$ rpki-client -vvf rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft File: Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft (raw, json) Hash identifier: sPoEhdNWiLeAxGjHzYqZY5Iji3HnfIvrG02M3sKR1z8= Subject key identifier: 0C:66:F1:F2:A0:9E:85:0E:F1:F4:E5:8A:A3:B1:C2:6A:72:1C:A9:9F Authority key identifier: 63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 Certificate issuer: /CN=A913EE46/serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft Manifest number: 0292 Signing time: Sat 23 Aug 2025 01:51:07 +0000 Manifest this update: Sat 23 Aug 2025 01:51:06 +0000 Manifest next update: Sat 30 Aug 2025 01:51:06 +0000 Files and hashes: 1: Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl (hash: EpdtcRL3tdQB4LC0FnHTl28MXB8F7EEdJvINYxDYNCk=) 2: 9DFFBC7C12F011EDA0DB0B12C4F9AE02.roa (hash: I/KyU3geIWwBo8ZaiWc/F+HF/TbeVrVlUgdVYuSp+mY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EE46, serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Validity Not Before: Aug 23 01:51:06 2025 GMT Not After : Aug 30 01:51:06 2025 GMT Subject: CN=68a91e8b-fa7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:75:d1:ea:8e:ef:a0:8a:f8:25:12:bb:35:40: 88:c8:ff:aa:39:0f:fd:5b:1e:59:7b:99:95:90:f0: 0a:d4:de:56:dd:51:b3:0d:8b:1e:d6:0c:d7:01:be: 2c:ae:cf:52:09:c2:e7:d6:98:b0:73:6a:99:f3:31: 84:7e:fd:15:21:0f:d6:f9:ad:21:04:67:10:1a:a0: 4c:fd:b4:11:7a:51:fc:76:82:5b:fb:5a:94:9b:49: 48:ad:14:f8:0e:c3:34:3c:f6:65:c5:61:8d:37:9e: c7:a5:25:9b:b0:4c:a4:85:13:49:bd:c7:52:b9:66: c8:69:c4:5b:87:08:24:f3:1e:3b:11:85:5f:df:b4: 92:eb:bf:23:5d:ed:6e:d3:06:12:9d:87:f6:2c:99: f5:87:5e:89:28:bb:ad:f5:fe:23:68:be:cc:6d:89: 3f:a6:5d:48:e3:90:0c:0a:d4:6b:cc:e4:7b:27:c7: 1f:f9:da:57:7b:3a:0e:bf:43:b8:65:42:ea:b9:bf: ff:b3:d5:27:7a:f2:d7:96:e7:58:6d:84:bb:0c:23: 63:47:fd:d4:83:3c:61:2f:c8:27:1f:bf:15:ff:36: f1:8b:9d:64:d1:60:1a:e4:ba:2f:7e:89:a5:ed:1e: 67:74:7b:86:aa:d0:91:a2:dc:f2:bf:29:26:a2:35: 1e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:66:F1:F2:A0:9E:85:0E:F1:F4:E5:8A:A3:B1:C2:6A:72:1C:A9:9F X509v3 Authority Key Identifier: keyid:63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:74:f3:0e:57:93:a1:72:b2:2b:84:bd:7f:69:67:35:5b:89: 6d:5f:53:d1:43:86:4b:28:02:5d:b6:6e:f7:63:30:16:de:1b: 2a:67:ab:f4:88:6c:d8:72:75:9e:51:22:c5:8f:97:fe:81:38: 90:de:13:f2:54:38:c3:4f:6e:c6:7b:d7:2b:ee:9e:a0:d2:9d: cf:17:e4:d4:12:ca:e6:9c:ac:fd:b0:d8:95:07:84:17:ae:15: bf:90:97:72:f5:9c:38:da:ca:f9:17:66:e9:a1:8a:b5:52:90: fc:9b:74:81:97:34:a7:90:5a:ee:33:90:6e:53:84:a0:0a:f2: 14:9f:fb:b3:8f:2c:28:54:01:a2:56:8b:cb:04:67:53:fb:08: 80:bd:41:36:e4:e6:ea:72:50:59:f2:b9:12:cd:31:9b:23:f8: b2:1a:51:e1:5d:5c:05:5a:39:1b:6a:42:70:16:9c:6d:fa:3b: b0:e5:b0:59:c9:54:d2:48:71:57:ad:35:75:6c:5a:fe:e5:03: c4:da:49:b7:9d:c6:a8:75:a4:f8:4a:eb:d5:1b:fb:58:b4:09: 4e:8d:a9:33:d6:87:d6:02:ee:41:f5:1a:31:f1:9f:28:e6:19: 54:cd:04:f6:3a:45:ee:ff:06:3c:c1:49:e6:3e:39:be:88:3d: a9:cc:e7:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VFNDYxMTAvBgNVBAUTKDYzNTE1QjM2NDExMzg0OEZBNTU0RDI4NDJGNTg0MTg3 N0NGNkFGMDAwHhcNMjUwODIzMDE1MTA2WhcNMjUwODMwMDE1MTA2WjAYMRYwFAYD VQQDEw02OGE5MWU4Yi1mYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHXR6o7voIr4JRK7NUCIyP+qOQ/9Wx5Ze5mVkPAK1N5W3VGzDYse1gzXAb4s rs9SCcLn1piwc2qZ8zGEfv0VIQ/W+a0hBGcQGqBM/bQRelH8doJb+1qUm0lIrRT4 DsM0PPZlxWGNN57HpSWbsEykhRNJvcdSuWbIacRbhwgk8x47EYVf37SS678jXe1u 0wYSnYf2LJn1h16JKLut9f4jaL7MbYk/pl1I45AMCtRrzOR7J8cf+dpXezoOv0O4 ZULqub//s9UnevLXludYbYS7DCNjR/3UgzxhL8gnH78V/zbxi51k0WAa5Lovfoml 7R5ndHuGqtCRotzyvykmojUejwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxm8fKg noUO8fTliqOxwmpyHKmfMB8GA1UdIwQYMBaAFGNRWzZBE4SPpVTShC9YQYd89q8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUU0Ni9BRTgyRTEyNjEy RUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJLWxWTktFTDFoQmgzejJy d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxRmJOa0VUaEktbFZOS0VMMWhCaDN6MnJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUU0Ni9BRTgyRTEyNjEyRUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJ LWxWTktFTDFoQmgzejJyd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfdPMOV5OhcrIrhL1/aWc1W4ltX1PRQ4ZLKAJdtm73YzAW3hsqZ6v0 iGzYcnWeUSLFj5f+gTiQ3hPyVDjDT27Ge9cr7p6g0p3PF+TUEsrmnKz9sNiVB4QX rhW/kJdy9Zw42sr5F2bpoYq1UpD8m3SBlzSnkFruM5BuU4SgCvIUn/uzjywoVAGi VovLBGdT+wiAvUE25ObqclBZ8rkSzTGbI/iyGlHhXVwFWjkbakJwFpxt+juw5bBZ yVTSSHFXrTV1bFr+5QPE2km3ncaodaT4SuvVG/tYtAlOjakz1ofWAu5B9Rox8Z8o 5hlUzQT2OkXu/wY8wUnmPjm+iD2pzOfZ -----END CERTIFICATE-----Generated at Sun Aug 24 05:14:43 2025 by rpki-client