$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: iyMGRdEAyOYc+4iJLSzX1+A+m7p88aTCJLG4uQABGm4= Subject key identifier: 9B:E1:63:A6:D5:62:12:5F:19:6A:60:11:F8:E6:78:C0:B2:54:42:D3 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 71 Signing time: Sat 23 Aug 2025 07:09:33 +0000 Manifest this update: Sat 23 Aug 2025 07:09:33 +0000 Manifest next update: Sat 30 Aug 2025 07:09:33 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: GgMmyq2HPYvw1AoNUXc+W2pQMOSNZyNQOhcb+JBCmcU=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Aug 23 07:09:33 2025 GMT Not After : Aug 30 07:09:33 2025 GMT Subject: CN=68a9692d-019f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:06:9d:22:19:9f:bf:cf:47:1e:8d:b2:8d:68: 97:0f:70:1a:28:d5:cd:e6:49:c8:8d:ef:fa:98:e5: 6c:6d:c6:18:de:14:c7:ed:6d:90:ce:2e:7e:7d:26: 67:d3:1e:ec:31:43:80:df:34:58:d8:03:c1:64:aa: 47:2b:97:dc:cb:9e:91:11:f4:ce:6f:96:35:21:e9: 03:87:ba:65:e5:2c:73:bb:31:d7:56:ff:5e:a2:6e: 49:5f:59:19:9c:53:64:99:2d:33:bc:60:52:85:74: 42:37:93:bb:02:a5:8b:f4:2a:be:b5:2e:87:d1:bd: cc:a5:8b:0d:b1:b9:f6:20:81:bc:ee:44:a0:6c:d6: c3:39:3b:c8:37:95:06:a6:21:d2:aa:aa:04:78:27: 0d:68:a7:06:2c:41:89:da:01:ac:34:c9:7c:fd:49: fe:c8:6c:74:d6:9d:fe:06:de:29:03:34:02:56:ed: 8d:4c:c2:6f:a1:19:93:00:73:84:4a:6d:49:f9:66: 88:f0:77:df:f1:06:08:c7:d5:90:40:80:b0:29:2d: cb:38:76:61:8c:35:5f:a6:93:e5:e3:2b:72:fa:f0: 09:48:af:80:25:97:bb:51:05:61:87:6f:5f:22:b6: a6:45:2f:c5:1e:9b:82:fa:84:24:79:26:43:92:15: 86:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E1:63:A6:D5:62:12:5F:19:6A:60:11:F8:E6:78:C0:B2:54:42:D3 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:b9:59:ce:42:c2:65:35:1d:5c:7b:e9:63:8a:b5:92:1e:53: a3:ef:19:33:3b:77:71:0f:be:ce:fa:e7:67:1f:09:73:aa:29: 27:39:81:df:93:ff:19:be:9e:62:22:8a:3a:de:b9:aa:e1:fd: c2:07:58:eb:fb:8c:a8:83:11:1c:e6:3d:e3:76:7d:d0:93:a6: ad:4f:c8:f8:59:6e:46:e9:c2:60:a6:e7:78:49:4d:ef:b4:13: f6:cc:b8:96:bf:94:f6:65:ce:50:c4:43:90:8c:34:e8:f5:12: 46:53:d3:49:3f:e6:09:29:16:f7:a3:23:39:d3:e5:9c:ad:97: 90:be:f5:fb:79:c9:1b:0d:3b:3f:f9:ca:5d:fd:1c:50:ca:76: d5:4c:aa:f7:58:f8:3f:2d:07:e6:2b:55:da:ac:4a:ce:24:76: 4a:56:09:6e:87:46:b4:b0:46:f0:96:18:9c:c7:a5:07:cc:7d: d3:aa:1f:15:a0:0c:71:20:23:64:7d:8d:46:3f:f7:9d:2c:8d: 27:da:b1:3b:5f:35:01:6e:16:ec:0b:d4:88:e2:b3:13:05:ac: e7:11:95:95:71:07:e4:9b:3c:ec:4e:de:74:54:a0:93:4e:ea: ff:68:d1:07:ac:38:41:10:19:27:12:fe:1d:ea:25:b0:5e:b2: 6d:b3:a0:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA4MjMwNzA5MzNaFw0yNTA4MzAwNzA5MzNaMBgxFjAUBgNV BAMTDTY4YTk2OTJkLTAxOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKBp0iGZ+/z0cejbKNaJcPcBoo1c3mSciN7/qY5WxtxhjeFMftbZDOLn59JmfT HuwxQ4DfNFjYA8Fkqkcrl9zLnpER9M5vljUh6QOHumXlLHO7MddW/16ibklfWRmc U2SZLTO8YFKFdEI3k7sCpYv0Kr61LofRvcyliw2xufYggbzuRKBs1sM5O8g3lQam IdKqqgR4Jw1opwYsQYnaAaw0yXz9Sf7IbHTWnf4G3ikDNAJW7Y1Mwm+hGZMAc4RK bUn5Zojwd9/xBgjH1ZBAgLApLcs4dmGMNV+mk+XjK3L68AlIr4All7tRBWGHb18i tqZFL8Uem4L6hCR5JkOSFYbNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm+FjptVi El8ZamAR+OZ4wLJUQtMwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKm5Wc5CwmU1HVx76WOKtZIeU6PvGTM7d3EPvs7652cfCXOqKSc5gd+T /xm+nmIiijreuarh/cIHWOv7jKiDERzmPeN2fdCTpq1PyPhZbkbpwmCm53hJTe+0 E/bMuJa/lPZlzlDEQ5CMNOj1EkZT00k/5gkpFvejIznT5Zytl5C+9ft5yRsNOz/5 yl39HFDKdtVMqvdY+D8tB+YrVdqsSs4kdkpWCW6HRrSwRvCWGJzHpQfMfdOqHxWg DHEgI2R9jUY/950sjSfasTtfNQFuFuwL1IjisxMFrOcRlZVxB+SbPOxO3nRUoJNO 6v9o0QesOEEQGScS/h3qJbBesm2zoL0= -----END CERTIFICATE-----Generated at Sat Aug 23 20:39:33 2025 by rpki-client