$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft (raw, json) Hash identifier: ILC9F+8FM7TKGQXv6hesv5Kbqv3LodtoWvZVtADZ9Qc= Subject key identifier: 23:92:7B:FC:74:A5:FD:EA:B9:9C:66:43:E5:27:F5:AF:91:78:68:A9 Authority key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 Certificate issuer: /CN=A917E1FA/serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft Manifest number: 48 Signing time: Thu 23 Oct 2025 09:33:23 +0000 Manifest this update: Thu 23 Oct 2025 09:33:23 +0000 Manifest next update: Thu 30 Oct 2025 09:33:23 +0000 Files and hashes: 1: yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl (hash: nKliE2JLvSskhjTF3uS1YaVIYI+IJqUeMv9PWI/KwUs=) 2: 7354ACC0472811F0ADE2D44BC4F9AE02.roa (hash: wcclgPl4R6E/Zzr/USbPvSIER4uFng9U6618g1EWkBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Validity Not Before: Oct 23 09:33:23 2025 GMT Not After : Oct 30 09:33:23 2025 GMT Subject: CN=68f9f663-e215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:c3:a4:50:7e:a2:78:94:f1:fb:76:90:7d: 9e:6b:b8:09:df:e5:37:62:8e:84:1b:98:e2:26:94: 11:55:bc:47:df:40:3c:f8:37:e5:b2:e3:1f:38:3d: 93:d9:e9:a5:4a:ff:8f:63:1e:25:f3:eb:74:02:2c: 76:51:75:5e:16:6c:1b:28:6d:c0:cc:d3:ae:06:f6: 6e:3c:ae:a1:64:cc:4f:ad:63:0c:0d:59:66:ee:cd: 27:cd:54:50:38:f7:e4:c1:37:d1:4e:83:55:5a:cd: f0:5e:f5:02:72:6d:60:11:87:18:64:1a:b8:66:00: bd:28:51:3c:69:0f:bf:f2:ad:bc:4f:25:be:cb:42: 6c:36:f7:b2:8a:e8:3f:a1:c8:b2:03:ca:d5:df:24: 84:ca:cb:c2:8e:44:e3:7c:b2:01:a5:c9:00:ed:1d: c6:77:01:5e:36:28:fc:e8:f9:fa:82:28:7e:48:db: 35:5d:be:d9:1a:04:a2:88:0f:01:8d:bb:65:55:38: e8:21:51:97:d1:8d:d7:72:24:51:3e:8a:4b:30:5a: 57:fc:37:25:2f:1b:e1:35:ff:75:ed:b2:6d:08:f5: b8:d7:bc:aa:c8:08:f7:30:64:99:b7:7b:de:6a:b4: 6d:02:2d:a8:25:a6:8a:b5:9c:94:c3:f8:6a:5f:ef: 35:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:92:7B:FC:74:A5:FD:EA:B9:9C:66:43:E5:27:F5:AF:91:78:68:A9 X509v3 Authority Key Identifier: keyid:C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2d:77:5e:4c:ff:16:94:77:62:6f:45:d0:f5:de:99:3e:16: 8a:b8:3b:cc:fb:9b:6f:1a:1e:58:85:8b:0c:05:b5:f6:a8:38: da:f7:6f:17:1a:c4:7b:56:66:ff:4b:14:f2:d0:26:a0:a4:93: 84:a1:f5:fb:9c:f7:58:3a:41:58:b0:f0:cd:13:d7:6d:cb:ea: 51:05:b3:d4:7a:8e:c6:ae:91:05:50:cc:fc:8e:ff:f1:bb:bb: 0c:01:7a:8b:ef:fc:fa:1e:e2:20:81:dd:16:e3:a5:56:9f:27: 40:60:ec:23:0c:1c:0f:89:26:c4:83:b6:81:47:a0:01:de:9a: ad:ca:65:e0:b8:ad:56:40:d0:df:54:23:2e:38:7d:1b:a3:c3: b3:3c:9e:2c:f6:9b:74:0f:44:5e:38:73:9f:7f:a8:e9:83:5c: f9:2f:e1:8f:9a:4f:21:90:17:cb:3b:b4:06:1e:00:55:0f:5a: da:8e:ba:91:3b:82:1c:a6:ea:05:27:f0:c8:df:2b:d0:c3:58: 97:25:d5:c9:ab:2e:97:7f:24:6f:af:4f:8b:71:e7:a2:03:23: 84:cc:92:57:f7:77:ba:84:3a:5e:14:2d:ec:d5:74:23:ce:2c: 78:f1:7b:0e:ce:aa:a6:c1:44:1d:2d:c1:ba:29:ed:fb:aa:9d: e5:60:4e:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoQzkxMkIwNTRDQTQzQTkzNEMxNzc1NzMzRDg0QkYxNkU0 ODU2QkVGMDAeFw0yNTEwMjMwOTMzMjNaFw0yNTEwMzAwOTMzMjNaMBgxFjAUBgNV BAMTDTY4ZjlmNjYzLWUyMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6TcOkUH6ieJTx+3aQfZ5ruAnf5TdijoQbmOImlBFVvEffQDz4N+Wy4x84PZPZ 6aVK/49jHiXz63QCLHZRdV4WbBsobcDM064G9m48rqFkzE+tYwwNWWbuzSfNVFA4 9+TBN9FOg1VazfBe9QJybWARhxhkGrhmAL0oUTxpD7/yrbxPJb7LQmw297KK6D+h yLIDytXfJITKy8KORON8sgGlyQDtHcZ3AV42KPzo+fqCKH5I2zVdvtkaBKKIDwGN u2VVOOghUZfRjddyJFE+ikswWlf8NyUvG+E1/3Xtsm0I9bjXvKrICPcwZJm3e95q tG0CLaglpoq1nJTD+Gpf7zUPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI5J7/HSl /eq5nGZD5Sf1r5F4aKkwHwYDVR0jBBgwFoAUyRKwVMpDqTTBd1cz2EvxbkhWvvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBL0EyRDVFRTVFNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRUQmQxY3oyRXZ4YmtoV3Z2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJLd1ZNcERxVFRCZDFjejJFdnhia2hXdnZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBL0EyRDVFRTVFNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRU QmQxY3oyRXZ4YmtoV3Z2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABMtd15M/xaUd2JvRdD13pk+Foq4O8z7m28aHliFiwwFtfaoONr3bxca xHtWZv9LFPLQJqCkk4Sh9fuc91g6QViw8M0T123L6lEFs9R6jsaukQVQzPyO//G7 uwwBeovv/Poe4iCB3RbjpVafJ0Bg7CMMHA+JJsSDtoFHoAHemq3KZeC4rVZA0N9U Iy44fRujw7M8niz2m3QPRF44c59/qOmDXPkv4Y+aTyGQF8s7tAYeAFUPWtqOupE7 ghym6gUn8MjfK9DDWJcl1cmrLpd/JG+vT4tx56IDI4TMklf3d7qEOl4ULezVdCPO LHjxew7OqqbBRB0twbop7fuqneVgToo= -----END CERTIFICATE-----Generated at Thu Oct 23 19:45:23 2025 by rpki-client