$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: nxOWNIsDsuvHlo1ffaGye63VgXrUgvGBdaUwdlwyXSs= Subject key identifier: EF:93:87:AB:C3:B4:E9:BA:A4:6E:A1:8B:B8:DB:AB:A9:DA:79:1B:2B Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 05FC Signing time: Tue 04 Nov 2025 23:00:31 +0000 Manifest this update: Tue 04 Nov 2025 23:00:31 +0000 Manifest next update: Tue 11 Nov 2025 23:00:31 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: a8k3/UvFlf64d39WtOHMKLSQ896Zq1phov+uHUq1bic=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Nov 4 23:00:31 2025 GMT Not After : Nov 11 23:00:31 2025 GMT Subject: CN=690a858f-0725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d5:5e:e4:e1:49:2b:c2:92:98:61:89:54:49: 55:3d:e8:6c:a3:e9:ca:e0:d5:ab:35:c7:6b:82:0c: b0:29:9d:63:ef:0e:db:e2:a5:71:56:95:cc:e5:52: e3:49:a6:97:2b:67:b5:ae:b6:16:39:b9:b3:94:3c: ba:bb:90:c1:e1:fe:68:80:d5:a9:b4:4d:b3:8b:db: 52:6c:3c:1f:13:5b:89:51:56:c3:e2:23:1e:5b:a3: 0a:9b:1c:f5:d6:d7:ed:fa:85:21:74:a8:b1:74:7f: e6:7a:68:6d:47:33:48:70:b0:e8:a5:e5:60:99:b7: ea:f5:0b:6d:03:eb:e1:b9:3a:f8:ec:52:f1:89:df: b4:00:7d:cf:48:b4:ca:38:e2:3e:84:f9:f4:6a:a0: e4:bf:80:b9:fb:8d:92:30:e8:ab:79:ef:f7:13:75: d6:8e:f6:a8:dc:ab:1a:2d:e6:d2:c1:0d:29:66:88: c3:be:10:54:38:86:aa:9c:77:72:2f:06:83:7f:46: 1a:f8:98:60:36:73:02:1d:95:4b:d6:83:a5:c7:ea: 75:31:da:8f:22:6a:5b:3e:67:83:be:77:08:9b:44: b0:69:73:bd:5b:0f:2b:b1:c8:e4:8d:9c:62:d2:fc: 47:54:6b:bd:47:8f:13:1e:5b:91:df:18:6b:5c:fb: b1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:93:87:AB:C3:B4:E9:BA:A4:6E:A1:8B:B8:DB:AB:A9:DA:79:1B:2B X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:26:4a:56:6f:6e:8c:e0:1e:db:71:09:47:b0:80:3d:00:0e: 36:75:a0:b5:dd:35:99:e5:22:c7:5e:a6:84:1f:2d:88:8f:4a: e9:5a:4c:2d:ee:31:7e:27:e2:0f:0c:bd:97:08:50:a7:9f:70: dd:60:dc:f1:6c:b7:cf:c3:e6:40:e6:22:f6:89:16:28:4d:80: 7d:39:97:e4:39:8f:58:b6:0d:e3:9f:b7:91:ca:58:a0:b9:23: a6:25:8e:74:68:fe:90:3e:18:a9:16:74:9f:a4:43:9d:d4:c3: ae:80:31:4a:c6:b8:1f:db:1e:e5:17:78:5c:31:d0:59:68:a4: 8e:44:c1:19:df:35:79:c9:50:61:cd:2a:45:d8:9b:ae:38:d1: 67:45:2b:4f:3f:76:ba:a6:da:1f:71:0b:82:ff:6b:c4:f4:37: 24:15:65:e3:1e:0f:2e:ad:2a:e6:ab:b2:b7:95:71:f8:7e:c9: 36:e6:b2:24:ce:5c:1d:3b:97:a9:82:ab:aa:4c:8c:3f:89:3e: 46:10:ef:8c:51:3b:d4:f5:6d:0c:d2:a3:df:46:4c:e8:88:e8: 07:ae:d4:2b:9d:f2:f6:87:53:8e:42:5f:28:56:6f:39:c8:16: 2b:46:72:ea:33:ec:e7:4d:5a:bf:f0:8b:d7:1d:f6:39:a9:0c: 5b:42:e9:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUxMTA0MjMwMDMxWhcNMjUxMTExMjMwMDMxWjAYMRYwFAYD VQQDEw02OTBhODU4Zi0wNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdVe5OFJK8KSmGGJVElVPehso+nK4NWrNcdrggywKZ1j7w7b4qVxVpXM5VLj SaaXK2e1rrYWObmzlDy6u5DB4f5ogNWptE2zi9tSbDwfE1uJUVbD4iMeW6MKmxz1 1tft+oUhdKixdH/memhtRzNIcLDopeVgmbfq9QttA+vhuTr47FLxid+0AH3PSLTK OOI+hPn0aqDkv4C5+42SMOiree/3E3XWjvao3KsaLebSwQ0pZojDvhBUOIaqnHdy LwaDf0Ya+JhgNnMCHZVL1oOlx+p1MdqPImpbPmeDvncIm0SwaXO9Ww8rscjkjZxi 0vxHVGu9R48THluR3xhrXPuxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+Th6vD tOm6pG6hi7jbq6naeRsrMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYJkpWb26M4B7bcQlHsIA9AA42daC13TWZ5SLHXqaEHy2Ij0rpWkwt 7jF+J+IPDL2XCFCnn3DdYNzxbLfPw+ZA5iL2iRYoTYB9OZfkOY9Ytg3jn7eRylig uSOmJY50aP6QPhipFnSfpEOd1MOugDFKxrgf2x7lF3hcMdBZaKSORMEZ3zV5yVBh zSpF2JuuONFnRStPP3a6ptofcQuC/2vE9DckFWXjHg8urSrmq7K3lXH4fsk25rIk zlwdO5epgquqTIw/iT5GEO+MUTvU9W0M0qPfRkzoiOgHrtQrnfL2h1OOQl8oVm85 yBYrRnLqM+znTVq/8IvXHfY5qQxbQun/ -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:25 2025 by rpki-client