$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: jmgLlOP4BujPqplXrYdI/+BDCJ8WE0Pb5J8Yuzj+wb8= Subject key identifier: A2:78:1A:5E:B8:AD:7E:10:9E:C3:8B:F9:C5:EC:C5:06:42:3F:68:17 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C46 Signing time: Tue 04 Nov 2025 18:44:50 +0000 Manifest this update: Tue 04 Nov 2025 18:44:50 +0000 Manifest next update: Tue 11 Nov 2025 18:44:50 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: 8RvThIkNWORYOwYcNZuRclzYfCGXYcIp7Q96RaX5/A8=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: oTWmtO2mgStqeMj6jPmXnnLNrPwchhiOjUM05tQ62SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Nov 4 18:44:50 2025 GMT Not After : Nov 11 18:44:50 2025 GMT Subject: CN=690a49a2-8efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:ba:34:af:75:46:1c:55:62:5a:36:4c:63: 05:47:f3:67:dc:c4:57:30:1f:ea:fd:f5:22:f5:e4: 1d:84:74:67:c6:49:0b:ad:00:db:60:25:09:9d:d1: 02:86:b7:c1:f9:7b:f1:27:d7:a4:b3:d7:92:e8:61: 01:61:71:79:ac:cf:bc:1a:74:77:11:d5:72:ee:02: c3:db:a1:d1:e0:38:8e:76:12:fc:95:a3:ea:53:33: ac:87:0b:bb:96:68:c6:96:81:13:84:ce:70:96:0b: 5d:cc:4b:d1:86:e8:17:c3:4f:62:e0:7d:1e:c2:79: b8:f6:e3:ca:a9:37:d6:85:be:60:56:8c:b2:3a:50: a1:a0:d9:40:08:19:b9:76:45:30:33:a7:51:81:59: 0d:de:4b:7f:fe:e7:c6:ea:f8:62:24:bc:0c:bf:75: 24:df:05:ea:0e:00:6f:44:0a:a5:72:f4:ee:32:0e: 29:b2:c4:16:4f:ac:a6:4f:19:76:e5:57:62:03:34: a6:8e:17:f3:05:cf:b7:a5:38:aa:a5:fd:ba:89:95: 56:3d:08:29:9f:14:a2:9c:a1:5a:cf:fb:81:a2:df: 8c:af:dc:20:5e:83:11:97:ee:e7:af:76:07:da:b9: 5f:03:54:fb:69:2a:1b:d1:1e:ba:30:f2:e0:d4:70: 8b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:78:1A:5E:B8:AD:7E:10:9E:C3:8B:F9:C5:EC:C5:06:42:3F:68:17 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a1:09:2f:2b:84:49:ad:da:ae:58:b3:07:d8:8e:50:cb:a7: 13:6f:0f:c9:b5:6e:81:84:79:0d:30:66:03:c3:c4:59:d6:3b: ef:9d:4c:35:92:6d:93:37:64:9b:24:75:cd:09:97:61:aa:da: 66:29:bf:54:56:7c:92:a5:a0:90:c7:ea:2b:f3:e4:3d:b6:f0: 33:6d:6a:15:84:ea:05:f3:c7:4f:dd:3c:58:cc:b9:44:6e:b1: a2:0e:78:6a:67:5d:9f:c9:45:4c:62:b8:a0:f6:5a:e4:b0:c5: e8:d9:1d:42:c7:65:8b:62:8e:d8:bc:c4:23:d6:87:64:64:26: 93:9b:13:7e:ee:e3:7c:21:82:6d:e7:bb:a4:c2:77:0c:3d:19: 08:76:7c:70:ca:cb:92:b8:1b:7b:1f:b3:b6:44:f1:fa:9a:49: 31:3f:fd:31:2b:9f:71:fe:38:18:4f:6f:8c:e0:e3:fa:f8:b1: 98:d1:a0:ee:68:96:af:a4:18:05:de:4c:4c:7f:29:d8:2b:54: 81:ec:9c:9a:cf:f2:19:d6:d3:e6:51:bb:0e:b7:bc:85:a3:dc: 03:47:97:5e:a2:9a:34:ee:07:2f:23:19:67:f9:d3:e5:47:1e: 79:60:a3:54:8d:b0:86:bf:9d:c0:e0:b9:bf:66:5a:75:8f:ef: e7:35:2f:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUxMTA0MTg0NDUwWhcNMjUxMTExMTg0NDUwWjAYMRYwFAYD VQQDEw02OTBhNDlhMi04ZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSy6NK91RhxVYlo2TGMFR/Nn3MRXMB/q/fUi9eQdhHRnxkkLrQDbYCUJndEC hrfB+XvxJ9eks9eS6GEBYXF5rM+8GnR3EdVy7gLD26HR4DiOdhL8laPqUzOshwu7 lmjGloEThM5wlgtdzEvRhugXw09i4H0ewnm49uPKqTfWhb5gVoyyOlChoNlACBm5 dkUwM6dRgVkN3kt//ufG6vhiJLwMv3Uk3wXqDgBvRAqlcvTuMg4pssQWT6ymTxl2 5VdiAzSmjhfzBc+3pTiqpf26iZVWPQgpnxSinKFaz/uBot+Mr9wgXoMRl+7nr3YH 2rlfA1T7aSob0R66MPLg1HCL7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJ4Gl64 rX4QnsOL+cXsxQZCP2gXMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAoQkvK4RJrdquWLMH2I5Qy6cTbw/JtW6BhHkNMGYDw8RZ1jvvnUw1 km2TN2SbJHXNCZdhqtpmKb9UVnySpaCQx+or8+Q9tvAzbWoVhOoF88dP3TxYzLlE brGiDnhqZ12fyUVMYrig9lrksMXo2R1Cx2WLYo7YvMQj1odkZCaTmxN+7uN8IYJt 57ukwncMPRkIdnxwysuSuBt7H7O2RPH6mkkxP/0xK59x/jgYT2+M4OP6+LGY0aDu aJavpBgF3kxMfynYK1SB7Jyaz/IZ1tPmUbsOt7yFo9wDR5deopo07gcvIxln+dPl Rx55YKNUjbCGv53A4Lm/Zlp1j+/nNS98 -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:26 2025 by rpki-client