$ rpki-client -vvf rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft File: YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft (raw, json) Hash identifier: Uq7SwHJgAsw7TkrNPw9upbzv07AFxw+vQ2h0vKGW31g= Subject key identifier: 94:F3:EB:18:B0:E4:30:8B:B4:73:03:28:D2:ED:A8:B5:7F:23:9E:62 Authority key identifier: 60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA Certificate issuer: /CN=A913A839/serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Certificate serial: 0A8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft Manifest number: 0A84 Signing time: Tue 04 Nov 2025 19:41:21 +0000 Manifest this update: Tue 04 Nov 2025 19:41:21 +0000 Manifest next update: Tue 11 Nov 2025 19:41:20 +0000 Files and hashes: 1: YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl (hash: V4wic6yNzN3vw7DQiFpwLoHhqktgJ3Hf8GwusRuDaSY=) 2: 0DCB1BDC6C3111EA8F4E9B70C4F9AE02.roa (hash: oNJE5bj6Ow/7pljSaqdBQ3poJgn7jCyxhJR6Se/yVrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A839, serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Validity Not Before: Nov 4 19:41:21 2025 GMT Not After : Nov 11 19:41:20 2025 GMT Subject: CN=690a56e1-92e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:3b:23:68:12:12:fd:24:09:e5:f1:a7:6b: 4e:d9:97:93:1a:25:81:91:15:30:aa:be:32:59:b9: ab:38:78:26:49:91:16:12:72:9e:16:36:99:3a:55: 89:aa:71:43:60:2e:f9:e6:3e:bd:68:e1:8b:9d:66: 87:f4:ca:69:73:bf:ae:4e:7c:5b:bc:82:22:da:c2: fd:99:e6:40:86:1c:38:ff:ea:3f:12:5c:f1:bb:10: 73:0c:f2:56:08:15:c5:e8:78:3e:34:2f:9d:15:94: 4e:90:28:b5:fb:28:8b:fe:a3:b8:dd:4a:ac:19:bd: 7b:a3:90:69:41:fd:d1:cd:6b:ab:57:54:37:33:03: 76:98:7c:b3:fc:c9:5d:fd:a7:bd:bc:f3:56:28:ba: 2b:eb:52:1d:39:1b:15:fe:82:66:90:7a:d2:83:ca: 28:15:78:48:70:2c:bf:78:14:c4:e5:cb:c7:01:c2: bd:67:b9:5e:88:0b:ee:d6:ed:b6:cf:c4:b9:05:2b: c7:77:3a:e5:f0:49:a1:40:6f:ee:cd:b5:7e:67:42: 63:43:4e:9a:5d:0d:6b:28:c6:57:74:d1:c1:cf:9d: 32:00:00:92:84:07:08:8f:52:4f:7a:ef:bb:05:71: 16:71:0b:7d:5d:d6:82:e9:5e:9e:96:f5:78:09:23: bc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F3:EB:18:B0:E4:30:8B:B4:73:03:28:D2:ED:A8:B5:7F:23:9E:62 X509v3 Authority Key Identifier: keyid:60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:db:08:0a:72:d5:13:40:83:e0:7f:08:0f:33:08:23:02:cb: d7:1c:1b:0e:08:5e:1e:30:53:ac:39:44:4f:4f:67:ff:31:b4: 3b:b1:0d:db:0a:b9:68:cb:b3:3c:e6:a8:1c:b8:8b:53:f2:dd: 05:4c:07:01:7b:af:c5:57:5a:be:e4:60:f4:e4:b5:e2:02:4a: 23:0c:31:fa:5d:5a:5e:87:4f:81:f7:2c:1b:08:aa:50:2e:9c: c9:cd:59:44:35:e1:d1:93:fe:a8:38:2a:e5:8f:3d:4b:36:b9: 1e:ab:2b:49:da:84:df:14:cc:86:50:2d:01:70:4d:18:9e:04: de:0c:96:62:71:f6:a1:86:34:ea:07:94:04:67:c5:63:37:6c: 38:5e:0d:00:43:6d:26:46:8f:dd:3d:9e:a1:ec:5a:e3:f6:58: e5:27:f1:46:5e:03:c5:1e:a9:13:1c:b8:b7:89:d3:b7:6f:91: f0:cc:2c:d7:98:52:50:57:31:55:ba:4f:c6:0d:fb:2f:19:bf: 9a:12:ed:4f:44:dd:3e:91:c7:11:4c:36:f7:17:7c:e2:27:6e: e2:75:ac:da:7e:87:ab:9d:b4:68:00:32:8d:59:81:86:65:53: 00:72:2d:ce:48:24:90:6c:64:1f:22:9f:78:f0:03:b4:d7:6c: f2:02:25:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MzkxMTAvBgNVBAUTKDYwQUIzQ0ZGQUI4OEE1MTM0MkI4MTZGMDU5MDE5RjA3 M0U5NTAwQUEwHhcNMjUxMTA0MTk0MTIxWhcNMjUxMTExMTk0MTIwWjAYMRYwFAYD VQQDEw02OTBhNTZlMS05MmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokM7I2gSEv0kCeXxp2tO2ZeTGiWBkRUwqr4yWbmrOHgmSZEWEnKeFjaZOlWJ qnFDYC755j69aOGLnWaH9Mppc7+uTnxbvIIi2sL9meZAhhw4/+o/ElzxuxBzDPJW CBXF6Hg+NC+dFZROkCi1+yiL/qO43UqsGb17o5BpQf3RzWurV1Q3MwN2mHyz/Mld /ae9vPNWKLor61IdORsV/oJmkHrSg8ooFXhIcCy/eBTE5cvHAcK9Z7leiAvu1u22 z8S5BSvHdzrl8EmhQG/uzbV+Z0JjQ06aXQ1rKMZXdNHBz50yAACShAcIj1JPeu+7 BXEWcQt9XdaC6V6elvV4CSO8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTz6xiw 5DCLtHMDKNLtqLV/I55iMB8GA1UdIwQYMBaAFGCrPP+riKUTQrgW8FkBnwc+lQCq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgzOS9DMEUwM0NGNDZD MkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBSTkN1QmJ3V1FHZkJ6NlZB S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lLczhfNnVJcFJOQ3VCYndXUUdmQno2VkFLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgzOS9DMEUwM0NGNDZDMkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBS TkN1QmJ3V1FHZkJ6NlZBS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi2wgKctUTQIPgfwgPMwgjAsvXHBsOCF4eMFOsOURPT2f/MbQ7sQ3b Crloy7M85qgcuItT8t0FTAcBe6/FV1q+5GD05LXiAkojDDH6XVpeh0+B9ywbCKpQ LpzJzVlENeHRk/6oOCrljz1LNrkeqytJ2oTfFMyGUC0BcE0YngTeDJZicfahhjTq B5QEZ8VjN2w4Xg0AQ20mRo/dPZ6h7Frj9ljlJ/FGXgPFHqkTHLi3idO3b5HwzCzX mFJQVzFVuk/GDfsvGb+aEu1PRN0+kccRTDb3F3ziJ27idazafoernbRoADKNWYGG ZVMAci3OSCSQbGQfIp948AO012zyAiUl -----END CERTIFICATE-----Generated at Wed Nov 5 09:52:28 2025 by rpki-client