$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: xhnUkrZo14Qa3b6Ddyqj/MoJ8hpfF9dz580ExmRDma8= Subject key identifier: A0:5F:7B:BC:54:B2:4B:5A:46:3D:89:A3:36:0F:19:52:9C:87:02:83 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B2D Signing time: Fri 22 Aug 2025 16:23:23 +0000 Manifest this update: Fri 22 Aug 2025 16:23:22 +0000 Manifest next update: Fri 29 Aug 2025 16:23:22 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: ODykCC3F19r7M8FHw4g/D/4hNI4rCi5SORvJJZlI2sc=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7001 (0x1b59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Aug 22 16:23:22 2025 GMT Not After : Aug 29 16:23:22 2025 GMT Subject: CN=68a8997a-a522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:f7:4e:4b:04:ff:2e:d5:8d:80:3a:a8:3f: b1:5c:5c:86:f9:a2:1f:96:bb:af:26:65:9f:9b:cd: 08:56:43:d3:cd:8d:42:a4:67:21:dc:0c:48:ea:22: 73:2f:27:68:63:60:b7:92:40:a0:f6:79:3e:2f:7f: 86:86:c0:9c:42:d6:21:d6:72:a5:85:95:b1:cf:4a: 79:2b:69:0e:d8:cf:85:d9:3f:6e:98:ec:dc:5b:72: 6c:ed:0e:dd:d0:86:6c:66:f2:ec:8d:3b:ac:fd:ec: 7d:14:a3:d3:3e:cd:cd:be:bd:85:ea:0d:e0:72:77: 67:5e:3b:cc:fb:6c:70:5c:ff:15:89:bf:36:b6:89: dd:a9:ca:0d:b2:87:2a:96:53:98:44:38:be:7c:cf: 99:1d:5d:ec:5d:42:66:74:c4:b5:b8:36:bd:5c:b3: 97:e1:33:ec:78:d4:3b:46:60:04:04:31:e4:f4:fa: 75:9b:86:c6:18:0b:01:05:8d:36:10:78:48:3f:df: 4b:83:ac:49:db:bf:0f:aa:bc:c4:99:b9:1c:fc:f6: 4d:de:f2:d8:14:59:43:87:12:9f:cb:40:b5:f0:03: 72:2e:f7:32:a2:bc:22:d0:1a:23:f4:1a:81:12:a2: e8:0f:61:0e:00:c7:93:a9:ff:28:c0:03:2c:73:ea: 8f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5F:7B:BC:54:B2:4B:5A:46:3D:89:A3:36:0F:19:52:9C:87:02:83 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:de:21:a4:92:be:07:14:e2:0f:b4:8a:9d:78:4e:63:61:4b: 25:07:7f:2b:f1:d9:25:cc:3e:93:b0:35:d3:ae:32:65:c6:ea: 65:48:cc:d0:cc:d9:8f:f3:15:38:d0:14:8f:d5:90:50:ae:1a: 87:1c:3f:1a:01:af:56:5e:0e:74:44:0f:85:4c:e9:c0:79:ae: 53:d7:85:29:46:57:db:20:4b:d2:e0:20:dc:3f:be:c9:d1:65: cb:88:2f:8a:4c:ba:79:44:89:da:37:55:bc:83:a2:73:3f:58: 9e:75:a1:e6:82:eb:aa:ba:64:48:97:60:0d:b6:77:d0:a3:68: b0:e6:19:27:16:7c:58:81:fd:17:ee:49:a3:54:28:b3:fe:ef: fb:43:ca:9e:13:b3:eb:41:84:ff:b9:71:30:f8:12:79:e6:63: 40:22:36:95:66:48:79:17:40:c3:d2:55:87:a6:1a:43:26:87: da:58:00:85:c8:85:61:95:81:48:3c:d7:1d:47:ed:37:37:ae: 31:d5:e6:7f:27:e2:04:6f:59:27:93:a6:26:02:c3:40:54:81: c0:f0:52:3b:00:d7:9d:53:38:16:31:05:14:60:f2:5d:4e:54: 79:29:7a:1d:f1:8a:9e:ca:25:4a:f7:f3:6d:21:3c:75:36:0d: 51:d1:69:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwODIyMTYyMzIyWhcNMjUwODI5MTYyMzIyWjAYMRYwFAYD VQQDEw02OGE4OTk3YS1hNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBf3TksE/y7VjYA6qD+xXFyG+aIflruvJmWfm80IVkPTzY1CpGch3AxI6iJz LydoY2C3kkCg9nk+L3+GhsCcQtYh1nKlhZWxz0p5K2kO2M+F2T9umOzcW3Js7Q7d 0IZsZvLsjTus/ex9FKPTPs3Nvr2F6g3gcndnXjvM+2xwXP8Vib82tondqcoNsocq llOYRDi+fM+ZHV3sXUJmdMS1uDa9XLOX4TPseNQ7RmAEBDHk9Pp1m4bGGAsBBY02 EHhIP99Lg6xJ278PqrzEmbkc/PZN3vLYFFlDhxKfy0C18ANyLvcyorwi0Boj9BqB EqLoD2EOAMeTqf8owAMsc+qP0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBfe7xU sktaRj2JozYPGVKchwKDMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA3iGkkr4HFOIPtIqdeE5jYUslB38r8dklzD6TsDXTrjJlxuplSMzQ zNmP8xU40BSP1ZBQrhqHHD8aAa9WXg50RA+FTOnAea5T14UpRlfbIEvS4CDcP77J 0WXLiC+KTLp5RInaN1W8g6JzP1iedaHmguuqumRIl2ANtnfQo2iw5hknFnxYgf0X 7kmjVCiz/u/7Q8qeE7PrQYT/uXEw+BJ55mNAIjaVZkh5F0DD0lWHphpDJofaWACF yIVhlYFIPNcdR+03N64x1eZ/J+IEb1knk6YmAsNAVIHA8FI7ANedUzgWMQUUYPJd TlR5KXod8YqeyiVK9/NtITx1Ng1R0WkI -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:35 2025 by rpki-client