$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: 3kVXvjmKd3lKqBqs31yWe9FEUzcGFjirdb01vgeT8wI= Subject key identifier: EA:23:EA:71:ED:93:90:70:F9:6E:8A:4D:D0:BD:C1:F0:C5:85:4D:0B Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 09B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 09AE Signing time: Fri 22 Aug 2025 20:09:48 +0000 Manifest this update: Fri 22 Aug 2025 20:09:48 +0000 Manifest next update: Fri 29 Aug 2025 20:09:48 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: iNe0Kvfil2fWcUHFxMI8hUaYGJivyTqdb176hKZyQ40=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: lg62QlYMqjfdPrlhdfFEapPKxJAEOZfWw6bA0op19ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2485 (0x9b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Aug 22 20:09:48 2025 GMT Not After : Aug 29 20:09:48 2025 GMT Subject: CN=68a8ce8c-afeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ad:d9:70:e8:87:58:8e:85:a2:ec:71:31:88: ce:71:2c:68:09:6e:de:41:04:df:ee:4e:20:e6:db: b2:8d:a6:1d:11:3e:7c:22:cb:dc:70:f6:62:bf:77: 35:b0:01:3d:95:37:f6:24:23:ca:fd:3a:fa:8d:45: 57:09:a2:45:ec:c1:be:8f:f0:70:14:6d:d8:14:83: 45:ac:c0:75:b7:da:07:dc:58:63:b2:9c:f0:f6:fe: b2:ed:0e:8f:3c:d2:3d:63:a8:85:72:0d:3c:6c:a6: 75:1d:d6:a2:5d:58:f4:a0:30:8a:76:e2:00:01:34: 05:ff:cd:62:89:07:47:cb:b2:5a:fd:cf:d2:03:92: 7d:86:c6:e5:4f:45:a4:09:12:bc:ca:0a:7c:3b:1f: fb:34:2e:3d:be:9f:04:d5:56:4c:22:e6:ee:fa:32: f8:76:b2:8f:c2:6b:d7:a4:3d:0c:10:c6:6d:78:c0: 8a:e2:58:b3:66:57:ef:2a:49:ea:9d:8a:cd:65:ea: 8c:76:17:f6:24:a5:b3:a8:bf:6f:35:27:ed:28:9c: 67:8d:aa:28:9b:74:f9:48:f3:80:91:c6:85:25:e3: 65:72:43:98:17:48:c4:f6:7e:4e:51:b0:38:1a:90: 72:2a:94:b1:0c:b8:e5:ea:4d:4e:0d:56:fb:76:14: c4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:23:EA:71:ED:93:90:70:F9:6E:8A:4D:D0:BD:C1:F0:C5:85:4D:0B X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:02:9c:98:8e:72:77:b9:d2:64:42:88:1b:16:89:5b:2f:47: 0c:c2:48:e1:76:b7:9f:c1:51:4c:25:34:aa:a9:5b:13:8b:68: 4c:5e:da:00:35:3a:bd:be:71:e1:1f:f4:85:56:36:5d:fd:84: e0:88:9b:d7:a2:ae:d0:c4:09:d2:29:d6:f7:d9:c1:f2:6a:b6: 30:e6:58:6d:c5:46:1c:b5:d0:2f:cb:f3:aa:f6:a1:00:a1:f5: fe:4a:05:c4:b1:28:ec:10:be:69:b2:bf:72:40:1c:b2:d0:e6: ea:33:0e:80:a4:11:a6:8b:b3:a9:b1:80:48:40:da:1f:27:e3: 2b:72:4e:fd:0c:13:28:4b:63:30:82:f1:52:b5:53:a1:95:4b: 77:14:cc:3b:cc:fd:75:b5:72:e0:6a:7d:de:b3:5d:d9:bf:b8: 1c:25:72:2a:22:31:00:b5:ce:35:c4:a3:43:60:b8:c8:b0:2e: 92:a0:70:56:6e:54:d2:4e:bf:f8:e8:b6:3e:bb:8b:87:e7:1a: 40:39:43:e0:a0:95:eb:12:42:27:5c:59:25:eb:c2:74:33:11: d7:eb:07:51:14:5e:a1:ee:7b:f8:a1:5e:a0:a9:dd:d9:08:81: ca:9e:f0:f5:71:95:88:3d:c6:93:3e:32:bd:12:3e:fb:ec:7a: 61:26:e5:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUwODIyMjAwOTQ4WhcNMjUwODI5MjAwOTQ4WjAYMRYwFAYD VQQDEw02OGE4Y2U4Yy1hZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya3ZcOiHWI6FouxxMYjOcSxoCW7eQQTf7k4g5tuyjaYdET58IsvccPZiv3c1 sAE9lTf2JCPK/Tr6jUVXCaJF7MG+j/BwFG3YFINFrMB1t9oH3Fhjspzw9v6y7Q6P PNI9Y6iFcg08bKZ1HdaiXVj0oDCKduIAATQF/81iiQdHy7Ja/c/SA5J9hsblT0Wk CRK8ygp8Ox/7NC49vp8E1VZMIubu+jL4drKPwmvXpD0MEMZteMCK4lizZlfvKknq nYrNZeqMdhf2JKWzqL9vNSftKJxnjaoom3T5SPOAkcaFJeNlckOYF0jE9n5OUbA4 GpByKpSxDLjl6k1ODVb7dhTEgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoj6nHt k5Bw+W6KTdC9wfDFhU0LMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeApyYjnJ3udJkQogbFolbL0cMwkjhdrefwVFMJTSqqVsTi2hMXtoA NTq9vnHhH/SFVjZd/YTgiJvXoq7QxAnSKdb32cHyarYw5lhtxUYctdAvy/Oq9qEA ofX+SgXEsSjsEL5psr9yQByy0ObqMw6ApBGmi7OpsYBIQNofJ+Mrck79DBMoS2Mw gvFStVOhlUt3FMw7zP11tXLgan3es13Zv7gcJXIqIjEAtc41xKNDYLjIsC6SoHBW blTSTr/46LY+u4uH5xpAOUPgoJXrEkInXFkl68J0MxHX6wdRFF6h7nv4oV6gqd3Z CIHKnvD1cZWIPcaTPjK9Ej777HphJuXy -----END CERTIFICATE-----Generated at Sun Aug 24 07:16:09 2025 by rpki-client