$ rpki-client -vvf rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft File: YeQBev9HdnE8_cggXML7IXhGK6E.mft (raw, json) Hash identifier: aYCgNOxMxWomgnv7/pno0NHCiVwrs7aPpZCyFCBz8XQ= Subject key identifier: 40:CD:98:B9:47:FC:D2:EC:60:48:83:0D:C0:E5:55:DE:B6:66:23:14 Authority key identifier: 61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 Certificate issuer: /CN=A919A824/serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft Manifest number: 0A7E Signing time: Tue 04 Nov 2025 19:42:36 +0000 Manifest this update: Tue 04 Nov 2025 19:42:36 +0000 Manifest next update: Tue 11 Nov 2025 19:42:36 +0000 Files and hashes: 1: YeQBev9HdnE8_cggXML7IXhGK6E.crl (hash: SnJJ8G9kNSZxWeVYM4dsh/nusFWuLwyM0BJNOym4GdU=) 2: 1B2FD0247B3511F0AB5E9728C4F9AE02.roa (hash: BSU1YtaPy+k/TzpvEr7vkS6sqBC2QgKnaMQMqvgHJ20=) 3: E3DD6362787A11ED89732760C4F9AE02.roa (hash: VMcYRd+8siR3JswMEyznU2Fdgu69nUJbPEZeRjRvvQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A824, serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Validity Not Before: Nov 4 19:42:36 2025 GMT Not After : Nov 11 19:42:36 2025 GMT Subject: CN=690a572c-b3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fd:d5:37:02:f1:85:36:af:3e:a9:55:e5:6f: be:8f:9c:9f:38:47:ef:31:41:a6:21:1c:ff:9b:fc: 69:b1:d5:c4:11:6c:41:a7:f2:7e:a0:71:09:a4:c9: 30:ab:ff:4e:01:03:ca:10:e5:9b:b2:17:c8:10:7f: 28:6c:ee:bc:d2:a9:8a:c3:be:05:94:d0:b1:1e:0e: 79:a0:c2:91:88:95:e2:a4:bf:2d:0f:7f:58:a6:91: 1b:c7:0e:c6:29:10:0d:27:8d:5c:eb:96:fb:3a:5b: 94:0b:84:54:7b:9e:98:40:47:0b:7a:39:b1:5d:e3: 9f:2c:1c:ad:92:ce:4f:13:10:7f:9e:27:21:7e:28: 32:41:64:9f:1a:31:5c:a1:08:2b:b1:37:fe:06:55: e0:c4:97:fb:81:12:4e:81:38:47:a1:28:75:d0:0a: e8:6d:92:15:7d:8e:fd:cf:69:83:c2:49:39:60:40: 1a:14:1c:47:eb:73:4b:e0:a6:af:ca:94:e2:ee:71: 94:dd:b3:37:95:ba:b4:90:59:ab:f8:41:81:6e:b7: f3:1a:4a:80:91:4f:85:1f:a3:16:30:b5:c4:a1:e1: 84:70:e7:59:bf:cb:d3:5a:d6:c1:53:f4:f9:9c:06: 03:3d:b9:ed:fb:ff:62:24:2c:a1:2e:4a:98:69:c1: 53:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:CD:98:B9:47:FC:D2:EC:60:48:83:0D:C0:E5:55:DE:B6:66:23:14 X509v3 Authority Key Identifier: keyid:61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:60:42:03:ee:57:e1:ff:10:a7:d3:43:20:e0:a2:de:26:01: ae:b3:1a:75:8b:64:99:b7:e9:f6:63:ee:2f:60:88:03:28:9f: 20:cb:e9:06:82:ae:93:7c:11:2b:32:16:ba:52:ec:df:0d:96: 85:0e:7f:9c:7d:2a:a2:7b:4e:c2:61:48:4a:f0:c7:e8:61:b3: d7:ee:3f:6c:81:e1:17:80:b1:18:76:12:a2:6c:e7:92:e0:af: 08:90:17:00:5d:50:11:d2:e4:a6:58:b0:66:5d:ef:63:76:20: e2:18:d2:a5:bf:0d:2d:d8:d4:8a:e1:d6:5c:d8:b8:25:83:4d: 92:5c:9f:09:0c:5a:e8:f2:1f:93:a8:86:0f:7e:02:ca:e2:ea: 0d:e4:f4:1d:7b:7f:f6:fb:21:c9:4f:17:10:7c:13:45:9f:4c: 09:b6:12:e4:9f:59:2e:a2:95:97:09:30:27:ca:c1:68:79:27: 7d:6e:86:8a:56:75:04:5c:9a:ee:72:7d:35:31:bb:5a:b1:a1: 19:b6:36:a5:6f:15:a4:cf:f6:b5:49:10:60:20:75:c3:8b:12: 8e:d7:55:48:fa:27:ae:45:4f:7e:d2:c2:70:94:ff:a1:f2:b8: a3:29:a8:64:03:93:e1:95:a4:6b:8d:64:66:36:98:1e:1f:ff: b9:d2:f6:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4MjQxMTAvBgNVBAUTKDYxRTQwMTdBRkY0Nzc2NzEzQ0ZEQzgyMDVDQzJGQjIx Nzg0NjJCQTEwHhcNMjUxMTA0MTk0MjM2WhcNMjUxMTExMTk0MjM2WjAYMRYwFAYD VQQDEw02OTBhNTcyYy1iM2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0P3VNwLxhTavPqlV5W++j5yfOEfvMUGmIRz/m/xpsdXEEWxBp/J+oHEJpMkw q/9OAQPKEOWbshfIEH8obO680qmKw74FlNCxHg55oMKRiJXipL8tD39YppEbxw7G KRANJ41c65b7OluUC4RUe56YQEcLejmxXeOfLBytks5PExB/nichfigyQWSfGjFc oQgrsTf+BlXgxJf7gRJOgThHoSh10ArobZIVfY79z2mDwkk5YEAaFBxH63NL4Kav ypTi7nGU3bM3lbq0kFmr+EGBbrfzGkqAkU+FH6MWMLXEoeGEcOdZv8vTWtbBU/T5 nAYDPbnt+/9iJCyhLkqYacFTDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDNmLlH /NLsYEiDDcDlVd62ZiMUMB8GA1UdIwQYMBaAFGHkAXr/R3ZxPP3IIFzC+yF4Riuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTgyNC84QkZGM0JCNDZF N0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRuRThfY2dnWE1MN0lYaEdL NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llUUJldjlIZG5FOF9jZ2dYTUw3SVhoR0s2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTgyNC84QkZGM0JCNDZFN0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRu RThfY2dnWE1MN0lYaEdLNkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYYEID7lfh/xCn00Mg4KLeJgGusxp1i2SZt+n2Y+4vYIgDKJ8gy+kG gq6TfBErMha6UuzfDZaFDn+cfSqie07CYUhK8MfoYbPX7j9sgeEXgLEYdhKibOeS 4K8IkBcAXVAR0uSmWLBmXe9jdiDiGNKlvw0t2NSK4dZc2Lglg02SXJ8JDFro8h+T qIYPfgLK4uoN5PQde3/2+yHJTxcQfBNFn0wJthLkn1kuopWXCTAnysFoeSd9boaK VnUEXJrucn01MbtasaEZtjalbxWkz/a1SRBgIHXDixKO11VI+ieuRU9+0sJwlP+h 8rijKahkA5PhlaRrjWRmNpgeH/+50vat -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:33 2025 by rpki-client