$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: YXxsEyGgzpDuwLO5bqkFlfPD2VG49jwhEUO/eWuFUc8= Subject key identifier: 41:F1:90:75:70:E1:DD:98:D3:F7:C3:6D:07:C9:04:DC:63:4F:50:1E Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0CFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0CF0 Signing time: Tue 04 Nov 2025 18:13:01 +0000 Manifest this update: Tue 04 Nov 2025 18:13:01 +0000 Manifest next update: Tue 11 Nov 2025 18:13:01 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: 5YP5vUFTJFgat5p+8tOohzKryJQ75UP8H5bUnQz3wk8=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: X3uR7nkHEkJDs/4UDZXjCbVpYlI7ETxizWrqRmPT3Rg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3326 (0xcfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Nov 4 18:13:01 2025 GMT Not After : Nov 11 18:13:01 2025 GMT Subject: CN=690a422d-c1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:80:c4:cd:08:81:7f:eb:f3:2b:c9:0f:67:6b: 8a:1d:d2:1d:53:f3:f5:dd:63:4e:e9:44:b6:cc:dc: 3d:74:55:f5:0e:8c:09:1f:24:2c:ad:3c:27:aa:94: 17:1d:cd:10:db:d2:71:8b:7a:59:94:d6:8b:e0:14: a1:09:0e:ce:fc:dd:a0:c8:20:21:ab:8b:b9:ab:e9: d4:ab:7d:9a:78:fb:b3:d0:df:5f:11:55:93:ce:43: 19:50:44:11:94:3c:22:47:57:b0:5a:f7:59:45:c6: aa:ef:06:4a:55:c6:21:35:37:d5:e8:0d:f3:a9:8a: 4a:1e:1e:29:c6:ef:4c:94:d6:07:56:de:83:22:a0: b3:d6:54:04:be:8a:48:f5:61:9e:87:03:72:9b:6f: e7:d3:cd:67:b4:51:6c:47:0b:a0:c6:ae:cf:de:af: 6a:16:e8:ae:c7:d1:af:6a:5c:5c:91:ae:d5:e7:b2: ff:5e:7a:0e:6c:16:3f:f8:9b:c7:1b:ab:40:59:d4: 21:2e:b5:5e:a4:ad:04:e7:9b:ae:e8:46:9b:ba:8e: de:04:41:0a:b8:70:35:e3:b6:60:1d:be:d5:16:54: 2e:83:e1:0c:16:5e:e1:fa:c0:81:e5:ce:74:a5:86: dc:84:1e:3b:5a:f3:5f:83:d7:ac:f2:42:8a:5b:96: 22:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F1:90:75:70:E1:DD:98:D3:F7:C3:6D:07:C9:04:DC:63:4F:50:1E X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:d1:94:03:60:41:6a:42:e2:6d:f4:ed:3b:2f:67:f2:21:2e: 57:5e:43:c3:6c:86:39:c4:fb:a4:00:80:b7:c7:51:44:84:e4: 09:65:84:af:29:65:17:26:28:d3:f6:9f:fb:52:b0:a9:0b:7b: b3:cd:de:ab:b1:f3:38:ca:89:b6:40:b4:77:c4:65:cd:e4:f7: b7:2a:5f:96:e1:d9:e4:3e:5d:70:3c:ea:0f:4c:7e:e6:02:ed: a9:f4:0d:97:46:3f:f9:93:bb:69:92:bf:01:14:bd:de:cd:8b: 8b:a2:4e:8a:c2:9b:00:3b:bb:0d:84:e1:f8:1c:f0:62:3f:58: ca:21:d0:eb:f6:3f:d4:8f:99:4b:e8:5c:dd:95:a1:42:c1:8c: 03:6d:52:2a:a2:c7:7b:60:e2:60:64:7e:6a:1a:e5:74:63:42: 6b:fb:39:43:25:24:bd:e3:0c:b5:56:98:ab:76:06:44:6a:aa: 70:77:b1:ad:2f:c1:96:fa:27:fd:2b:f4:0c:36:b3:65:41:68: 4e:28:8b:6a:f8:6a:5d:39:0f:00:2e:0a:4d:05:7d:95:dc:b6: 25:44:2e:ad:36:37:0f:6b:02:a4:d7:b0:03:58:fc:c4:0e:ad: 8c:60:ca:92:a3:4a:5a:ba:3a:be:04:e5:84:fd:fd:c1:05:83: 8f:63:c5:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjUxMTA0MTgxMzAxWhcNMjUxMTExMTgxMzAxWjAYMRYwFAYD VQQDEw02OTBhNDIyZC1jMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroDEzQiBf+vzK8kPZ2uKHdIdU/P13WNO6US2zNw9dFX1DowJHyQsrTwnqpQX Hc0Q29Jxi3pZlNaL4BShCQ7O/N2gyCAhq4u5q+nUq32aePuz0N9fEVWTzkMZUEQR lDwiR1ewWvdZRcaq7wZKVcYhNTfV6A3zqYpKHh4pxu9MlNYHVt6DIqCz1lQEvopI 9WGehwNym2/n081ntFFsRwugxq7P3q9qFuiux9Gvalxcka7V57L/XnoObBY/+JvH G6tAWdQhLrVepK0E55uu6Eabuo7eBEEKuHA147ZgHb7VFlQug+EMFl7h+sCB5c50 pYbchB47WvNfg9es8kKKW5YiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHxkHVw 4d2Y0/fDbQfJBNxjT1AeMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDG0ZQDYEFqQuJt9O07L2fyIS5XXkPDbIY5xPukAIC3x1FEhOQJZYSv KWUXJijT9p/7UrCpC3uzzd6rsfM4yom2QLR3xGXN5Pe3Kl+W4dnkPl1wPOoPTH7m Au2p9A2XRj/5k7tpkr8BFL3ezYuLok6KwpsAO7sNhOH4HPBiP1jKIdDr9j/Uj5lL 6FzdlaFCwYwDbVIqosd7YOJgZH5qGuV0Y0Jr+zlDJSS94wy1VpirdgZEaqpwd7Gt L8GW+if9K/QMNrNlQWhOKItq+GpdOQ8ALgpNBX2V3LYlRC6tNjcPawKk17ADWPzE Dq2MYMqSo0paujq+BOWE/f3BBYOPY8Ub -----END CERTIFICATE-----Generated at Wed Nov 5 15:32:59 2025 by rpki-client