$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft File: y-ExoIOkVjx8Q52webZLatEQGnw.mft (raw, json) Hash identifier: 1FicCyZSrM7TdAP296X4j9PqS/B1AU5dANr1g3Yk2oA= Subject key identifier: F0:A4:6B:0D:B3:CF:F8:EF:F4:7E:9F:B4:F5:13:B5:63:7D:3D:9D:F3 Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft Manifest number: 08A5 Signing time: Fri 22 Aug 2025 20:41:10 +0000 Manifest this update: Fri 22 Aug 2025 20:41:10 +0000 Manifest next update: Fri 29 Aug 2025 20:41:10 +0000 Files and hashes: 1: y-ExoIOkVjx8Q52webZLatEQGnw.crl (hash: KrlF4jUo8kwZLKtCygJw0+ech0lKqnx3E5NHJJwZxJE=) 2: 90D4C28CC2BA11EA8A079767C4F9AE02.roa (hash: e+13EZAvpj9mc2IILMERDnSK9NszhBMUbUBC2BNslfY=) 3: F043A0CCC2B411EA9BAFF054C4F9AE02.roa (hash: NHcEruSqBuMj/IPzd/3S47VAhmXWgMgQYut3Slp0jA8=) 4: 91B81F1EC2BA11EA8A079767C4F9AE02.roa (hash: HnUSTDgiOASq4KYnjuG0nd8h+Pt87RrArwZX9gcI9gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EED0, serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Validity Not Before: Aug 22 20:41:10 2025 GMT Not After : Aug 29 20:41:10 2025 GMT Subject: CN=68a8d5e6-c4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:29:65:d0:4a:b5:47:59:2b:e9:68:25:47:c9: ae:e6:19:1c:fb:be:02:d2:2e:05:a0:27:b6:a9:e9: 25:3e:1b:65:0b:63:5e:bf:a6:39:b6:39:74:23:ad: 02:62:7b:00:0a:6f:98:29:67:39:b3:37:d8:a2:4c: e1:cb:b7:ce:0d:c2:46:f1:0c:92:ac:d1:dc:eb:01: 59:a3:20:16:05:f7:2a:ed:05:3f:7a:15:80:54:35: 88:98:6a:24:cf:c8:f7:b3:c9:8e:2c:42:87:a7:f6: 8e:1a:08:64:c9:a5:78:e4:ab:a0:bf:3d:a5:26:7e: 2e:54:de:31:ff:86:9d:d5:1e:ca:af:af:20:27:37: 1e:58:43:9b:7a:57:34:50:7b:e7:bf:01:5e:f5:73: 21:5e:3c:e3:bf:5e:7e:fa:b0:3e:c6:0d:c9:be:0b: 8c:61:78:3c:c6:d4:65:f9:18:e6:ec:d4:24:bb:b4: 3e:a3:28:32:78:99:f5:dc:59:19:88:73:5a:e2:6e: 8a:d0:51:64:2b:e9:6a:47:19:51:79:09:3b:d4:8d: 4a:29:07:da:57:26:e9:62:b3:0f:e1:a0:0f:c7:27: d1:9b:fc:14:89:61:be:c9:80:36:c3:85:fd:24:bd: f1:92:f9:b2:dc:fc:dc:82:0b:3b:aa:6a:9b:f9:3a: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A4:6B:0D:B3:CF:F8:EF:F4:7E:9F:B4:F5:13:B5:63:7D:3D:9D:F3 X509v3 Authority Key Identifier: keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:39:cc:4a:ff:d1:7e:3a:aa:f2:69:e0:cf:9c:81:df:b9:51: 92:b9:4b:de:f1:c1:7b:e3:5c:63:da:85:05:4f:6b:c4:c4:03: 6c:dc:38:6b:31:5c:ff:29:bf:db:c2:c7:fe:e1:83:c2:45:b6: 03:df:78:6b:6f:bd:d1:22:86:b8:7a:7f:37:67:77:9e:f0:e4: b5:4a:96:b8:9a:21:ee:fc:f6:49:b6:00:d2:f0:67:77:c5:ab: 01:fe:ff:fc:b8:89:95:83:77:10:ad:23:c0:60:ec:c5:63:54: f6:0c:95:13:eb:09:b7:89:5c:b4:41:8f:f3:de:f3:b8:35:85: 82:19:f0:0c:76:63:41:9f:43:b4:39:db:61:d4:09:ea:52:e3: 6a:f4:8e:e4:02:34:ca:73:d2:3f:4c:25:3c:18:fc:0f:10:f7: 3c:d5:df:7d:75:d6:69:b6:80:aa:63:fe:37:f6:8e:8f:cf:af: 06:11:dc:45:f6:07:7a:f8:89:b9:b9:3b:20:83:c7:4e:68:d5: 5c:50:d8:f4:ff:52:87:40:9c:b8:06:d3:1a:e1:5d:45:06:68: 6e:c1:f0:1b:3f:6c:26:ee:43:3c:11:90:a4:44:28:ed:ff:e0: aa:82:65:73:6f:cb:ec:9f:ea:89:b1:2c:14:94:21:dc:00:20: a0:5f:69:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFRDAxMTAvBgNVBAUTKENCRTEzMUEwODNBNDU2M0M3QzQzOURCMDc5QjY0QjZB RDExMDFBN0MwHhcNMjUwODIyMjA0MTEwWhcNMjUwODI5MjA0MTEwWjAYMRYwFAYD VQQDEw02OGE4ZDVlNi1jNGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Cll0Eq1R1kr6WglR8mu5hkc+74C0i4FoCe2qeklPhtlC2Nev6Y5tjl0I60C YnsACm+YKWc5szfYokzhy7fODcJG8QySrNHc6wFZoyAWBfcq7QU/ehWAVDWImGok z8j3s8mOLEKHp/aOGghkyaV45Kugvz2lJn4uVN4x/4ad1R7Kr68gJzceWEObelc0 UHvnvwFe9XMhXjzjv15++rA+xg3JvguMYXg8xtRl+Rjm7NQku7Q+oygyeJn13FkZ iHNa4m6K0FFkK+lqRxlReQk71I1KKQfaVybpYrMP4aAPxyfRm/wUiWG+yYA2w4X9 JL3xkvmy3Pzcggs7qmqb+ToRTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCkaw2z z/jv9H6ftPUTtWN9PZ3zMB8GA1UdIwQYMBaAFMvhMaCDpFY8fEOdsHm2S2rREBp8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUVEMC82RUVCMTE1MEMy QjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1ZqeDhRNTJ3ZWJaTGF0RVFH bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktRXhvSU9rVmp4OFE1MndlYlpMYXRFUUdudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUVEMC82RUVCMTE1MEMyQjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1Zq eDhRNTJ3ZWJaTGF0RVFHbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiOcxK/9F+OqryaeDPnIHfuVGSuUve8cF741xj2oUFT2vExANs3Dhr MVz/Kb/bwsf+4YPCRbYD33hrb73RIoa4en83Z3ee8OS1Spa4miHu/PZJtgDS8Gd3 xasB/v/8uImVg3cQrSPAYOzFY1T2DJUT6wm3iVy0QY/z3vO4NYWCGfAMdmNBn0O0 Odth1AnqUuNq9I7kAjTKc9I/TCU8GPwPEPc81d99ddZptoCqY/439o6Pz68GEdxF 9gd6+Im5uTsgg8dOaNVcUNj0/1KHQJy4BtMa4V1FBmhuwfAbP2wm7kM8EZCkRCjt /+CqgmVzb8vsn+qJsSwUlCHcACCgX2m5 -----END CERTIFICATE-----Generated at Sat Aug 23 10:38:19 2025 by rpki-client