$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: ZDj3uUYTpgXv+GJuUOI8RTMT2BD8qjYs/0Y2eGfR+CA= Subject key identifier: F3:2E:13:E4:68:C8:75:AC:F6:0C:98:D9:BB:CA:36:83:F0:9C:81:BC Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 05D7 Signing time: Fri 22 Aug 2025 23:13:21 +0000 Manifest this update: Fri 22 Aug 2025 23:13:21 +0000 Manifest next update: Fri 29 Aug 2025 23:13:21 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: 1J7NOk9v6RaXd3AOL803FJHr+QREDfbMxdnm0+FKODs=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: tl2kppVQ05tVhEGA0iZghAdvk5il8hkt04HkORheCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Aug 22 23:13:21 2025 GMT Not After : Aug 29 23:13:21 2025 GMT Subject: CN=68a8f991-d4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:d0:cb:c1:eb:7a:0a:3d:b6:ff:04:78:f9: da:ca:c4:62:a4:8e:c9:ce:a2:18:c5:79:93:3d:ec: 7e:b0:57:28:7c:c7:3c:6d:03:6d:6d:05:17:a8:03: 44:f0:0a:32:4d:33:1c:aa:8b:28:8d:23:71:e1:c8: 60:cd:a2:75:e2:0f:23:ce:13:e1:39:5c:f8:ea:9b: d8:e5:e9:75:fa:1b:2d:2b:0c:f6:0b:f7:fa:e9:e0: dd:ae:e8:f2:44:5b:09:08:26:a6:93:ef:cb:46:8a: 70:9d:8e:3e:3f:71:ec:bb:78:28:ad:5c:95:6c:c2: 15:c9:e0:4a:c0:67:7c:a2:97:7c:14:e2:94:27:39: ea:c1:6b:59:e3:a5:08:77:ee:e8:d9:c6:0d:fb:f1: b4:b7:f3:94:28:d9:88:34:63:e0:7b:82:a3:ac:7b: a6:f8:d0:13:c2:5b:8a:6b:80:a0:92:a3:b5:f1:2f: 6e:68:55:7f:28:0f:c0:2b:aa:f8:05:71:f7:20:33: ad:14:90:cd:15:8f:aa:70:93:9d:27:fb:42:be:ab: ec:74:bd:6f:68:c7:b7:e3:93:4a:30:31:9d:7e:8b: b9:52:76:d0:ac:5a:ef:65:3f:27:0a:c8:9e:1f:9b: 3c:14:fd:32:f4:df:8f:9d:57:11:5a:54:71:da:06: 19:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2E:13:E4:68:C8:75:AC:F6:0C:98:D9:BB:CA:36:83:F0:9C:81:BC X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:81:51:54:f0:13:75:27:6a:a3:61:1b:e3:93:f1:55:53:c5: c5:8e:a5:8f:e3:05:0f:ba:ee:f4:27:87:52:c2:8f:44:67:bb: 24:1a:4a:12:05:45:d7:97:41:a1:23:09:c1:9b:b0:b6:ee:43: 00:a9:f4:a9:fa:0e:b2:fc:78:89:31:3a:4a:35:91:cb:bb:9e: ac:d7:7c:34:7b:ea:ac:63:30:87:5f:8d:7d:4b:f2:d6:f3:84: 29:66:8d:10:c5:c8:da:a9:e9:0f:11:4a:0e:b9:f0:1f:88:93: 7d:33:e8:c4:eb:26:fe:17:07:7e:38:fe:59:41:e3:b6:51:93: 0c:83:bb:02:7c:e0:b6:84:2a:46:92:6f:71:88:0a:32:b9:4c: 96:80:b2:dd:11:42:96:a0:e8:89:74:3e:ce:10:f7:07:e6:26: 94:0b:1f:ff:d5:75:aa:19:2e:9c:28:ad:e2:2b:ad:e6:dd:b8: 84:78:ab:a9:a9:40:91:3f:cd:47:14:04:97:7f:c8:c3:d6:12: 13:2c:e0:35:89:c0:2c:63:2a:b4:02:3a:8a:cd:6e:19:78:c9: 6a:9e:3c:78:2d:38:55:3d:4d:e6:34:30:40:7d:fb:d2:5e:09: 96:ac:db:6a:d1:03:bb:cd:ee:05:56:ca:c0:da:0d:e9:4e:3d: 9e:a8:ac:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUwODIyMjMxMzIxWhcNMjUwODI5MjMxMzIxWjAYMRYwFAYD VQQDEw02OGE4Zjk5MS1kNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUvQy8Hrego9tv8EePnaysRipI7JzqIYxXmTPex+sFcofMc8bQNtbQUXqANE 8AoyTTMcqosojSNx4chgzaJ14g8jzhPhOVz46pvY5el1+hstKwz2C/f66eDdrujy RFsJCCamk+/LRopwnY4+P3Hsu3gorVyVbMIVyeBKwGd8opd8FOKUJznqwWtZ46UI d+7o2cYN+/G0t/OUKNmINGPge4KjrHum+NATwluKa4CgkqO18S9uaFV/KA/AK6r4 BXH3IDOtFJDNFY+qcJOdJ/tCvqvsdL1vaMe345NKMDGdfou5UnbQrFrvZT8nCsie H5s8FP0y9N+PnVcRWlRx2gYZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMuE+Ro yHWs9gyY2bvKNoPwnIG8MB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgVFU8BN1J2qjYRvjk/FVU8XFjqWP4wUPuu70J4dSwo9EZ7skGkoS BUXXl0GhIwnBm7C27kMAqfSp+g6y/HiJMTpKNZHLu56s13w0e+qsYzCHX419S/LW 84QpZo0QxcjaqekPEUoOufAfiJN9M+jE6yb+Fwd+OP5ZQeO2UZMMg7sCfOC2hCpG km9xiAoyuUyWgLLdEUKWoOiJdD7OEPcH5iaUCx//1XWqGS6cKK3iK63m3biEeKup qUCRP81HFASXf8jD1hITLOA1icAsYyq0AjqKzW4ZeMlqnjx4LThVPU3mNDBAffvS XgmWrNtq0QO7ze4FVsrA2g3pTj2eqKxE -----END CERTIFICATE-----Generated at Sat Aug 23 21:20:41 2025 by rpki-client