4lItUUa7AXI0qbf n3jRWoymcK3w1VrIAWbzrmANbVD5tUHBLM++xJHjTapSLAE07ej7sFGrUs8dmsuK qHshK87iy25ToYn40FP43iiXLmO/HF8iK4EmoMRa/rKJGe4wIuXBqoH4H9J03+z/ i2IRS9KaqttWs8MCM0wdKpUKrt8bX9nwPQ3vDTHjw/c7cwXmiUtH0kEW64Gm31Sa mJtIfNovElPrWcnGBOMDtzvAPWKOuhQx661kC9BBqJusW7phIomVjCZqNrT2rHw5 qm9ar+p3IgyajTY+JtgwnPLzvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa5AKQd 6mXeO//B2S32zsaxGX5YMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5vKg1xdhDHq4utYOq8agkaO98cOQtb+goT6pXctjU2HLL+3nopcp6 ZmHzAmXVsCmK5Pq6EFV1vARVgWfFQf7h7EDoGLNRjMOq/8XmgiEKHRCIfPSe0uIa LrGrtCMhkDcB+GYYVn9qFTaRdnnBtbCjk1YJpyo5fMW1toDJODZxhzynzj5WFxAM iyT4spgfDS1tRi9fxquUXeJesm29P5j3kRY4LOQP5eG7qH3E6Snr/08+v2brmgkZ FYj+hHxClVv/pddJWuzw7dVKjhMD2nziGSwnxfaQkHdtGhqO4HYt1aYzSwaNuTLh BaIge/1Rl46AlkpSYlRnSaPcHMhPnUtj -----END CERTIFICATE-----Generated at Mon Oct 20 02:00:36 2025 by rpki-client