$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: ViyfeFSGubSOldomwNkpnWU2Lyo+/10Wup4GUKhsXDA= Subject key identifier: 1A:A3:E7:3F:DC:29:64:52:FC:65:19:28:40:B2:BB:D3:18:F1:CD:0C Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 78 Signing time: Sat 23 Aug 2025 07:11:57 +0000 Manifest this update: Sat 23 Aug 2025 07:11:56 +0000 Manifest next update: Sat 30 Aug 2025 07:11:56 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: nWeKFAZTZm7uD3yw25mw9Vvh8sUs3n5IGzqZgxJA3qU=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: mzE4Rj9TzgxYoPFC7hLQmMNdU4o1ATX8k/0uu+bhb9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Aug 23 07:11:56 2025 GMT Not After : Aug 30 07:11:56 2025 GMT Subject: CN=68a969bd-ea76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:70:f7:e2:59:3e:36:ad:47:47:de:07:ac: a7:b0:84:21:44:55:c3:a8:cb:ea:5b:84:94:e4:91: 50:ba:3c:cf:7d:a5:45:00:d7:fd:b9:2e:7e:14:4a: 2d:f2:74:15:ad:7a:7c:70:13:4a:19:55:4c:c6:5d: a0:11:15:98:64:b4:bd:3f:d5:d4:f6:ea:37:a2:ec: 71:36:ce:6d:c0:d1:ad:95:22:30:0d:a2:db:07:fa: 59:e2:c9:68:e9:37:84:d5:ff:db:0d:b0:54:d4:67: 71:3f:47:cf:ed:3a:57:51:a6:65:98:93:45:6f:19: e0:3a:8d:a6:29:16:5e:79:ff:21:58:66:31:b6:42: 1d:e7:04:4d:15:1c:64:5b:95:72:c3:63:cf:66:06: b7:a1:85:d0:f9:0b:4c:ca:0f:94:79:5f:de:e6:be: bd:bd:b1:9a:34:ca:83:f3:1a:22:f2:f1:a4:07:8c: d2:a4:f2:0f:8b:eb:a9:62:15:f2:89:a3:1c:a3:4f: 7d:1f:61:97:f6:61:5e:b4:ca:45:33:b8:6e:18:b4: 93:51:79:ee:58:60:23:80:94:11:d3:d9:9d:47:9b: 8c:e9:b9:c2:ca:6c:cc:15:44:72:2e:cf:9d:0a:a0: 26:62:1a:e7:5d:67:e9:92:da:be:59:87:75:be:a9: 0b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A3:E7:3F:DC:29:64:52:FC:65:19:28:40:B2:BB:D3:18:F1:CD:0C X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3f:07:9a:f4:47:6f:e6:31:2d:2d:40:69:bf:8a:ec:c6:f4: cf:2f:61:32:22:85:dc:2c:d6:dc:9a:5f:d2:4a:bb:4a:87:43: 37:ae:9c:69:3b:c6:68:aa:c9:c3:a7:95:10:db:c8:64:1e:e5: 84:7a:38:c3:fa:33:7c:a5:df:a4:23:25:77:aa:94:1d:bd:c9: 87:42:a0:10:71:c6:96:68:5d:41:55:93:e9:b2:a9:6f:a1:75: 64:84:ae:52:b0:61:46:e9:52:c1:da:b6:c7:46:4b:02:81:f2: 2a:1b:91:2f:72:9b:8b:a0:67:7c:45:f8:b9:26:bf:47:94:4d: 4c:99:ae:b8:90:c9:5e:c8:81:cc:1d:48:28:77:16:bd:6f:54: 70:2b:46:cb:46:33:79:2d:cc:3f:36:1f:2e:f2:d6:6c:2f:c2: 0c:b9:04:92:f7:61:9e:0e:44:b1:2a:f6:b7:0f:27:93:a4:5a: 9e:64:19:c7:38:54:76:47:b0:ba:6a:b9:fb:eb:fb:20:a3:03: 28:74:f1:1e:d3:2c:55:d1:70:93:dd:f2:41:8b:31:a9:41:6e: ca:cf:51:2c:de:4a:ed:ab:a5:1a:cd:95:99:03:f7:9d:11:23: 96:8d:3e:02:ae:2f:d9:ac:9b:d3:20:3c:97:e9:f5:97:1a:43: 1c:fd:c8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjUwODIzMDcxMTU2WhcNMjUwODMwMDcxMTU2WjAYMRYwFAYD VQQDEw02OGE5NjliZC1lYTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VZw9+JZPjatR0feB6ynsIQhRFXDqMvqW4SU5JFQujzPfaVFANf9uS5+FEot 8nQVrXp8cBNKGVVMxl2gERWYZLS9P9XU9uo3ouxxNs5twNGtlSIwDaLbB/pZ4slo 6TeE1f/bDbBU1GdxP0fP7TpXUaZlmJNFbxngOo2mKRZeef8hWGYxtkId5wRNFRxk W5Vyw2PPZga3oYXQ+QtMyg+UeV/e5r69vbGaNMqD8xoi8vGkB4zSpPIPi+upYhXy iaMco099H2GX9mFetMpFM7huGLSTUXnuWGAjgJQR09mdR5uM6bnCymzMFURyLs+d CqAmYhrnXWfpktq+WYd1vqkLQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqj5z/c KWRS/GUZKECyu9MY8c0MMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSPwea9Edv5jEtLUBpv4rsxvTPL2EyIoXcLNbcml/SSrtKh0M3rpxp O8ZoqsnDp5UQ28hkHuWEejjD+jN8pd+kIyV3qpQdvcmHQqAQccaWaF1BVZPpsqlv oXVkhK5SsGFG6VLB2rbHRksCgfIqG5EvcpuLoGd8Rfi5Jr9HlE1Mma64kMleyIHM HUgodxa9b1RwK0bLRjN5Lcw/Nh8u8tZsL8IMuQSS92GeDkSxKva3DyeTpFqeZBnH OFR2R7C6arn76/sgowModPEe0yxV0XCT3fJBizGpQW7Kz1Es3krtq6UazZWZA/ed ESOWjT4Cri/ZrJvTIDyX6fWXGkMc/cjO -----END CERTIFICATE-----Generated at Sat Aug 23 20:27:21 2025 by rpki-client