$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: xhKtRGtHeTxJdS6DJi7Z+XaTgJLx7Qi9OtXnrRTr9Yo= Subject key identifier: 87:1E:84:9B:ED:14:95:E5:D4:51:05:6D:3C:3F:D4:4A:51:B6:CC:CB Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 0810 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 0808 Signing time: Sun 02 Nov 2025 20:56:22 +0000 Manifest this update: Sun 02 Nov 2025 20:56:22 +0000 Manifest next update: Sun 09 Nov 2025 20:56:22 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: Q74EWL/mWjdDKOnRrTqbUTmEWoUTV8BhiSx6L4bXtrY=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: jObAEaW9jlDTMyIb6A8JZqjslqhvlPIsAzJOzv+NnRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Nov 2 20:56:22 2025 GMT Not After : Nov 9 20:56:22 2025 GMT Subject: CN=6907c576-f6cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:f0:42:1b:38:eb:41:59:13:9c:00:da:4b: 73:f4:60:b8:e2:8b:a2:a0:6b:60:c2:6a:2c:4e:ce: d5:22:31:b4:2e:3c:c5:77:8e:cd:ce:d0:9b:4d:7d: 55:36:8b:0a:a2:e3:56:40:f2:01:6a:a7:b5:76:8d: cb:58:0e:3d:d6:d0:23:29:14:97:05:33:e6:92:da: 36:5e:aa:d6:9f:66:1a:d2:10:e4:99:35:24:05:ce: d1:d2:e1:74:0e:eb:e2:34:62:69:39:21:8d:4a:68: c8:a7:b6:13:07:2a:09:02:c0:f5:25:b6:26:fe:80: a4:b5:23:1d:ec:c7:b4:c5:1d:13:fa:6f:40:50:da: 03:b1:da:d2:64:d9:d6:44:8c:ec:3e:91:cb:4b:ba: 02:21:fc:62:88:72:17:ac:2d:ff:66:c0:be:6b:7e: b0:58:e9:e4:00:7a:9a:56:62:1c:d1:7c:f9:9e:c8: 4b:7b:e9:7b:89:40:79:46:d8:b2:4c:f8:db:1c:73: c5:7c:54:cb:8d:9a:80:6e:6f:bb:19:e9:b1:8a:fd: 99:ad:c2:bb:99:ab:79:7b:2f:79:94:6c:a8:b7:c2: ec:c1:b6:82:c1:cb:95:70:9a:b1:63:4f:d5:3f:3a: da:f5:22:7e:9b:33:75:1a:a8:fa:78:ef:00:5e:c3: 1a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1E:84:9B:ED:14:95:E5:D4:51:05:6D:3C:3F:D4:4A:51:B6:CC:CB X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:6e:6b:43:0c:11:72:b5:d7:22:1e:e5:fa:0c:ec:6f:44:fb: f4:4f:d9:f4:eb:e3:ac:5f:45:6d:d4:a7:94:d4:48:ce:a0:c9: 63:61:5d:a9:ab:83:98:69:7f:2c:cd:19:6c:e7:23:65:35:a7: 42:5b:a4:0c:43:31:91:39:e5:00:da:99:6a:03:84:3c:cd:ac: e5:74:a6:6a:a0:f9:61:0e:86:50:c4:d5:f1:5e:d2:fc:61:50: dd:a3:5f:39:bc:c6:c6:88:36:77:e8:9d:55:15:59:5b:b0:f7: 65:6d:9b:87:63:48:a6:36:d6:00:e2:3f:a6:07:f8:71:06:aa: 43:2a:d8:de:8d:60:81:78:d1:1c:fd:0e:a4:d8:07:85:8f:74: 66:31:b5:38:85:7b:c6:e1:c2:57:10:de:5b:e3:4b:b7:68:46: 63:d4:31:40:e4:ef:70:a0:32:b6:40:9e:bb:63:49:ba:20:f3: 5c:42:0b:20:8a:51:9e:c7:c5:88:49:5c:a7:b2:b4:26:9e:8a: 42:cc:c7:59:a3:91:54:99:f9:a5:34:ce:d9:e0:b4:80:56:ef: 39:33:20:21:80:ca:f7:04:65:90:a8:c8:22:17:b4:b3:4c:27: cc:b8:76:ae:6f:7e:39:33:b7:77:30:08:66:2a:32:40:b5:6f: 87:e6:ef:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjUxMTAyMjA1NjIyWhcNMjUxMTA5MjA1NjIyWjAYMRYwFAYD VQQDEw02OTA3YzU3Ni1mNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+HwQhs460FZE5wA2ktz9GC44ouioGtgwmosTs7VIjG0LjzFd47NztCbTX1V NosKouNWQPIBaqe1do3LWA491tAjKRSXBTPmkto2XqrWn2Ya0hDkmTUkBc7R0uF0 DuviNGJpOSGNSmjIp7YTByoJAsD1JbYm/oCktSMd7Me0xR0T+m9AUNoDsdrSZNnW RIzsPpHLS7oCIfxiiHIXrC3/ZsC+a36wWOnkAHqaVmIc0Xz5nshLe+l7iUB5Rtiy TPjbHHPFfFTLjZqAbm+7Gemxiv2ZrcK7mat5ey95lGyot8LswbaCwcuVcJqxY0/V Pzra9SJ+mzN1Gqj6eO8AXsMaRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcehJvt FJXl1FEFbTw/1EpRtszLMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPbmtDDBFytdciHuX6DOxvRPv0T9n06+OsX0Vt1KeU1EjOoMljYV2p q4OYaX8szRls5yNlNadCW6QMQzGROeUA2plqA4Q8zazldKZqoPlhDoZQxNXxXtL8 YVDdo185vMbGiDZ36J1VFVlbsPdlbZuHY0imNtYA4j+mB/hxBqpDKtjejWCBeNEc /Q6k2AeFj3RmMbU4hXvG4cJXEN5b40u3aEZj1DFA5O9woDK2QJ67Y0m6IPNcQgsg ilGex8WISVynsrQmnopCzMdZo5FUmfmlNM7Z4LSAVu85MyAhgMr3BGWQqMgiF7Sz TCfMuHaub345M7d3MAhmKjJAtW+H5u9v -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:58 2025 by rpki-client