$ rpki-client -vvf rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft File: ygBwrFIB1vandapSXVPY4zDjIJY.mft (raw, json) Hash identifier: W3TU842s1ocw0zFmfT6tt2xuzTuA5Vyo94TojdQLtts= Subject key identifier: 07:70:02:28:CB:18:00:06:C7:AC:83:45:BE:9F:10:8A:E3:F7:A2:9B Authority key identifier: CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 Certificate issuer: /CN=A9116907/serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft Manifest number: 01FE Signing time: Sat 23 Aug 2025 02:33:21 +0000 Manifest this update: Sat 23 Aug 2025 02:33:21 +0000 Manifest next update: Sat 30 Aug 2025 02:33:21 +0000 Files and hashes: 1: ygBwrFIB1vandapSXVPY4zDjIJY.crl (hash: RYiNd6OUAx8ytO4JLhsfmctNGmaJZLSoVLmb+Ki3mLc=) 2: 9DE3DEAEAC9E11EFBAC6A027C4F9AE02.roa (hash: TvtT1Oa3KekcpLOO3lB33TtpOxnVn3h062NADWWRlOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116907, serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Validity Not Before: Aug 23 02:33:21 2025 GMT Not After : Aug 30 02:33:21 2025 GMT Subject: CN=68a92871-7c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:c3:b8:e4:4e:b1:c8:80:3c:db:12:c3:6d: 1e:1d:57:c7:d6:27:1c:06:20:df:d0:69:0e:ac:16: f4:54:43:72:b4:dd:c0:9b:b1:f6:26:42:33:52:7e: 71:17:51:78:d9:02:c2:d9:56:9e:1e:df:ef:f8:bf: 28:8c:1b:36:81:4e:5e:e7:20:03:29:95:67:ca:c4: 8c:49:0b:81:39:6b:7b:1e:2c:ec:7b:e8:2d:7b:6c: 48:a3:46:12:2f:ba:0b:40:12:5b:b2:a5:13:06:1f: 8a:4c:48:4e:4e:7a:1e:4f:57:3f:df:a4:82:8a:20: 0b:41:46:1b:9a:41:82:ee:1f:7b:8c:29:a2:0b:80: 3a:f1:2e:69:2c:59:03:b5:58:2d:36:c6:3e:2a:7d: 82:4d:7f:87:90:46:d2:85:81:7c:ab:e8:85:cc:55: 12:7c:07:06:b3:b6:bf:a8:fd:94:e4:d3:8e:1f:1e: 0e:7e:8e:77:de:b3:67:3b:fe:21:9e:d9:80:0c:85: 88:3d:77:55:bf:65:f3:57:9b:30:b1:84:03:ea:e0: c8:7a:21:0e:27:ff:26:9b:1c:c1:29:2a:59:5a:1a: 47:1a:de:d5:9b:47:bb:98:cd:cb:77:83:0b:dd:a5: 91:74:17:d0:cc:a9:8c:5b:5e:f8:5c:a7:5e:06:a7: 66:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:70:02:28:CB:18:00:06:C7:AC:83:45:BE:9F:10:8A:E3:F7:A2:9B X509v3 Authority Key Identifier: keyid:CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b8:f6:80:e7:6f:59:fa:22:2a:66:ed:36:5b:fd:8a:61:a6: 89:53:ac:e0:3c:86:fc:48:73:fd:f1:be:4c:6c:dd:fa:f8:79: f5:ee:42:24:a0:94:1b:b2:79:d5:c4:75:ca:db:33:21:fb:34: c1:87:0c:02:16:39:be:21:b3:e3:7e:1f:ba:e3:18:40:35:2d: 13:c3:5a:ce:77:30:a2:33:ba:da:b0:00:68:8a:5e:30:fa:08: b9:55:8b:22:18:e5:ba:b8:e5:5c:a0:a2:1b:2e:dd:c9:62:76: 44:29:ba:6a:ef:4d:01:ac:a7:ce:eb:0f:a2:fb:47:3c:4d:c4: 3a:a4:6e:7b:06:b7:e0:c0:bc:e4:68:56:1c:48:37:a2:a3:4f: 8d:17:2a:8f:75:20:a9:c3:30:ae:af:64:85:3b:cd:69:fb:59: 78:db:64:31:4a:02:a1:c0:11:18:13:0e:a1:ae:4d:53:85:bb: 39:69:b9:94:4a:18:74:21:3e:83:17:30:91:00:58:75:94:75: 32:77:74:56:23:51:f9:74:c3:f7:a3:ea:cb:44:b7:d6:8c:bb: 5c:e8:bd:bd:e7:f4:c6:ea:b6:c3:2e:8e:e7:b7:e1:55:43:64: d0:f8:82:0b:b8:dd:b7:f2:3d:19:27:f0:88:31:d3:23:b2:42: 4c:f1:28:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5MDcxMTAvBgNVBAUTKENBMDA3MEFDNTIwMUQ2RjZBNzc1QUE1MjVENTNEOEUz MzBFMzIwOTYwHhcNMjUwODIzMDIzMzIxWhcNMjUwODMwMDIzMzIxWjAYMRYwFAYD VQQDEw02OGE5Mjg3MS03YzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJHDuOROsciAPNsSw20eHVfH1iccBiDf0GkOrBb0VENytN3Am7H2JkIzUn5x F1F42QLC2VaeHt/v+L8ojBs2gU5e5yADKZVnysSMSQuBOWt7Hizse+gte2xIo0YS L7oLQBJbsqUTBh+KTEhOTnoeT1c/36SCiiALQUYbmkGC7h97jCmiC4A68S5pLFkD tVgtNsY+Kn2CTX+HkEbShYF8q+iFzFUSfAcGs7a/qP2U5NOOHx4Ofo533rNnO/4h ntmADIWIPXdVv2XzV5swsYQD6uDIeiEOJ/8mmxzBKSpZWhpHGt7Vm0e7mM3Ld4ML 3aWRdBfQzKmMW174XKdeBqdmjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdwAijL GAAGx6yDRb6fEIrj96KbMB8GA1UdIwQYMBaAFMoAcKxSAdb2p3WqUl1T2OMw4yCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjkwNy9CNTZBN0NCMDdB QjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2YW5kYXBTWFZQWTR6RGpJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lnQndyRklCMXZhbmRhcFNYVlBZNHpEaklKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjkwNy9CNTZBN0NCMDdBQjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2 YW5kYXBTWFZQWTR6RGpJSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtuPaA529Z+iIqZu02W/2KYaaJU6zgPIb8SHP98b5MbN36+Hn17kIk oJQbsnnVxHXK2zMh+zTBhwwCFjm+IbPjfh+64xhANS0Tw1rOdzCiM7rasABoil4w +gi5VYsiGOW6uOVcoKIbLt3JYnZEKbpq700BrKfO6w+i+0c8TcQ6pG57BrfgwLzk aFYcSDeio0+NFyqPdSCpwzCur2SFO81p+1l422QxSgKhwBEYEw6hrk1Thbs5abmU Shh0IT6DFzCRAFh1lHUyd3RWI1H5dMP3o+rLRLfWjLtc6L295/TG6rbDLo7nt+FV Q2TQ+IILuN238j0ZJ/CIMdMjskJM8Sg3 -----END CERTIFICATE-----Generated at Sat Aug 23 14:27:15 2025 by rpki-client