$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft File: YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft (raw, json) Hash identifier: jlG6CRCLY3LR3EILOpj0L5rW5fNVBI2wU6wEGOmMfxQ= Subject key identifier: 7F:E3:01:AE:10:80:9F:3C:57:6A:52:DE:0B:7E:32:4C:22:12:90:51 Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 0A0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft Manifest number: 0A07 Signing time: Tue 04 Nov 2025 19:55:15 +0000 Manifest this update: Tue 04 Nov 2025 19:55:14 +0000 Manifest next update: Tue 11 Nov 2025 19:55:14 +0000 Files and hashes: 1: YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl (hash: tV2gJDDxxjZmnx2jHuGT5dWpC4iLoxR6snM1ne4QP7w=) 2: 5C8929C8839011EAB5B82263C4F9AE02.roa (hash: Jr5A5EFDHOtjVbEZUPlRHjoDRI+w8P0c18JoA/Eyebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Nov 4 19:55:14 2025 GMT Not After : Nov 11 19:55:14 2025 GMT Subject: CN=690a5a22-89be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:2d:c9:c0:e0:f1:fe:5b:9b:d4:84:8b:0c: f0:57:1f:1d:0e:84:e0:43:c2:bc:e4:15:77:8d:bd: b5:98:0e:67:f7:43:08:b0:4a:d1:62:24:fe:aa:d0: 45:3b:cf:ff:b9:26:75:d3:13:de:db:55:8b:35:e7: 61:4e:e1:30:8b:36:de:48:65:d2:28:2f:3d:80:5b: ba:db:12:23:d6:46:5d:9c:d4:a0:7b:97:ed:2c:8e: 70:9d:0e:b2:ad:61:d2:33:92:13:ee:77:1b:b3:f2: 51:50:70:f8:02:ab:33:a2:69:89:2d:12:e6:e8:67: f1:1e:de:2d:f4:3e:50:fd:8c:bf:53:24:21:93:3e: 96:b1:95:22:bf:50:0d:49:7b:6c:b8:62:69:1a:35: 74:79:f0:19:10:6c:42:ff:b0:68:af:4a:cc:22:df: c1:26:4f:68:69:4d:fd:ee:28:59:ea:01:8b:ab:3c: 9b:4d:61:24:07:7a:28:d0:9c:83:90:9a:fc:86:28: 6e:28:6e:e4:9b:77:bf:bd:f9:f0:59:13:20:72:97: a9:69:0b:b7:11:b3:c7:b7:52:ed:22:46:ce:9a:55: c5:ff:98:ac:7b:74:fc:0e:01:19:0e:43:52:05:51: d3:a9:7d:e5:82:69:9a:60:cf:5e:eb:f4:ce:8e:40: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E3:01:AE:10:80:9F:3C:57:6A:52:DE:0B:7E:32:4C:22:12:90:51 X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b5:90:7a:ca:21:38:8e:ae:7c:82:3b:bc:96:f7:aa:ba:11: 85:df:b9:0a:1f:3a:3d:de:7a:fc:3c:00:31:10:cd:26:ca:d1: 2c:14:6f:e6:e6:c1:27:0f:ea:f7:0a:f9:3b:10:de:b3:ab:14: 5e:20:32:e3:88:9b:97:ac:ce:ef:24:f9:34:42:e3:86:51:8c: b8:52:71:e3:d1:df:cf:bd:8c:95:b5:a1:fc:07:98:54:2a:8a: 74:a6:78:cd:c8:45:c4:4f:90:cc:4e:f1:d8:2f:13:e4:2d:29: 17:13:a9:01:fb:e1:0f:98:f1:72:4f:8a:4a:9c:3c:88:96:20: 27:21:44:3f:01:7e:b2:81:15:51:8a:cd:93:df:26:9d:41:82: 8d:4f:67:94:f6:61:c5:76:3b:b2:09:23:d1:0d:4d:d7:12:26: d6:7d:81:19:ea:1d:b7:e9:55:e4:29:64:88:32:f0:b6:45:f2: 04:be:a4:10:d6:1e:0f:6f:63:40:01:21:ba:6e:43:b6:4f:98: 02:c2:0c:06:a1:c6:03:0f:bb:64:b7:42:66:83:6c:37:f2:fd: 32:ce:f6:9d:93:c4:b2:e5:dc:dd:05:8e:dc:9e:43:56:f6:35: 7c:0a:32:27:72:bc:e0:da:b2:30:45:8e:6f:59:f0:8d:41:0c: b6:ca:16:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjUxMTA0MTk1NTE0WhcNMjUxMTExMTk1NTE0WjAYMRYwFAYD VQQDEw02OTBhNWEyMi04OWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqwtycDg8f5bm9SEiwzwVx8dDoTgQ8K85BV3jb21mA5n90MIsErRYiT+qtBF O8//uSZ10xPe21WLNedhTuEwizbeSGXSKC89gFu62xIj1kZdnNSge5ftLI5wnQ6y rWHSM5IT7ncbs/JRUHD4AqszommJLRLm6GfxHt4t9D5Q/Yy/UyQhkz6WsZUiv1AN SXtsuGJpGjV0efAZEGxC/7Bor0rMIt/BJk9oaU397ihZ6gGLqzybTWEkB3oo0JyD kJr8hihuKG7km3e/vfnwWRMgcpepaQu3EbPHt1LtIkbOmlXF/5ise3T8DgEZDkNS BVHTqX3lgmmaYM9e6/TOjkCfiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/jAa4Q gJ88V2pS3gt+MkwiEpBRMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ4OC81RDI2ODM0QTgzOEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5 NjhwRW9VdmJjeGFJajZZMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAftZB6yiE4jq58gju8lvequhGF37kKHzo93nr8PAAxEM0mytEsFG/m 5sEnD+r3Cvk7EN6zqxReIDLjiJuXrM7vJPk0QuOGUYy4UnHj0d/PvYyVtaH8B5hU Kop0pnjNyEXET5DMTvHYLxPkLSkXE6kB++EPmPFyT4pKnDyIliAnIUQ/AX6ygRVR is2T3yadQYKNT2eU9mHFdjuyCSPRDU3XEibWfYEZ6h236VXkKWSIMvC2RfIEvqQQ 1h4Pb2NAASG6bkO2T5gCwgwGocYDD7tkt0Jmg2w38v0yzvadk8Sy5dzdBY7cnkNW 9jV8CjIncrzg2rIwRY5vWfCNQQy2yhaq -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:06 2025 by rpki-client