$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: Po76pNA5MEUnX/ibzQ9ByaQp7oFJT5ctswA/LaKwVQU= Subject key identifier: 13:E0:C6:BE:8A:0D:33:6C:74:5D:9C:AB:CA:22:9F:19:92:84:37:E4 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: C7 Signing time: Sat 23 Aug 2025 05:57:16 +0000 Manifest this update: Sat 23 Aug 2025 05:57:16 +0000 Manifest next update: Sat 30 Aug 2025 05:57:16 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: Ca/LEAoxzfhxIIczjfPrW1gaj90WWimoOGv5r2fsVe0=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Aug 23 05:57:16 2025 GMT Not After : Aug 30 05:57:16 2025 GMT Subject: CN=68a9583c-0685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e7:33:97:e4:13:74:e6:01:54:89:57:fb:cc: f1:65:a1:9e:48:41:38:44:f3:4f:ac:58:ff:00:de: 82:ce:4b:1c:0c:e1:2e:76:0e:69:6c:94:3e:d7:76: 38:49:31:01:32:a1:86:7c:d0:d1:db:a3:ee:bf:fb: ac:3e:64:79:55:91:5d:f8:81:80:38:47:fa:a8:0d: c5:98:f5:bb:6b:25:f6:31:bd:b4:04:9b:73:58:fc: 8f:bb:5d:80:39:22:0b:22:61:06:dd:f9:69:94:93: b4:e9:f5:91:77:9a:b1:11:3a:b8:a2:22:46:9b:ac: 77:12:24:04:18:03:28:8f:57:dd:0e:fd:61:33:75: 88:fb:24:a6:82:a9:8b:13:12:3d:14:41:c1:0a:c9: 2b:fc:ca:3d:87:f2:31:02:10:fd:90:3f:03:d7:27: c8:1a:55:8b:89:54:47:ab:40:4d:df:ed:a4:22:29: ac:e0:a3:dd:13:a3:83:2b:ca:87:61:da:ad:52:4e: 1a:9e:a7:84:c8:47:2f:71:d8:0d:27:a0:da:04:33: b1:ea:92:a6:a5:17:39:61:67:fc:17:ad:e7:56:a7: c7:21:ae:36:b9:7c:78:01:1a:6b:31:d3:59:6b:11: c4:76:8a:8a:52:c7:5f:77:84:46:6e:f0:65:8b:71: 5a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E0:C6:BE:8A:0D:33:6C:74:5D:9C:AB:CA:22:9F:19:92:84:37:E4 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:de:da:12:48:4c:b2:b5:5b:56:d4:bd:d7:59:18:bc:9e:5a: 84:78:2f:64:57:eb:d0:11:e8:1f:38:d4:16:0f:a0:29:11:0f: 93:01:16:91:75:d2:3d:ed:ae:b7:a8:ca:8a:b4:79:e8:cf:eb: 1e:bb:fb:82:87:f2:ca:8c:07:d1:5a:d0:16:8f:37:b4:2d:45: b0:45:63:06:ea:6a:29:18:b3:1a:7e:88:bb:1a:bc:a2:9e:19: 16:44:65:3d:86:17:55:a7:8b:a6:63:6c:f6:1a:3b:ef:78:bf: a9:dd:6d:a8:ed:85:75:df:1c:ea:88:3a:00:99:b7:a3:05:82: 45:c1:11:c1:98:1d:9c:ab:f9:27:45:b9:c0:e5:88:ef:38:81: 09:0a:1c:62:ab:68:4f:45:0d:0a:7e:0b:ce:f3:39:13:33:74: f9:bb:c7:e8:7c:07:59:97:3c:26:5c:ec:c7:fb:d0:db:c6:82: ef:4f:19:0e:90:80:c7:a4:b3:50:eb:1f:fa:9a:c2:47:fc:30: 63:ff:79:7d:e5:af:cc:25:95:65:92:03:01:1c:e4:0a:0c:f5: c8:ff:22:e1:48:39:a6:85:7f:01:be:67:fb:cd:f9:c0:19:08: 2d:cb:de:bc:2d:7e:bf:13:18:25:6d:17:d6:77:92:38:01:1f: be:ce:a9:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUwODIzMDU1NzE2WhcNMjUwODMwMDU1NzE2WjAYMRYwFAYD VQQDEw02OGE5NTgzYy0wNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Oczl+QTdOYBVIlX+8zxZaGeSEE4RPNPrFj/AN6CzkscDOEudg5pbJQ+13Y4 STEBMqGGfNDR26Puv/usPmR5VZFd+IGAOEf6qA3FmPW7ayX2Mb20BJtzWPyPu12A OSILImEG3flplJO06fWRd5qxETq4oiJGm6x3EiQEGAMoj1fdDv1hM3WI+ySmgqmL ExI9FEHBCskr/Mo9h/IxAhD9kD8D1yfIGlWLiVRHq0BN3+2kIims4KPdE6ODK8qH YdqtUk4anqeEyEcvcdgNJ6DaBDOx6pKmpRc5YWf8F63nVqfHIa42uXx4ARprMdNZ axHEdoqKUsdfd4RGbvBli3FaDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPgxr6K DTNsdF2cq8oinxmShDfkMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj3toSSEyytVtW1L3XWRi8nlqEeC9kV+vQEegfONQWD6ApEQ+TARaR ddI97a63qMqKtHnoz+seu/uCh/LKjAfRWtAWjze0LUWwRWMG6mopGLMafoi7Gryi nhkWRGU9hhdVp4umY2z2GjvveL+p3W2o7YV13xzqiDoAmbejBYJFwRHBmB2cq/kn RbnA5YjvOIEJChxiq2hPRQ0KfgvO8zkTM3T5u8fofAdZlzwmXOzH+9DbxoLvTxkO kIDHpLNQ6x/6msJH/DBj/3l95a/MJZVlkgMBHOQKDPXI/yLhSDmmhX8Bvmf7zfnA GQgty968LX6/ExglbRfWd5I4AR++zqk7 -----END CERTIFICATE-----Generated at Sat Aug 23 23:55:34 2025 by rpki-client