$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: tq8VrFaDSFjc4faSN16S0VF3YcwEY67z266PyT4XNeA= Subject key identifier: 92:91:F5:EE:BC:18:41:BE:12:85:C6:30:7C:ED:4F:F9:77:A2:D9:B0 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07D7 Signing time: Tue 04 Nov 2025 21:22:33 +0000 Manifest this update: Tue 04 Nov 2025 21:22:32 +0000 Manifest next update: Tue 11 Nov 2025 21:22:32 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: JWnJXXe3pSyjuXZbKgtlGvKrfv/2eKm+fRaJc3mYuoM=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Nov 4 21:22:32 2025 GMT Not After : Nov 11 21:22:32 2025 GMT Subject: CN=690a6e98-845c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:1c:15:ce:dc:0d:31:e3:a4:00:b4:8b:16: 6d:ce:34:b4:42:a5:3f:45:56:b3:de:5d:9c:17:a7: 5a:a5:2b:84:67:c8:53:a0:45:fd:c5:7d:3f:d9:16: 28:cd:77:47:13:20:3a:d1:dd:e9:d3:64:7f:0b:cb: 33:0f:55:60:05:ea:c8:3c:55:f8:a6:6a:aa:83:67: 91:98:d7:d6:45:ec:3d:4c:98:9c:42:09:e2:49:9e: 88:58:8c:77:64:69:c5:e4:0b:0d:3d:e3:cb:3c:1c: ad:b7:23:d1:eb:19:c6:0f:17:ce:8a:50:05:bf:33: 92:b0:06:bf:95:ab:50:17:ad:eb:a9:1b:39:72:ce: c7:c0:c9:db:d5:94:02:14:31:6d:9c:e2:70:f6:96: 95:ae:df:cd:78:ad:d9:40:fe:9c:52:4e:f4:3e:b6: a5:f9:be:c9:32:f2:f7:ec:b7:12:2a:e5:51:3c:df: 8d:64:23:bf:7f:30:fb:38:10:cc:86:44:71:22:1d: f1:bb:83:7d:95:64:8f:54:ff:d0:13:6d:d9:d6:5a: 4f:f2:8a:75:6e:0b:83:ef:29:ad:2e:d4:89:0e:bf: 40:b2:33:9e:9a:55:33:d2:d0:8e:98:37:f7:0d:d7: 15:8e:b7:a3:4a:b1:91:d4:97:59:bd:ce:86:15:cc: 41:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:91:F5:EE:BC:18:41:BE:12:85:C6:30:7C:ED:4F:F9:77:A2:D9:B0 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:d1:96:f5:af:28:94:22:bd:45:de:66:7b:2d:0f:3c:6f:ec: 15:1b:8a:c2:40:f7:04:46:b5:30:ce:0f:f4:a2:d0:a5:b5:3b: d9:89:d9:45:36:ef:9e:56:54:ba:03:86:83:c5:b0:b5:3c:55: a4:c8:6d:88:d9:2d:f0:e8:40:5c:04:6c:c8:8c:83:82:7c:57: 27:47:aa:d5:b7:71:5d:93:c0:ae:60:48:05:e1:fc:41:0e:35: 88:fb:72:52:93:b5:0b:f8:e6:57:27:09:ce:23:0c:d6:64:04: 9f:ab:14:ad:2b:de:8b:7e:98:53:f3:65:3a:e6:33:eb:05:4d: b5:f5:22:4b:71:d8:6c:be:1e:3c:ce:84:2d:81:f3:10:0f:e7: 40:a2:d2:9d:f7:a4:1e:5d:6a:fc:dc:ad:86:5f:85:2b:14:2a: a3:2c:7d:d0:5c:cb:a1:84:7e:df:ba:8e:0a:e9:57:78:26:17: 92:93:08:cc:80:b5:67:31:2d:b9:89:51:a0:f1:d9:7d:6c:0c: 90:dd:1b:7f:0c:3b:bf:49:e6:9c:bf:2c:de:6b:d1:ee:cf:0b: f5:15:c0:94:81:8a:32:6e:51:b4:82:b3:72:b0:57:27:5e:3d: c1:28:e2:f0:c3:96:c2:f6:92:e4:1a:2c:91:35:26:47:77:c0: 25:8f:3b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMTA0MjEyMjMyWhcNMjUxMTExMjEyMjMyWjAYMRYwFAYD VQQDEw02OTBhNmU5OC04NDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot8cFc7cDTHjpAC0ixZtzjS0QqU/RVaz3l2cF6dapSuEZ8hToEX9xX0/2RYo zXdHEyA60d3p02R/C8szD1VgBerIPFX4pmqqg2eRmNfWRew9TJicQgniSZ6IWIx3 ZGnF5AsNPePLPByttyPR6xnGDxfOilAFvzOSsAa/latQF63rqRs5cs7HwMnb1ZQC FDFtnOJw9paVrt/NeK3ZQP6cUk70Pral+b7JMvL37LcSKuVRPN+NZCO/fzD7OBDM hkRxIh3xu4N9lWSPVP/QE23Z1lpP8op1bguD7ymtLtSJDr9AsjOemlUz0tCOmDf3 DdcVjrejSrGR1JdZvc6GFcxB8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKR9e68 GEG+EoXGMHztT/l3otmwMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB50Zb1ryiUIr1F3mZ7LQ88b+wVG4rCQPcERrUwzg/0otCltTvZidlF Nu+eVlS6A4aDxbC1PFWkyG2I2S3w6EBcBGzIjIOCfFcnR6rVt3Fdk8CuYEgF4fxB DjWI+3JSk7UL+OZXJwnOIwzWZASfqxStK96LfphT82U65jPrBU219SJLcdhsvh48 zoQtgfMQD+dAotKd96QeXWr83K2GX4UrFCqjLH3QXMuhhH7fuo4K6Vd4JheSkwjM gLVnMS25iVGg8dl9bAyQ3Rt/DDu/Seacvyzea9Huzwv1FcCUgYoyblG0grNysFcn Xj3BKOLww5bC9pLkGiyRNSZHd8Aljzs0 -----END CERTIFICATE-----Generated at Wed Nov 5 13:46:51 2025 by rpki-client