$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: dzcYOpHLaQTH9WgVrZzF6fPbxz/NTD3Fi6V4geNHuiU= Subject key identifier: 45:0D:0C:51:08:44:62:29:0E:02:4C:29:4E:FC:96:7A:1E:2E:6D:C9 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10EE Signing time: Fri 22 Aug 2025 17:24:58 +0000 Manifest this update: Fri 22 Aug 2025 17:24:58 +0000 Manifest next update: Fri 29 Aug 2025 17:24:58 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: J0avdK9KSrWJiq2ILD11rVqnw1Skhzc92CLkEoS9qe8=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4351 (0x10ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Aug 22 17:24:58 2025 GMT Not After : Aug 29 17:24:58 2025 GMT Subject: CN=68a8a7ea-04f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e7:70:f3:af:ab:d2:0e:b2:80:15:d3:9d:23: f6:3f:3b:e0:a5:73:00:74:e7:73:c7:89:14:8d:b0: f0:88:23:a1:f0:b9:5e:79:5a:f1:bf:15:01:6b:d7: 93:70:cb:8c:08:d9:ac:19:ee:c9:e8:15:1b:a5:79: 80:6d:34:08:6a:ec:64:c9:4e:0d:01:d5:43:9e:48: a8:34:ce:f1:3a:8d:10:2b:d4:6f:37:60:f2:16:06: 79:16:80:a0:35:bd:49:12:6e:12:fd:89:2c:f1:6b: 34:86:1a:7c:b6:27:d2:2e:40:2a:cd:1d:e4:15:17: b9:3d:79:c4:50:9e:25:95:7c:1d:e1:6e:a8:5d:86: 76:dc:62:6a:e6:23:de:2a:02:f0:13:58:ef:37:b1: bc:1c:0a:14:6f:af:30:a5:c7:52:a5:d4:e6:5d:91: 2d:b5:43:5e:16:3b:23:32:8e:cf:ae:10:af:74:62: e0:55:4c:e9:af:66:67:b9:83:9e:7c:07:21:14:45: a1:3f:53:7f:f5:4d:93:83:a7:b3:25:a9:0d:ed:c9: a9:e2:94:f7:60:60:ff:e8:76:2f:a6:e6:63:6d:ff: fe:f9:b0:b5:ae:27:bb:03:3d:f3:10:82:af:a8:e7: a8:42:19:c3:81:d0:83:c0:b2:49:1a:71:ae:ea:d8: 2c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0D:0C:51:08:44:62:29:0E:02:4C:29:4E:FC:96:7A:1E:2E:6D:C9 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:35:c0:18:aa:0c:b9:f1:e8:9e:0a:de:87:48:8e:81:0b:d7: 4a:3b:08:14:e6:89:c6:a2:c6:fb:73:e1:47:af:6c:ec:21:fc: 51:6a:fe:08:3a:62:a9:41:b7:15:3d:4c:5d:ff:06:56:8c:b3: 91:d8:0f:97:9a:da:38:fc:98:5b:7d:1f:fb:f2:70:27:fe:67: ec:4a:3b:93:e3:ec:a2:50:2e:7a:46:64:5d:3c:b3:5a:11:32: aa:ba:64:b4:df:26:89:a8:49:11:96:c1:67:e4:2d:fa:8f:12: 40:82:26:9a:9d:91:ed:0d:5f:fd:d7:e7:99:ba:d3:0f:71:d6: f6:6b:6a:11:ab:c9:4b:70:b8:fe:88:c1:7f:a9:0b:d3:62:33: d4:04:ca:b1:cf:5e:fc:06:30:b2:a2:5e:f6:d7:2f:0c:85:5c: a1:a7:46:11:3e:a6:63:c8:81:ca:1c:34:c0:98:c8:98:b0:d2: 2c:11:29:bd:00:92:bd:19:79:44:33:3c:55:f4:32:39:86:ba: 46:59:51:14:8d:e7:16:3a:6f:e4:4a:82:4f:a2:14:bb:67:90: 56:7e:d0:ed:e3:66:bf:44:8a:07:7c:d3:2a:1f:a1:3c:d2:a3: 49:c4:e8:32:41:ca:60:f6:77:c0:57:09:c1:48:a9:eb:aa:cb: 18:7e:94:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwODIyMTcyNDU4WhcNMjUwODI5MTcyNDU4WjAYMRYwFAYD VQQDEw02OGE4YTdlYS0wNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+dw86+r0g6ygBXTnSP2PzvgpXMAdOdzx4kUjbDwiCOh8LleeVrxvxUBa9eT cMuMCNmsGe7J6BUbpXmAbTQIauxkyU4NAdVDnkioNM7xOo0QK9RvN2DyFgZ5FoCg Nb1JEm4S/Yks8Ws0hhp8tifSLkAqzR3kFRe5PXnEUJ4llXwd4W6oXYZ23GJq5iPe KgLwE1jvN7G8HAoUb68wpcdSpdTmXZEttUNeFjsjMo7PrhCvdGLgVUzpr2ZnuYOe fAchFEWhP1N/9U2Tg6ezJakN7cmp4pT3YGD/6HYvpuZjbf/++bC1rie7Az3zEIKv qOeoQhnDgdCDwLJJGnGu6tgsewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUNDFEI RGIpDgJMKU78lnoeLm3JMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8NcAYqgy58eieCt6HSI6BC9dKOwgU5onGosb7c+FHr2zsIfxRav4I OmKpQbcVPUxd/wZWjLOR2A+Xmto4/JhbfR/78nAn/mfsSjuT4+yiUC56RmRdPLNa ETKqumS03yaJqEkRlsFn5C36jxJAgiaanZHtDV/91+eZutMPcdb2a2oRq8lLcLj+ iMF/qQvTYjPUBMqxz178BjCyol721y8MhVyhp0YRPqZjyIHKHDTAmMiYsNIsESm9 AJK9GXlEMzxV9DI5hrpGWVEUjecWOm/kSoJPohS7Z5BWftDt42a/RIoHfNMqH6E8 0qNJxOgyQcpg9nfAVwnBSKnrqssYfpSb -----END CERTIFICATE-----Generated at Sat Aug 23 19:14:22 2025 by rpki-client