$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: SSWOmH4kR1fAucREtMmVl19ouH1qk4Dw0Ri+3zAMcCM= Subject key identifier: CF:70:43:24:02:8A:EA:25:22:BD:F8:BF:B2:C3:58:A2:5D:F6:61:7C Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0FA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0F8F Signing time: Fri 22 Aug 2025 17:40:26 +0000 Manifest this update: Fri 22 Aug 2025 17:40:25 +0000 Manifest next update: Fri 29 Aug 2025 17:40:25 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: V5prL71qLjAPqwjpYoQoZppb2PYQQP2/nAlcSHLIn5Q=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4004 (0xfa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Aug 22 17:40:25 2025 GMT Not After : Aug 29 17:40:25 2025 GMT Subject: CN=68a8ab8a-5016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:dc:d2:6f:3c:f2:98:e1:84:ed:40:b9:82: 2a:cf:f6:87:dd:ad:8e:45:8f:52:8c:d5:a2:c7:ec: a1:4a:f2:f7:b9:8e:1b:76:7e:a2:92:80:4a:64:2f: e0:ff:d7:a9:80:d8:1d:27:62:31:30:df:6c:06:bc: c3:1e:17:e7:7e:fd:b6:df:9d:6a:49:47:3f:70:34: 3e:1a:11:aa:93:9d:22:db:b2:d9:c4:e7:9d:8a:f2: 22:1f:a1:12:af:2e:6b:41:e2:65:00:f3:c7:73:36: f0:df:fd:fe:54:1e:fd:f1:9e:f2:9c:af:e6:2b:26: 9d:fc:78:e7:82:96:37:cf:cc:62:33:a0:ee:10:a0: 33:77:b6:c2:42:4b:58:42:ee:6b:5f:6b:8d:63:4e: 71:48:17:89:30:d6:e9:bd:ab:61:a8:26:9d:b2:fe: ba:81:bf:74:b1:00:b8:91:40:87:0f:2f:4c:be:89: c8:47:94:b9:cf:f8:22:7a:2d:62:e3:be:f1:10:58: 0a:11:9d:5f:08:4b:31:ef:ce:29:ab:c2:46:87:3a: c3:c7:14:e0:b5:d4:75:31:20:4b:10:23:a1:95:01: c7:14:1e:d1:0e:bb:c8:77:36:df:30:fb:95:a1:41: 1f:00:94:d4:86:84:42:ce:01:ec:f3:86:68:64:ab: 3f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:70:43:24:02:8A:EA:25:22:BD:F8:BF:B2:C3:58:A2:5D:F6:61:7C X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:86:e4:6a:dd:79:99:93:aa:32:9d:1f:37:52:5d:b2:9c:12: 70:20:67:fd:14:97:d3:bb:b1:98:a2:d1:23:81:b7:36:1c:05: 6c:36:db:ea:08:7d:2c:ce:ec:5f:35:3a:21:e1:37:a0:99:29: 0c:8d:3f:4a:18:d9:d0:c4:e3:63:e9:95:93:15:f5:70:df:82: 6e:b0:37:16:fb:26:59:00:33:59:2d:e5:0d:e0:60:cb:93:33: 63:c9:a1:0d:a5:d5:3b:62:ff:ec:99:c5:61:12:11:da:d5:28: e3:97:eb:65:cc:51:c7:c0:ed:2d:ae:65:a8:1c:a2:d5:e5:7a: 6b:b4:4b:35:56:e8:a1:73:6d:f7:3b:ab:ff:23:d9:62:07:8d: e5:35:08:06:5d:72:a8:79:21:65:ef:54:18:1d:09:64:f7:b7: 77:e8:c5:06:8e:ea:60:85:ee:1b:5b:21:57:1d:f2:0b:22:d2: f8:3f:d0:d6:f3:2a:d9:b7:cb:c5:32:2c:34:ce:ed:70:27:de: a8:8d:c6:a3:82:dd:e8:fb:c2:0f:52:17:ae:82:e1:ff:fe:65: 10:c0:89:2d:91:3d:2c:6e:d1:0a:c3:52:ab:fb:db:5c:74:2d: f1:0b:78:d9:57:51:0f:47:6e:1c:69:31:db:4f:0e:a0:4c:ab: dd:97:04:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUwODIyMTc0MDI1WhcNMjUwODI5MTc0MDI1WjAYMRYwFAYD VQQDEw02OGE4YWI4YS01MDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3zc0m888pjhhO1AuYIqz/aH3a2ORY9SjNWix+yhSvL3uY4bdn6ikoBKZC/g /9epgNgdJ2IxMN9sBrzDHhfnfv22351qSUc/cDQ+GhGqk50i27LZxOedivIiH6ES ry5rQeJlAPPHczbw3/3+VB798Z7ynK/mKyad/HjngpY3z8xiM6DuEKAzd7bCQktY Qu5rX2uNY05xSBeJMNbpvathqCadsv66gb90sQC4kUCHDy9MvonIR5S5z/giei1i 477xEFgKEZ1fCEsx784pq8JGhzrDxxTgtdR1MSBLECOhlQHHFB7RDrvIdzbfMPuV oUEfAJTUhoRCzgHs84ZoZKs/OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9wQyQC iuolIr34v7LDWKJd9mF8MB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdhuRq3XmZk6oynR83Ul2ynBJwIGf9FJfTu7GYotEjgbc2HAVsNtvq CH0szuxfNToh4TegmSkMjT9KGNnQxONj6ZWTFfVw34JusDcW+yZZADNZLeUN4GDL kzNjyaENpdU7Yv/smcVhEhHa1Sjjl+tlzFHHwO0trmWoHKLV5XprtEs1Vuihc233 O6v/I9liB43lNQgGXXKoeSFl71QYHQlk97d36MUGjupghe4bWyFXHfILItL4P9DW 8yrZt8vFMiw0zu1wJ96ojcajgt3o+8IPUheuguH//mUQwIktkT0sbtEKw1Kr+9tc dC3xC3jZV1EPR24caTHbTw6gTKvdlwTF -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:54 2025 by rpki-client