$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: mhMxuPkxQZmsi0N+uz3NH3BEc6xscW8jRrc+vYxzljg= Subject key identifier: 60:F4:29:A4:90:70:69:62:5D:DD:D2:86:E4:E5:E4:99:8D:1E:99:64 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 022B Signing time: Wed 05 Nov 2025 02:14:07 +0000 Manifest this update: Wed 05 Nov 2025 02:14:06 +0000 Manifest next update: Wed 12 Nov 2025 02:14:06 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: jpvRSbB20sRIBVvg7RU8IlYe+VEJgHb0O7E+oZ+I2TQ=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: WbvHWJpGhR5F5UQEA2wky32hyI5JtD8Tsxw8FwN0LUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Nov 5 02:14:06 2025 GMT Not After : Nov 12 02:14:06 2025 GMT Subject: CN=690ab2ee-5da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1a:bc:a2:83:10:b9:e7:e1:e4:bc:6e:8d:28: e8:0a:a8:a8:89:a7:79:e2:13:91:56:76:2d:c8:80: af:56:07:e6:eb:57:39:94:6d:27:af:6d:2b:51:15: 9b:cb:d1:26:8c:41:b8:d5:dc:af:32:08:1b:19:d1: 2e:dc:aa:ab:12:ce:7e:49:f6:bd:79:56:40:5d:cb: 92:0a:63:a7:cc:e6:01:f9:46:37:e8:5d:27:9c:c1: e7:e5:44:74:80:cc:59:e6:3d:17:00:a2:2c:5c:8a: 73:36:99:f7:90:d5:1e:2e:d0:ae:d4:40:e5:27:89: ac:1d:22:8c:ec:5d:49:6c:d6:91:a2:7f:30:6a:d7: f8:19:dd:fe:78:ca:32:bb:8c:52:49:84:36:cc:fb: 32:1b:c3:83:d1:6f:77:db:11:b5:f4:11:fe:b9:b2: 26:81:87:4c:ac:42:e8:9c:97:eb:23:32:d1:87:dd: 69:7a:98:7d:49:b4:16:d3:2d:55:6f:ec:b5:a8:4f: 86:57:87:79:0b:02:d0:10:8f:08:79:61:32:bf:e8: e2:82:ab:24:17:f1:84:1c:e7:d5:36:a0:6a:4e:12: 1a:da:3d:4c:56:80:2b:f2:b1:c6:2b:61:d3:7e:3d: 5a:41:cb:4e:6a:1a:1e:f0:88:8f:c9:bb:23:78:c7: 35:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F4:29:A4:90:70:69:62:5D:DD:D2:86:E4:E5:E4:99:8D:1E:99:64 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:74:2e:d4:ce:21:dc:33:cf:6d:6e:c1:30:d6:32:5b:dc:ba: 54:93:79:9a:9d:9d:f8:c7:d7:cd:eb:11:ed:1c:5d:b6:ff:f1: 5c:5b:88:df:69:72:69:76:4a:99:6c:5f:4d:1d:fa:7f:02:59: 63:70:94:0e:09:22:10:bb:8c:6e:db:5f:00:0f:f5:66:0d:e5: 20:70:80:4c:ea:24:7d:d0:bc:11:70:61:ef:43:69:6f:12:1e: 22:69:27:27:b1:03:52:ce:07:46:92:5f:9f:42:a3:0c:d9:b0: 6b:d5:b4:37:4f:af:01:be:e3:6d:78:d2:6c:53:d9:75:03:01: c7:97:e8:cc:3b:99:1e:d8:ac:d3:55:8b:ce:7e:f2:4a:00:2b: 1f:c5:dd:b6:8a:5f:a5:d3:8f:25:c0:db:74:13:54:79:c2:70: c2:3c:03:ee:05:e4:16:50:a0:8b:50:13:e0:9a:7a:36:51:1d: 55:48:64:71:59:20:c3:9a:6d:9d:dd:b7:4e:d3:ff:43:6f:df: 0b:0b:e4:db:1d:a6:a9:1a:f3:79:72:c0:cf:37:4d:36:74:8c: 90:85:4a:f1:f7:54:52:b8:ee:fa:a1:46:05:51:a6:4e:f8:36: 9a:6a:ac:4a:fa:d9:a5:55:5c:29:06:0a:3f:05:e3:20:11:5e: fc:55:7c:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUxMTA1MDIxNDA2WhcNMjUxMTEyMDIxNDA2WjAYMRYwFAYD VQQDEw02OTBhYjJlZS01ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhq8ooMQuefh5LxujSjoCqioiad54hORVnYtyICvVgfm61c5lG0nr20rURWb y9EmjEG41dyvMggbGdEu3KqrEs5+Sfa9eVZAXcuSCmOnzOYB+UY36F0nnMHn5UR0 gMxZ5j0XAKIsXIpzNpn3kNUeLtCu1EDlJ4msHSKM7F1JbNaRon8watf4Gd3+eMoy u4xSSYQ2zPsyG8OD0W932xG19BH+ubImgYdMrELonJfrIzLRh91peph9SbQW0y1V b+y1qE+GV4d5CwLQEI8IeWEyv+jigqskF/GEHOfVNqBqThIa2j1MVoAr8rHGK2HT fj1aQctOahoe8IiPybsjeMc1fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGD0KaSQ cGliXd3ShuTl5JmNHplkMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2dC7UziHcM89tbsEw1jJb3LpUk3manZ34x9fN6xHtHF22//FcW4jf aXJpdkqZbF9NHfp/AlljcJQOCSIQu4xu218AD/VmDeUgcIBM6iR90LwRcGHvQ2lv Eh4iaScnsQNSzgdGkl+fQqMM2bBr1bQ3T68BvuNteNJsU9l1AwHHl+jMO5ke2KzT VYvOfvJKACsfxd22il+l048lwNt0E1R5wnDCPAPuBeQWUKCLUBPgmno2UR1VSGRx WSDDmm2d3bdO0/9Db98LC+TbHaapGvN5csDPN002dIyQhUrx91RSuO76oUYFUaZO +DaaaqxK+tmlVVwpBgo/BeMgEV78VXw3 -----END CERTIFICATE-----Generated at Wed Nov 5 19:20:39 2025 by rpki-client