$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: JIAYo5m4Hp/+1evX/mEBflHMWYlQesTgi9Bf+oWJoEY= Subject key identifier: 53:15:FC:AB:45:CA:DA:AC:5A:BA:B8:31:B8:F7:61:02:DA:43:84:8B Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0C2C Signing time: Fri 22 Aug 2025 18:46:46 +0000 Manifest this update: Fri 22 Aug 2025 18:46:45 +0000 Manifest next update: Fri 29 Aug 2025 18:46:45 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: TfRmylD9gHrKmZUENHzWKtWd/zzfH4QUcjVBXnSdJPM=) 2: 9D9E8D0C11DC11EABC4FB55AC4F9AE02.roa (hash: E2q/ZEHSPXl1Ew87PC9tVYqM/dotHBquWrnE6mAYEbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Aug 22 18:46:45 2025 GMT Not After : Aug 29 18:46:45 2025 GMT Subject: CN=68a8bb16-a62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c2:b6:aa:4a:f5:e8:dc:22:9a:8a:f8:bc:c8: e8:12:52:ba:83:de:59:8d:45:4f:7e:e8:35:3f:64: f2:49:e4:cb:a5:33:46:da:57:29:68:6e:3f:ae:a2: d8:a5:4f:fd:da:f2:ac:cf:09:60:bc:6e:63:dd:44: 13:f8:d0:16:c6:16:95:70:9b:0e:33:30:85:3a:8e: 7f:0d:7d:e1:fa:2c:8e:2c:ad:c1:19:16:9c:9e:b6: 48:a8:df:de:7e:81:f2:2d:89:bc:48:d0:ef:b6:d9: 7a:14:4f:ce:95:2e:a5:aa:6a:25:d5:b3:97:f9:b0: 29:1a:ad:68:d7:78:35:1b:06:9d:b7:a9:3a:39:39: e7:c9:56:cc:df:bd:58:83:a1:6a:0b:50:3a:47:de: 02:30:bd:9c:b1:92:8b:b9:dc:0b:01:f7:db:13:4b: f1:b7:39:d3:3a:49:86:79:c0:50:4e:96:11:71:c5: c3:a4:21:bf:4b:32:5f:da:f8:be:28:e1:c0:e5:4a: 8b:c7:1a:3a:37:b1:5a:57:de:71:26:c9:d4:5f:87: 72:cc:02:d9:d2:b5:6d:4d:0d:6f:0c:a3:f3:bc:09: 46:e8:48:4f:41:42:86:75:b5:ce:d8:23:46:1c:9d: bf:96:28:cc:97:77:51:aa:c2:29:50:01:b4:0e:05: f9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:15:FC:AB:45:CA:DA:AC:5A:BA:B8:31:B8:F7:61:02:DA:43:84:8B X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:00:95:35:59:dd:35:1e:bb:e8:25:7f:3a:98:84:a2:0d:64: d9:89:fd:3f:db:64:55:96:8f:4c:97:c8:a1:72:74:9b:a7:d0: fa:b2:31:dc:6a:d7:42:8e:8b:13:9b:dc:0c:72:03:8c:10:16: 3e:b9:69:1b:9e:2f:a9:28:96:1b:58:12:17:30:73:fa:1f:8d: 34:ed:9e:7b:5a:38:6d:bb:3b:3f:08:1c:d0:72:8b:0b:0c:c5: 67:db:f0:d3:18:02:02:ef:05:d3:85:fa:ea:c9:2d:e9:ef:26: 0f:bc:eb:dc:61:08:fb:27:e0:c5:bd:75:f4:b6:81:51:89:6a: 06:11:c0:f0:14:50:39:94:6d:15:b6:33:12:34:3f:ff:f0:a3: a4:1b:db:26:2f:bd:c6:07:a3:4b:1c:16:25:ec:44:71:b7:b8: d8:c3:78:8c:31:50:e4:18:ac:2c:76:29:38:6e:14:4c:27:74: d8:04:0e:61:16:91:04:70:9e:50:75:6c:62:08:14:61:c8:b8: e9:1d:12:6b:7c:8d:01:a8:b5:eb:ba:01:57:a9:19:f7:90:75: 3a:22:dc:ad:7d:49:ba:05:13:fb:fe:87:c1:41:83:9c:86:a5: 6c:67:f1:f4:9a:04:5b:e9:b0:63:9b:5d:8b:27:2a:2f:49:d5: 05:32:23:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUwODIyMTg0NjQ1WhcNMjUwODI5MTg0NjQ1WjAYMRYwFAYD VQQDEw02OGE4YmIxNi1hNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sK2qkr16Nwimor4vMjoElK6g95ZjUVPfug1P2TySeTLpTNG2lcpaG4/rqLY pU/92vKszwlgvG5j3UQT+NAWxhaVcJsOMzCFOo5/DX3h+iyOLK3BGRacnrZIqN/e foHyLYm8SNDvttl6FE/OlS6lqmol1bOX+bApGq1o13g1Gwadt6k6OTnnyVbM371Y g6FqC1A6R94CML2csZKLudwLAffbE0vxtznTOkmGecBQTpYRccXDpCG/SzJf2vi+ KOHA5UqLxxo6N7FaV95xJsnUX4dyzALZ0rVtTQ1vDKPzvAlG6EhPQUKGdbXO2CNG HJ2/lijMl3dRqsIpUAG0DgX5kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMV/KtF ytqsWrq4Mbj3YQLaQ4SLMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/AJU1Wd01HrvoJX86mISiDWTZif0/22RVlo9Ml8ihcnSbp9D6sjHc atdCjosTm9wMcgOMEBY+uWkbni+pKJYbWBIXMHP6H4007Z57Wjhtuzs/CBzQcosL DMVn2/DTGAIC7wXThfrqyS3p7yYPvOvcYQj7J+DFvXX0toFRiWoGEcDwFFA5lG0V tjMSND//8KOkG9smL73GB6NLHBYl7ERxt7jYw3iMMVDkGKwsdik4bhRMJ3TYBA5h FpEEcJ5QdWxiCBRhyLjpHRJrfI0BqLXrugFXqRn3kHU6ItytfUm6BRP7/ofBQYOc hqVsZ/H0mgRb6bBjm12LJyovSdUFMiPy -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:17 2025 by rpki-client