$ rpki-client -vvf rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft File: lYpO2dfWT6yHvRbsijZXHhovUIo.mft (raw, json) Hash identifier: MWM8XeMgtnKHOFfj0GckA8zBYoklrVoVZrnkwacE00U= Subject key identifier: 5E:95:93:83:30:99:AF:BA:F7:9B:6D:E8:F6:9A:61:BB:C3:29:03:29 Authority key identifier: 95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A Certificate issuer: /CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Certificate serial: 0CDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft Manifest number: 0CC5 Signing time: Fri 22 Aug 2025 18:18:42 +0000 Manifest this update: Fri 22 Aug 2025 18:18:42 +0000 Manifest next update: Fri 29 Aug 2025 18:18:42 +0000 Files and hashes: 1: lYpO2dfWT6yHvRbsijZXHhovUIo.crl (hash: ONj1vjFsUarfkLJ3AQ+W8Ry+rCdwDKSFqSJwI50er/M=) 2: C3667DBAE6A711EFA8D1A077C4F9AE02.roa (hash: kWiJy9rj9ZAvpP5XFFuWkRDE132pW+L/LUIvPA/tzW8=) 3: C2911C74E6A711EFA8D1A077C4F9AE02.roa (hash: g48jQH2Ndz+BJ2g+3DFqKTezsj/596L9PEbikDy8KVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3295 (0xcdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160EEF, serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Validity Not Before: Aug 22 18:18:42 2025 GMT Not After : Aug 29 18:18:42 2025 GMT Subject: CN=68a8b482-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d4:ec:fd:b3:23:a7:02:6b:b7:95:05:92:de: 94:6b:7d:9f:2a:4e:73:fa:0f:4d:dd:f4:08:9d:16: 2f:72:b7:c4:5c:2a:b0:d2:11:79:71:8d:a2:79:28: 78:58:1a:50:01:d6:6d:33:84:6c:1b:7a:e7:e7:78: 11:4d:27:2b:bd:b8:3b:ff:b6:42:ae:b0:4b:fd:6c: eb:51:a3:3b:09:49:eb:51:aa:9b:77:0c:c2:49:aa: 07:47:63:28:1e:20:49:5c:5b:26:d5:ba:43:ed:f7: 5a:80:7b:d4:e3:1a:d7:5b:69:a9:fb:fe:ca:a6:0f: 1d:dc:a3:95:13:92:6e:81:bf:4e:d1:8b:d1:96:01: 58:d6:d9:a0:55:a3:a3:da:31:4a:fb:fc:60:cd:1d: 36:49:21:b5:46:ef:f5:01:29:ba:34:5e:e9:fc:c2: 40:d6:51:94:3e:1d:fe:af:5e:2b:4b:d2:a8:cf:c4: d8:c8:4f:c8:db:40:71:6b:09:dd:51:95:59:44:da: cd:63:9f:0c:3f:4a:27:a0:81:ab:81:d4:95:65:64: ec:a2:8b:49:fe:45:0b:fe:f2:dd:ba:7b:20:13:0d: 4b:77:70:82:9d:b5:20:8c:48:6b:b9:97:8a:4d:ef: ed:57:55:62:6a:6c:56:72:f6:23:a0:c0:cd:90:71: 24:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:95:93:83:30:99:AF:BA:F7:9B:6D:E8:F6:9A:61:BB:C3:29:03:29 X509v3 Authority Key Identifier: keyid:95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c8:33:70:e9:19:ec:09:64:2e:9a:82:a8:5b:d5:62:c4:88: 79:71:26:99:9e:58:c6:97:9c:70:86:24:75:64:78:c9:27:ae: b8:12:b1:d9:26:38:1b:fd:96:97:38:3f:3e:1f:5f:dc:be:fd: 74:36:72:89:a0:2a:c5:70:83:e5:52:a9:a7:49:bc:90:01:8d: 02:ba:71:24:b6:ee:77:ee:9c:19:c8:29:70:3c:cb:59:c2:a4: 57:c2:92:c8:26:7f:cf:7c:94:bc:55:98:06:65:75:02:8e:fb: 7a:5f:7f:3c:d3:87:8d:24:79:77:19:52:25:a3:84:b1:68:23: a2:d5:92:96:14:1b:5a:3b:80:b1:5d:5b:fb:72:33:91:11:56: b3:5c:94:f1:57:58:ca:26:c5:e5:8a:ff:ce:9e:3e:3c:a2:bd: ad:53:24:15:27:42:19:a6:b0:7d:a3:47:28:2e:eb:ad:a0:aa: 1c:59:c8:a6:45:fa:c9:94:40:38:94:3f:c1:3e:1a:65:71:3d: 26:18:f9:4d:5c:e9:e9:b1:46:90:2f:7d:e6:2a:ac:dd:d5:d1: b3:94:4c:b0:29:13:03:80:b1:10:fb:06:d6:fd:d5:a0:e2:0c: 2e:20:4f:19:9e:e9:aa:35:0d:0e:99:97:d4:37:64:a4:6b:bd: d1:96:2e:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBFRUYxMTAvBgNVBAUTKDk1OEE0RUQ5RDdENjRGQUM4N0JEMTZFQzhBMzY1NzFF MUEyRjUwOEEwHhcNMjUwODIyMTgxODQyWhcNMjUwODI5MTgxODQyWjAYMRYwFAYD VQQDEw02OGE4YjQ4Mi00ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dTs/bMjpwJrt5UFkt6Ua32fKk5z+g9N3fQInRYvcrfEXCqw0hF5cY2ieSh4 WBpQAdZtM4RsG3rn53gRTScrvbg7/7ZCrrBL/WzrUaM7CUnrUaqbdwzCSaoHR2Mo HiBJXFsm1bpD7fdagHvU4xrXW2mp+/7Kpg8d3KOVE5Jugb9O0YvRlgFY1tmgVaOj 2jFK+/xgzR02SSG1Ru/1ASm6NF7p/MJA1lGUPh3+r14rS9Koz8TYyE/I20Bxawnd UZVZRNrNY58MP0onoIGrgdSVZWTsootJ/kUL/vLdunsgEw1Ld3CCnbUgjEhruZeK Te/tV1ViamxWcvYjoMDNkHEklwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6Vk4Mw ma+695tt6PaaYbvDKQMpMB8GA1UdIwQYMBaAFJWKTtnX1k+sh70W7Io2Vx4aL1CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEVFRi82QzRDRDY5MEY4 ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2eUh2UmJzaWpaWEhob3ZV SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZcE8yZGZXVDZ5SHZSYnNpalpYSGhvdlVJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEVFRi82QzRDRDY5MEY4ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2 eUh2UmJzaWpaWEhob3ZVSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXyDNw6RnsCWQumoKoW9VixIh5cSaZnljGl5xwhiR1ZHjJJ664ErHZ Jjgb/ZaXOD8+H1/cvv10NnKJoCrFcIPlUqmnSbyQAY0CunEktu537pwZyClwPMtZ wqRXwpLIJn/PfJS8VZgGZXUCjvt6X38804eNJHl3GVIlo4SxaCOi1ZKWFBtaO4Cx XVv7cjOREVazXJTxV1jKJsXliv/Onj48or2tUyQVJ0IZprB9o0coLuutoKocWcim RfrJlEA4lD/BPhplcT0mGPlNXOnpsUaQL33mKqzd1dGzlEywKRMDgLEQ+wbW/dWg 4gwuIE8ZnumqNQ0OmZfUN2Ska73Rli5m -----END CERTIFICATE-----Generated at Sat Aug 23 14:33:39 2025 by rpki-client