$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: NadZK6jj95+bsMGOgNjqhtqwZoeGMczKAXCv0xg7MmI= Subject key identifier: 7B:3B:81:4D:A6:6B:50:47:66:37:9B:40:A5:76:3C:E8:B7:CA:BA:72 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: EC Signing time: Wed 05 Nov 2025 05:31:25 +0000 Manifest this update: Wed 05 Nov 2025 05:31:24 +0000 Manifest next update: Wed 12 Nov 2025 05:31:24 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: SHrzWU7g329yk/W/+Es9Mp74HgrCnQhmGy8kUW1NPeE=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Nov 5 05:31:24 2025 GMT Not After : Nov 12 05:31:24 2025 GMT Subject: CN=690ae12d-2d77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:4f:b8:07:73:e8:e2:45:b5:8d:72:34:b8: 93:91:ff:57:e0:85:a2:7c:20:2b:2c:43:0e:8c:63: 34:b4:05:aa:6d:57:5e:04:c8:23:23:99:d7:0f:29: da:fb:3f:0e:9c:95:b5:ad:34:37:16:6d:1a:1f:5f: 63:c1:08:20:b5:a2:10:ed:82:6f:97:da:ec:89:72: e8:cc:f2:20:5a:eb:62:d8:21:c4:d0:91:c7:4c:46: c4:ab:01:67:6b:02:f3:fa:36:16:8f:c4:39:ff:60: 51:9d:1b:ef:7b:ee:b6:e1:25:8b:59:86:f5:b3:cd: fa:9c:b2:e5:a8:e7:98:b4:cf:28:14:02:98:2b:42: 7f:e8:16:76:e4:be:28:5b:a9:50:67:05:44:5d:0c: 9e:14:d2:ef:c6:2e:6d:c8:c9:0a:4e:13:5e:c4:0d: dc:a3:29:e1:89:3d:67:86:71:59:9f:32:52:d6:93: d1:11:2a:51:4c:43:1f:c6:01:55:91:6c:43:a8:6b: ef:82:2b:36:ca:2a:8a:09:56:cc:44:22:1c:ea:3a: 47:97:aa:61:58:9e:2d:ae:92:7f:ff:c5:11:ec:ee: af:8a:64:a5:e3:3f:32:17:9e:25:50:99:33:29:bf: 8b:a3:6d:e3:68:0d:67:c3:53:fe:34:67:a7:fe:01: e3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3B:81:4D:A6:6B:50:47:66:37:9B:40:A5:76:3C:E8:B7:CA:BA:72 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8e:41:cb:1d:76:e7:e4:15:16:08:82:36:ca:c6:59:b5:cf: 91:0a:d6:5b:15:1d:61:96:53:cd:2b:1d:4d:e1:ab:48:8b:c7: 82:5b:ec:12:a1:d8:2a:d1:b0:9c:0c:35:8c:b0:f7:91:e4:93: 74:c0:88:a2:66:ba:63:4b:61:aa:73:6b:fe:cf:be:f9:dc:64: 78:01:12:29:68:80:65:38:2f:09:b0:05:bd:38:48:18:c4:b4: 24:1d:b7:8c:75:e5:bd:87:07:ca:e3:c4:84:f3:16:be:2c:cc: 36:27:f4:e6:29:ef:cf:08:56:d1:e8:9e:5c:e7:e9:d9:ea:8e: d2:79:1e:28:d9:64:7c:74:ed:e0:16:4c:55:15:ba:18:3b:ba: bc:6a:97:57:de:e6:36:19:67:68:82:26:a0:74:82:23:73:65: 75:3d:8b:81:92:36:d7:03:01:73:c6:81:48:5f:0b:b9:95:cd: d3:87:46:e5:45:1f:0c:38:ae:d9:30:fe:6c:ad:3e:eb:cb:1b: 17:f1:14:1a:d9:53:53:57:c0:5f:af:cf:ea:5e:c2:6a:0e:3c: f1:e5:89:78:16:bd:2d:4b:98:5c:7a:6a:80:d6:c7:32:4a:d9: b5:f5:d0:4b:7f:22:c4:16:c2:d8:20:67:85:83:cc:ca:70:8d: b8:a8:d9:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUxMTA1MDUzMTI0WhcNMjUxMTEyMDUzMTI0WjAYMRYwFAYD VQQDEw02OTBhZTEyZC0yZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuz9PuAdz6OJFtY1yNLiTkf9X4IWifCArLEMOjGM0tAWqbVdeBMgjI5nXDyna +z8OnJW1rTQ3Fm0aH19jwQggtaIQ7YJvl9rsiXLozPIgWuti2CHE0JHHTEbEqwFn awLz+jYWj8Q5/2BRnRvve+624SWLWYb1s836nLLlqOeYtM8oFAKYK0J/6BZ25L4o W6lQZwVEXQyeFNLvxi5tyMkKThNexA3coynhiT1nhnFZnzJS1pPRESpRTEMfxgFV kWxDqGvvgis2yiqKCVbMRCIc6jpHl6phWJ4trpJ//8UR7O6vimSl4z8yF54lUJkz Kb+Lo23jaA1nw1P+NGen/gHjYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs7gU2m a1BHZjebQKV2POi3yrpyMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYjkHLHXbn5BUWCII2ysZZtc+RCtZbFR1hllPNKx1N4atIi8eCW+wS odgq0bCcDDWMsPeR5JN0wIiiZrpjS2Gqc2v+z7753GR4ARIpaIBlOC8JsAW9OEgY xLQkHbeMdeW9hwfK48SE8xa+LMw2J/TmKe/PCFbR6J5c5+nZ6o7SeR4o2WR8dO3g FkxVFboYO7q8apdX3uY2GWdogiagdIIjc2V1PYuBkjbXAwFzxoFIXwu5lc3Th0bl RR8MOK7ZMP5srT7ryxsX8RQa2VNTV8Bfr8/qXsJqDjzx5Yl4Fr0tS5hcemqA1scy Stm19dBLfyLEFsLYIGeFg8zKcI24qNmE -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:33 2025 by rpki-client