$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: r2VTgMlleGMA99UcG3AmXfqbTDMc5IqIj2Td2MyLkD4= Subject key identifier: ED:52:00:D4:36:E0:6F:CA:4D:06:41:17:34:2C:4D:CF:79:C5:74:C2 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: C4 Signing time: Sat 23 Aug 2025 06:01:35 +0000 Manifest this update: Sat 23 Aug 2025 06:01:34 +0000 Manifest next update: Sat 30 Aug 2025 06:01:34 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: xeIG7KFLIZ4J6Qn28qOZeZ0WA16kJbQROTph9t/teKI=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: cRgznzypgNObdJ5+nUBdFPZbJ/XSHjedbIfP0KuyG4Y=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: Po3+3jwZqbergErT/CE07CzYXSwWNnVs3V/GDhF2/Rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Aug 23 06:01:34 2025 GMT Not After : Aug 30 06:01:34 2025 GMT Subject: CN=68a9593e-7032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:07:17:47:25:fa:b2:51:05:c7:bd:85:f2: cd:be:3b:be:64:01:3f:40:df:ed:fb:ef:b4:34:e5: b0:cf:1e:91:57:9d:c8:bb:09:50:67:75:63:67:37: 0a:0e:58:c5:9e:35:a6:97:28:61:69:d3:bb:35:96: f9:e4:d2:89:a5:09:1d:cf:a9:87:76:5b:92:1b:ce: 86:d7:94:7e:f3:3c:4e:d1:45:56:6a:33:e3:1b:56: f7:50:6b:4c:89:61:d3:27:e2:b2:cc:91:bb:aa:ab: 30:8d:10:ed:53:85:ba:e4:2b:44:d0:8e:c9:71:d4: 18:83:08:94:b4:c3:84:71:85:41:f5:25:59:5c:f3: cc:08:bc:b8:52:0b:f7:b0:3c:43:b7:fa:1b:27:6d: 57:75:39:b9:68:71:32:fb:87:cc:01:f0:91:a2:59: bf:e6:5c:a0:bd:d1:1d:a3:6d:9b:9d:96:b0:a1:61: 2c:1c:3c:73:69:28:5b:a1:19:bb:73:76:05:76:51: 71:1c:f3:32:4e:b3:e6:51:91:99:d8:1f:df:3b:6e: 21:f1:67:73:91:a1:41:93:6b:10:18:7c:c6:75:1a: fc:98:30:da:8c:a2:38:cf:05:70:97:88:40:86:58: 04:db:f4:ab:02:73:b7:24:e7:d3:ce:46:f2:97:6a: 18:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:52:00:D4:36:E0:6F:CA:4D:06:41:17:34:2C:4D:CF:79:C5:74:C2 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:d8:e1:95:18:93:6e:72:ef:1d:ae:7c:e8:38:46:ee:aa:f2: 2d:de:6e:86:72:16:5c:4e:5f:5c:e4:96:f2:e8:bc:73:d6:7c: dd:a2:0f:da:80:54:bb:11:fa:b1:fc:40:95:4c:d5:bf:31:07: d6:f0:8f:a8:d4:45:31:66:79:5a:d6:3f:09:41:6c:64:b6:2a: 6e:d4:b3:79:a1:4a:08:a7:38:df:9a:51:35:3c:4a:5f:cd:c6: 83:d2:58:82:75:5f:f0:55:de:37:1b:48:5b:36:40:ec:c1:9f: fa:74:c3:ca:51:d5:b4:8b:71:9a:7d:ce:19:ae:e3:c6:63:df: cb:0a:03:65:77:3f:8a:c0:33:71:c5:97:a2:9b:41:10:88:f6: 80:9c:19:79:d4:43:cf:44:d0:ce:62:34:74:31:a5:1f:de:91: b9:92:17:5c:7a:3b:f4:d2:3f:6c:6a:b9:2c:90:2c:69:6d:33: 80:3c:43:e5:14:de:f8:97:a1:fb:49:cf:ac:3f:2d:49:19:fb: 79:18:90:39:e6:54:e5:1a:4f:95:de:bc:8c:ea:76:26:15:85: 33:56:20:6f:f2:5e:99:83:61:e9:6a:09:e6:2a:74:a8:bf:c0: d2:2a:86:a1:8b:ba:98:5c:08:d6:44:dd:e5:6e:37:59:b2:84: cd:3f:de:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwODIzMDYwMTM0WhcNMjUwODMwMDYwMTM0WjAYMRYwFAYD VQQDEw02OGE5NTkzZS03MDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ8HF0cl+rJRBce9hfLNvju+ZAE/QN/t+++0NOWwzx6RV53IuwlQZ3VjZzcK DljFnjWmlyhhadO7NZb55NKJpQkdz6mHdluSG86G15R+8zxO0UVWajPjG1b3UGtM iWHTJ+KyzJG7qqswjRDtU4W65CtE0I7JcdQYgwiUtMOEcYVB9SVZXPPMCLy4Ugv3 sDxDt/obJ21XdTm5aHEy+4fMAfCRolm/5lygvdEdo22bnZawoWEsHDxzaShboRm7 c3YFdlFxHPMyTrPmUZGZ2B/fO24h8WdzkaFBk2sQGHzGdRr8mDDajKI4zwVwl4hA hlgE2/SrAnO3JOfTzkbyl2oYpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1SANQ2 4G/KTQZBFzQsTc95xXTCMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx2OGVGJNucu8drnzoOEbuqvIt3m6GchZcTl9c5Jby6Lxz1nzdog/a gFS7Efqx/ECVTNW/MQfW8I+o1EUxZnla1j8JQWxktipu1LN5oUoIpzjfmlE1PEpf zcaD0liCdV/wVd43G0hbNkDswZ/6dMPKUdW0i3Gafc4ZruPGY9/LCgNldz+KwDNx xZeim0EQiPaAnBl51EPPRNDOYjR0MaUf3pG5khdcejv00j9sarkskCxpbTOAPEPl FN74l6H7Sc+sPy1JGft5GJA55lTlGk+V3ryM6nYmFYUzViBv8l6Zg2HpagnmKnSo v8DSKoahi7qYXAjWRN3lbjdZsoTNP94a -----END CERTIFICATE-----Generated at Sat Aug 23 09:18:29 2025 by rpki-client