$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: mmX8zWHJoBWVyJ1X+fOCNLVcl897QKK6Ibu4mZPWXfc= Subject key identifier: A7:D1:81:0F:DF:40:1C:9D:31:BC:5C:BC:8D:10:73:A8:5D:37:C4:95 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0875 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0867 Signing time: Tue 04 Nov 2025 20:43:41 +0000 Manifest this update: Tue 04 Nov 2025 20:43:41 +0000 Manifest next update: Tue 11 Nov 2025 20:43:41 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: eU7kHae/KXB0GnGCiWkmCsdROIfK5QMqdYuXzRAvJCY=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: h/ONFX5RBxxUCv61ioAJ3Q3fkstH618CVb7fuwaMYno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2165 (0x875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Nov 4 20:43:41 2025 GMT Not After : Nov 11 20:43:41 2025 GMT Subject: CN=690a657d-2f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f8:5c:20:4c:00:1f:25:ba:ca:a8:ca:e8:e7: ff:55:ca:d0:08:ba:06:a0:75:34:97:bb:d1:35:11: c0:08:c1:e7:ff:82:fd:ea:ab:3b:93:61:f2:22:cd: 82:58:7d:a2:fd:5a:44:e5:2c:76:61:72:3d:4e:5b: dd:f5:68:16:8a:b0:97:bd:1d:cc:2d:06:78:43:eb: 6a:e8:4f:50:94:05:0e:00:e9:e2:20:78:1b:a7:98: 36:57:f1:9a:06:12:42:7c:13:ea:c5:6a:d8:e2:d2: 22:9b:32:cd:97:16:ca:af:b0:7a:52:75:e1:e0:7f: 55:db:5c:a2:38:1e:75:c1:c0:07:92:a9:da:57:5a: 97:cd:81:c5:97:7f:ec:ee:3f:7a:53:83:0e:8c:75: ae:ef:c9:ad:c3:68:18:68:52:a0:b6:78:f9:aa:4e: df:10:7e:f7:71:59:5c:04:88:3c:b6:89:8a:31:78: 49:50:b9:f2:e6:7b:41:66:ac:1d:5d:49:ad:61:e3: c6:b5:b3:62:92:4a:23:aa:f3:21:1f:2f:a0:8b:25: d5:6a:d9:81:64:74:74:4d:10:3b:81:01:12:df:be: bd:4d:5b:32:d1:03:d8:7e:ea:7a:dc:66:c6:cd:89: 61:dd:82:f6:6d:4d:7c:47:60:08:d1:07:5b:09:be: a7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D1:81:0F:DF:40:1C:9D:31:BC:5C:BC:8D:10:73:A8:5D:37:C4:95 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b1:49:32:e8:28:36:34:48:e2:65:c5:57:32:9a:e9:d1:e0: 1a:1b:63:ce:f6:84:85:d9:6d:37:8c:dc:44:90:7e:f6:a2:1a: 17:1a:af:86:e7:70:18:65:e2:8f:62:d5:71:ee:dc:a6:05:8b: 98:61:4e:5b:68:7d:b0:2d:9b:5e:54:22:7f:fb:f3:7a:95:05: 65:1f:b4:a7:87:8e:30:95:24:36:cb:48:27:53:dc:d1:a3:04: 76:bd:4b:54:e1:52:a3:49:f6:23:4f:fb:1c:20:59:3d:3c:47: 24:e6:20:fa:4c:d6:40:b5:e9:d2:62:a1:63:eb:3b:e2:9b:2c: 8a:1b:01:a0:10:1f:5c:c9:b6:01:81:27:b2:25:a2:da:6b:ae: 81:c5:fc:7a:07:a2:dc:49:76:7f:8f:a0:c4:f5:de:17:11:48: bc:17:c0:8d:2e:c1:96:f8:30:2d:97:19:c8:6e:53:42:66:48: 7d:0f:93:00:80:ae:48:7a:92:0d:da:ec:ed:b9:18:34:75:97: 6a:be:4e:20:14:ba:21:a7:4a:b3:14:8d:8e:5e:e6:cd:e3:df: 4e:b9:fe:02:da:b3:f9:1b:c6:4e:8e:f3:32:48:12:da:aa:df: 26:2e:15:38:74:ff:05:fb:38:29:35:82:30:74:ce:be:e9:65: 5e:8d:7b:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMTA0MjA0MzQxWhcNMjUxMTExMjA0MzQxWjAYMRYwFAYD VQQDEw02OTBhNjU3ZC0yZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPhcIEwAHyW6yqjK6Of/VcrQCLoGoHU0l7vRNRHACMHn/4L96qs7k2HyIs2C WH2i/VpE5Sx2YXI9Tlvd9WgWirCXvR3MLQZ4Q+tq6E9QlAUOAOniIHgbp5g2V/Ga BhJCfBPqxWrY4tIimzLNlxbKr7B6UnXh4H9V21yiOB51wcAHkqnaV1qXzYHFl3/s 7j96U4MOjHWu78mtw2gYaFKgtnj5qk7fEH73cVlcBIg8tomKMXhJULny5ntBZqwd XUmtYePGtbNikkojqvMhHy+giyXVatmBZHR0TRA7gQES3769TVsy0QPYfup63GbG zYlh3YL2bU18R2AI0QdbCb6ntQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfRgQ/f QBydMbxcvI0Qc6hdN8SVMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPsUky6Cg2NEjiZcVXMprp0eAaG2PO9oSF2W03jNxEkH72ohoXGq+G 53AYZeKPYtVx7tymBYuYYU5baH2wLZteVCJ/+/N6lQVlH7Snh44wlSQ2y0gnU9zR owR2vUtU4VKjSfYjT/scIFk9PEck5iD6TNZAtenSYqFj6zvimyyKGwGgEB9cybYB gSeyJaLaa66Bxfx6B6LcSXZ/j6DE9d4XEUi8F8CNLsGW+DAtlxnIblNCZkh9D5MA gK5IepIN2uztuRg0dZdqvk4gFLohp0qzFI2OXubN499Ouf4C2rP5G8ZOjvMySBLa qt8mLhU4dP8F+zgpNYIwdM6+6WVejXtA -----END CERTIFICATE-----Generated at Wed Nov 5 11:50:23 2025 by rpki-client