$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: p/lkeGElOtZ8fafvUftKkRFGJ4bl/cm01pt7pM9uGzY= Subject key identifier: 8D:3E:EB:96:81:74:D9:8E:C0:F6:C1:AD:F5:9F:32:09:2B:E5:10:E8 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 01ED Signing time: Sat 23 Aug 2025 02:38:20 +0000 Manifest this update: Sat 23 Aug 2025 02:38:19 +0000 Manifest next update: Sat 30 Aug 2025 02:38:19 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: H+Z49GHouVZfc2q4d7rker7eHcEd5hrjO7O7aMoCfm8=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Aug 23 02:38:19 2025 GMT Not After : Aug 30 02:38:19 2025 GMT Subject: CN=68a9299c-a8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:23:e1:23:b7:68:d8:5b:2c:b1:8a:24:e9: e0:c3:8f:29:f4:80:42:09:07:1b:db:cb:b3:1f:81: 65:7e:09:81:66:92:0b:1d:c7:bf:ce:9a:e8:e3:28: a3:43:3f:be:69:af:e3:c3:32:f2:9f:2c:49:e7:60: 11:eb:42:ba:68:50:c7:5b:6e:d2:ab:57:0d:7a:a9: d9:34:19:5a:e9:99:d0:dd:5a:a6:ca:c5:c9:bd:4f: e5:88:8c:f5:d2:24:00:50:1c:04:b1:c4:d6:07:40: f2:90:e5:b9:14:ef:26:12:6c:fa:12:7e:77:c3:91: d1:c8:c3:93:8c:05:90:ff:1f:e1:a1:d3:41:8f:3b: 13:76:1e:a8:e1:5d:41:0c:9c:a8:02:0d:f7:0e:5c: 29:a4:6c:2c:d6:b2:e3:71:27:ca:b6:98:c3:81:28: 07:19:c8:6d:91:0c:aa:14:f7:45:27:65:5b:69:51: 1e:8d:fd:3d:8a:05:7a:9a:e0:86:bc:a2:8f:2b:b3: e8:57:3d:48:3c:64:eb:09:72:78:8a:6f:72:84:41: f1:94:29:0f:31:37:21:9b:29:aa:ab:b5:d7:98:ac: 75:47:c3:d6:38:a5:10:48:1d:f9:e5:d5:bf:aa:31: 61:75:2f:a4:85:75:51:d6:0f:91:0b:13:03:78:d7: 9a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3E:EB:96:81:74:D9:8E:C0:F6:C1:AD:F5:9F:32:09:2B:E5:10:E8 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ff:77:f2:db:f1:1f:77:b6:77:d6:c1:4b:3b:f2:2d:1c:94: c2:9a:3a:12:ed:93:24:92:1e:26:b1:1f:e3:e1:98:06:0c:20: 90:2a:ba:6f:de:ff:d7:06:85:a4:1f:56:dd:ea:1e:aa:bf:93: 89:26:3c:10:68:4e:5b:3b:81:52:d1:6a:2f:70:8c:e0:e1:48: 06:f5:2b:6b:e4:65:fb:45:0f:9e:89:bd:15:c5:d2:06:da:7f: 47:2a:d6:21:4c:6c:fe:95:d9:2a:a1:63:43:92:9a:23:04:af: d6:46:30:0e:57:b1:a5:38:8b:cd:44:c4:e5:86:06:fd:c3:26: 4c:bc:a6:8c:d8:7b:fb:23:88:6a:d0:87:6b:f7:7e:40:e2:1e: a1:cb:a6:49:55:dc:1f:60:1f:22:47:f2:fa:dc:5a:d9:6f:2c: 69:8c:c0:d4:84:88:34:43:68:59:34:6c:65:e5:00:a4:81:2e: 52:02:20:04:b0:7f:86:50:74:96:29:09:5e:c3:c3:80:8a:2d: f7:16:53:34:0f:32:27:2c:43:44:e9:34:6c:c1:e9:b6:69:c5: 52:7e:1c:17:4e:2f:c8:a2:2a:31:bc:21:b0:c8:9f:45:87:3b: d4:8a:79:4d:d2:05:9e:61:8b:85:5c:30:a5:93:97:9e:36:92: 76:6d:5d:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUwODIzMDIzODE5WhcNMjUwODMwMDIzODE5WjAYMRYwFAYD VQQDEw02OGE5Mjk5Yy1hOGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv80j4SO3aNhbLLGKJOngw48p9IBCCQcb28uzH4FlfgmBZpILHce/zpro4yij Qz++aa/jwzLynyxJ52AR60K6aFDHW27Sq1cNeqnZNBla6ZnQ3VqmysXJvU/liIz1 0iQAUBwEscTWB0DykOW5FO8mEmz6En53w5HRyMOTjAWQ/x/hodNBjzsTdh6o4V1B DJyoAg33DlwppGws1rLjcSfKtpjDgSgHGchtkQyqFPdFJ2VbaVEejf09igV6muCG vKKPK7PoVz1IPGTrCXJ4im9yhEHxlCkPMTchmymqq7XXmKx1R8PWOKUQSB355dW/ qjFhdS+khXVR1g+RCxMDeNeaAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0+65aB dNmOwPbBrfWfMgkr5RDoMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs/3fy2/Efd7Z31sFLO/ItHJTCmjoS7ZMkkh4msR/j4ZgGDCCQKrpv 3v/XBoWkH1bd6h6qv5OJJjwQaE5bO4FS0WovcIzg4UgG9Str5GX7RQ+eib0VxdIG 2n9HKtYhTGz+ldkqoWNDkpojBK/WRjAOV7GlOIvNRMTlhgb9wyZMvKaM2Hv7I4hq 0Idr935A4h6hy6ZJVdwfYB8iR/L63FrZbyxpjMDUhIg0Q2hZNGxl5QCkgS5SAiAE sH+GUHSWKQlew8OAii33FlM0DzInLENE6TRswem2acVSfhwXTi/IoioxvCGwyJ9F hzvUinlN0gWeYYuFXDClk5eeNpJ2bV1S -----END CERTIFICATE-----Generated at Sat Aug 23 19:01:20 2025 by rpki-client