$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: HjafDy+7f/auRYaP4D+cR0fyYVPefL2Z44A0cdHqzyw= Subject key identifier: DD:C6:BE:AC:CB:20:E9:19:95:4F:CA:C8:CD:C2:3B:3E:B0:D0:59:BA Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07D1 Signing time: Fri 24 Oct 2025 22:12:17 +0000 Manifest this update: Fri 24 Oct 2025 22:12:16 +0000 Manifest next update: Fri 31 Oct 2025 22:12:16 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: IvakZbIsfw/jIUKevXvIWQcEfdFqrzFDfccYIP9rf/8=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 22:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Oct 24 22:12:16 2025 GMT Not After : Oct 31 22:12:16 2025 GMT Subject: CN=68fbf9c1-9892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:af:73:7c:29:ac:2d:01:e9:26:67:a1:bb:90: b5:58:4a:4f:ac:d6:84:87:24:77:1f:65:81:2c:79: 59:25:3f:e0:19:9f:fd:18:12:8a:d3:33:93:f9:16: 23:f5:45:35:2c:9b:07:75:a2:dc:c3:c2:ad:9a:c3: 5f:94:7d:fb:ca:2d:f4:2b:65:d2:9d:f3:74:cc:a1: d1:bb:3b:4e:35:75:e1:02:04:8d:80:9d:07:fa:18: 4e:45:dc:f1:07:72:fc:e1:2f:eb:6f:98:ae:15:ea: 72:74:b7:f9:40:b3:2f:06:85:62:79:82:78:64:be: b3:45:16:de:5b:5c:b8:3a:a3:b7:f4:b8:27:f3:18: 49:ae:7f:df:09:71:05:05:7b:55:7d:78:18:4a:63: a1:6d:e7:54:7d:2b:1e:bc:ce:17:59:8f:0f:95:f8: 05:63:d1:36:81:6f:4f:4f:de:09:c6:fa:66:55:78: 5d:2b:75:27:82:7b:3d:04:53:ca:3c:c5:e6:88:73: 46:86:bf:32:c6:c3:14:b1:e4:c2:9d:da:4c:e9:d1: 21:55:e9:c0:d5:6e:cc:dd:bb:90:71:28:5f:20:70: 8d:69:b4:00:17:93:0a:13:79:4c:36:a5:19:d2:44: 41:5d:91:17:d9:4e:18:93:46:19:97:cc:82:a5:7f: de:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C6:BE:AC:CB:20:E9:19:95:4F:CA:C8:CD:C2:3B:3E:B0:D0:59:BA X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:36:f5:88:75:a7:f3:37:4d:5a:17:a2:ae:66:32:68:83:49: 05:37:52:e0:d6:0f:0d:30:e2:f1:62:78:ce:57:01:55:60:9e: f1:c6:40:02:b9:f8:9b:4b:28:00:a1:10:2e:47:02:df:75:74: b4:4a:39:35:13:c6:7c:b3:08:61:96:62:d1:3d:47:b0:f8:8e: ca:43:55:45:55:75:d6:0d:ab:17:9d:e5:0a:8a:c2:60:1e:e2: 97:ac:5a:4b:50:b5:27:83:75:54:c5:0c:bb:b2:40:02:05:7b: 67:a4:a1:fe:dd:87:2f:20:aa:97:1f:7f:33:7c:8d:2a:94:22: 1c:1e:c7:1a:a5:b5:e3:01:ff:17:d3:19:9c:4d:0e:f2:64:a9: 95:20:5a:ab:cf:7b:fb:e4:af:e8:e8:e8:53:92:c2:12:7c:24: f7:bc:73:f0:e4:fd:c4:b9:fb:d8:dd:76:ba:07:c5:8f:ee:18: 87:9b:8c:85:d2:3a:a7:4c:3d:17:eb:17:1e:c0:3e:e1:3f:e1: 29:00:37:0a:28:bf:bc:b9:36:81:91:03:59:8f:c9:2c:f1:ca: 5e:41:54:a7:ca:6b:56:9c:46:ca:90:bd:79:78:27:23:ea:f8: d5:29:49:83:99:af:fe:6f:49:94:26:36:11:26:38:dc:66:3d: 36:b6:2f:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMDI0MjIxMjE2WhcNMjUxMDMxMjIxMjE2WjAYMRYwFAYD VQQDEw02OGZiZjljMS05ODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua9zfCmsLQHpJmehu5C1WEpPrNaEhyR3H2WBLHlZJT/gGZ/9GBKK0zOT+RYj 9UU1LJsHdaLcw8KtmsNflH37yi30K2XSnfN0zKHRuztONXXhAgSNgJ0H+hhORdzx B3L84S/rb5iuFepydLf5QLMvBoVieYJ4ZL6zRRbeW1y4OqO39Lgn8xhJrn/fCXEF BXtVfXgYSmOhbedUfSsevM4XWY8PlfgFY9E2gW9PT94JxvpmVXhdK3Ungns9BFPK PMXmiHNGhr8yxsMUseTCndpM6dEhVenA1W7M3buQcShfIHCNabQAF5MKE3lMNqUZ 0kRBXZEX2U4Yk0YZl8yCpX/eCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3GvqzL IOkZlU/KyM3COz6w0Fm6MB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRNvWIdafzN01aF6KuZjJog0kFN1Lg1g8NMOLxYnjOVwFVYJ7xxkAC ufibSygAoRAuRwLfdXS0Sjk1E8Z8swhhlmLRPUew+I7KQ1VFVXXWDasXneUKisJg HuKXrFpLULUng3VUxQy7skACBXtnpKH+3YcvIKqXH38zfI0qlCIcHscapbXjAf8X 0xmcTQ7yZKmVIFqrz3v75K/o6OhTksISfCT3vHPw5P3EufvY3Xa6B8WP7hiHm4yF 0jqnTD0X6xcewD7hP+EpADcKKL+8uTaBkQNZj8ks8cpeQVSnymtWnEbKkL15eCcj 6vjVKUmDma/+b0mUJjYRJjjcZj02ti/m -----END CERTIFICATE-----Generated at Sat Oct 25 09:37:34 2025 by rpki-client