$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: 5q/CsyBYL8RFUaVsaXx1P+NYHIwq6TXzBr/Qe2n6yM4= Subject key identifier: 83:12:5C:40:59:A6:5C:6F:45:2A:53:3E:B6:F8:B6:22:F3:5D:27:3B Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 186B Signing time: Tue 04 Nov 2025 16:35:39 +0000 Manifest this update: Tue 04 Nov 2025 16:35:38 +0000 Manifest next update: Tue 11 Nov 2025 16:35:38 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: Mw6txAwqX94S3+VvRBd1KT6DE+lsm217ysGHKU05d08=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: XNKpRb8/02tHDrrS9S3tLwWbmiJabIsnKyEKhJUYUM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6265 (0x1879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1, serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Nov 4 16:35:38 2025 GMT Not After : Nov 11 16:35:38 2025 GMT Subject: CN=690a2b5a-dc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a9:e6:4d:9a:3e:12:d1:9a:ff:b2:11:c0:98: 8e:80:22:dd:da:1f:b1:9b:58:84:7c:2e:d6:05:83: a4:2e:73:1a:d7:86:2e:26:68:22:1e:4d:e8:0d:f7: 13:11:f9:7e:e0:52:18:8e:ee:bb:0d:82:62:eb:5e: 42:d7:bc:4c:13:c8:a3:c9:30:34:a7:2c:d9:ee:32: f6:49:85:58:d1:03:f2:1a:7a:f2:39:4f:03:b9:a2: 9d:21:5c:3f:88:3f:1e:ba:cc:9d:9d:60:c2:df:1d: 7c:e9:bc:41:4f:4e:29:1f:70:0c:2d:b7:2b:6b:4e: d7:f9:30:39:98:93:65:ed:fc:22:e4:c4:1b:b4:67: b6:0d:00:7e:d5:7d:d9:c3:1c:e9:46:31:f4:c3:b6: 19:1a:9e:a0:38:60:11:e6:dd:b9:ce:fb:f2:01:77: 5d:9e:74:d5:79:b6:6f:a9:28:d7:c6:94:e4:79:0d: 0a:be:e2:83:83:42:82:2f:87:40:9e:1a:c8:59:4c: 20:09:45:ab:cd:48:03:26:8a:ce:38:c5:89:78:58: 77:21:5f:19:a7:cf:87:2c:39:57:b7:ad:47:b4:c1: 77:38:fa:70:7b:15:4d:a2:1c:7a:e4:fa:eb:09:28: e6:b4:ab:82:cf:f6:6a:98:9a:da:1e:12:25:87:c0: 43:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:12:5C:40:59:A6:5C:6F:45:2A:53:3E:B6:F8:B6:22:F3:5D:27:3B X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f2:eb:6c:17:46:3b:c7:42:93:8c:b7:85:d4:e3:c7:49:f9: 32:dc:d3:8c:a0:b2:2f:72:fe:91:6f:02:ed:51:e0:07:47:86: 71:4e:6b:9f:c5:49:79:d0:de:ab:49:21:c8:3d:98:eb:d8:26: c1:50:a9:97:c3:31:33:38:fa:4f:f4:5b:0f:1b:cf:59:41:49: ca:a2:5a:0b:83:45:58:1c:5b:7a:44:3f:3e:88:8b:42:8e:67: c7:e8:f7:1e:dd:fc:eb:09:22:5a:5e:b0:d9:9d:87:28:2e:fc: c4:00:a1:9b:56:67:1f:25:06:ab:6d:cc:7e:f9:d2:a5:7a:87: f8:a0:7b:2c:5a:47:35:de:b8:b6:24:c2:a0:fa:6e:06:4a:59: 62:a2:9e:ed:9b:b3:ed:31:4e:fd:b8:3e:42:d6:b0:15:8c:3d: 5c:0c:47:ac:06:d2:70:c5:3b:fe:0d:1c:96:e4:9a:09:2f:36: 7b:60:f2:f5:c2:96:93:9b:be:f4:3d:d4:58:5c:9c:bc:46:0b: 86:19:d8:9c:ee:db:5e:52:26:67:33:a8:f8:31:dd:b1:8b:84: 5e:78:99:f3:c3:d8:36:2a:3e:92:d2:6a:3d:f9:d7:be:f2:10: 2e:2c:fa:86:5e:fc:d7:07:49:b7:e6:d1:06:6a:fb:85:0f:d4: f7:8d:5a:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjUxMTA0MTYzNTM4WhcNMjUxMTExMTYzNTM4WjAYMRYwFAYD VQQDEw02OTBhMmI1YS1kYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKnmTZo+EtGa/7IRwJiOgCLd2h+xm1iEfC7WBYOkLnMa14YuJmgiHk3oDfcT Efl+4FIYju67DYJi615C17xME8ijyTA0pyzZ7jL2SYVY0QPyGnryOU8DuaKdIVw/ iD8eusydnWDC3x186bxBT04pH3AMLbcra07X+TA5mJNl7fwi5MQbtGe2DQB+1X3Z wxzpRjH0w7YZGp6gOGAR5t25zvvyAXddnnTVebZvqSjXxpTkeQ0KvuKDg0KCL4dA nhrIWUwgCUWrzUgDJorOOMWJeFh3IV8Zp8+HLDlXt61HtMF3OPpwexVNohx65Prr CSjmtKuCz/ZqmJraHhIlh8BDHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMSXEBZ plxvRSpTPrb4tiLzXSc7MB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm8utsF0Y7x0KTjLeF1OPHSfky3NOMoLIvcv6RbwLtUeAHR4ZxTmuf xUl50N6rSSHIPZjr2CbBUKmXwzEzOPpP9FsPG89ZQUnKoloLg0VYHFt6RD8+iItC jmfH6Pce3fzrCSJaXrDZnYcoLvzEAKGbVmcfJQarbcx++dKleof4oHssWkc13ri2 JMKg+m4GSlliop7tm7PtMU79uD5C1rAVjD1cDEesBtJwxTv+DRyW5JoJLzZ7YPL1 wpaTm770PdRYXJy8RguGGdic7tteUiZnM6j4Md2xi4ReeJnzw9g2Kj6S0mo9+de+ 8hAuLPqGXvzXB0m35tEGavuFD9T3jVoH -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:55 2025 by rpki-client