$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: bop6DaaN4hL5MsRPmzlvMvSgcnUXVRdpC/rcSDrwRHg= Subject key identifier: 86:FD:63:66:65:DD:AD:BA:F1:56:AC:77:91:D9:A4:2A:BD:6A:D9:2D Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 01B7 Signing time: Sat 23 Aug 2025 03:13:16 +0000 Manifest this update: Sat 23 Aug 2025 03:13:15 +0000 Manifest next update: Sat 30 Aug 2025 03:13:15 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: Cbu0gRnaILaJYrRJKSerjEQLiW6rc18CqfPFEIr6Jv0=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: pHgzN34iRPTaLcApX6DppL1Ukj9nGDxnuXFRn1kqOaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Aug 23 03:13:15 2025 GMT Not After : Aug 30 03:13:15 2025 GMT Subject: CN=68a931cb-08da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:43:42:cb:be:e7:3d:47:dd:e9:73:11:7d: be:0b:75:52:53:1e:12:cb:79:bf:f5:90:10:35:c2: e4:e1:61:62:de:85:38:70:4e:c4:b0:a8:ce:c5:c8: 2e:9e:a1:46:d5:7b:e5:37:ae:5b:a4:31:1a:76:6c: 18:67:e0:04:f4:51:af:c2:78:ed:96:f4:f1:3d:4b: 6c:e0:5b:09:82:64:2d:26:0b:e5:cb:af:c7:3e:e5: cd:76:d2:f8:3a:bd:2c:8e:21:4d:11:9f:62:6c:b3: c1:ef:54:1d:83:f2:62:97:e0:23:f7:bf:53:73:01: e0:cc:c2:dc:8c:ac:f5:34:e5:a4:6d:66:ce:a0:88: 9d:64:78:7b:e4:06:e4:f5:e8:47:79:d2:92:0a:fa: 8d:c7:1a:a8:2a:0a:03:31:4a:b2:95:23:ca:5b:5f: af:c5:a6:ac:8a:fc:c2:0f:8e:ad:94:0e:31:f8:39: 4f:10:44:15:dd:a9:7e:20:d2:de:ca:27:d2:3c:ce: 82:e9:c7:2a:ae:cf:08:55:15:68:36:cd:fa:68:ed: 96:b3:3f:c6:05:e8:e6:fe:61:a8:78:1d:8f:42:a5: 40:3e:f8:b5:ad:e4:33:c0:a3:41:65:cc:3f:54:91: c7:f9:9a:e4:13:4b:e5:be:65:1a:70:72:2a:8b:a7: dd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FD:63:66:65:DD:AD:BA:F1:56:AC:77:91:D9:A4:2A:BD:6A:D9:2D X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d5:12:cf:bf:e3:6b:41:71:43:5d:52:84:bf:07:69:ce:7e: 2a:73:04:72:bc:00:4c:08:21:65:15:ad:21:31:16:fb:18:ff: f8:61:02:43:f1:c7:81:ce:6b:1e:34:c3:83:53:3e:ed:08:9e: fc:d0:a0:ec:b8:59:0c:5b:3c:e0:5b:6f:0a:d9:28:08:9c:7e: 40:32:72:28:73:d1:49:46:02:ea:22:14:df:e6:a6:c7:b7:59: 27:d7:c1:3e:7c:d2:0a:5a:38:67:af:d6:b2:8f:2d:15:e4:9e: 32:11:de:af:ce:8d:2b:76:77:24:8b:09:36:07:73:56:bc:b0: 9c:44:db:ef:d9:0b:c7:93:96:8c:aa:ca:5f:f5:1f:f0:54:73: bd:1b:a3:1d:92:95:f7:fc:12:7a:e9:fc:20:31:e2:80:79:b0: 2b:f3:a0:27:a0:b2:68:bb:c9:0a:5d:b9:12:43:71:67:57:d3: 15:76:a5:35:2a:b9:c4:e3:92:2d:f6:b6:5b:55:9c:bb:33:a5: 63:e6:d1:05:59:c8:30:ed:85:3c:fc:74:f1:0d:97:49:82:70: 25:e2:73:f4:b5:63:79:39:10:1a:a1:cb:4f:cd:fc:06:ea:c3: 91:4d:29:89:15:3d:7c:35:4f:04:90:bc:73:1c:aa:37:24:7e: 4a:ac:01:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUwODIzMDMxMzE1WhcNMjUwODMwMDMxMzE1WjAYMRYwFAYD VQQDEw02OGE5MzFjYi0wOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxlDQsu+5z1H3elzEX2+C3VSUx4Sy3m/9ZAQNcLk4WFi3oU4cE7EsKjOxcgu nqFG1XvlN65bpDEadmwYZ+AE9FGvwnjtlvTxPUts4FsJgmQtJgvly6/HPuXNdtL4 Or0sjiFNEZ9ibLPB71Qdg/Jil+Aj979TcwHgzMLcjKz1NOWkbWbOoIidZHh75Abk 9ehHedKSCvqNxxqoKgoDMUqylSPKW1+vxaasivzCD46tlA4x+DlPEEQV3al+INLe yifSPM6C6ccqrs8IVRVoNs36aO2Wsz/GBejm/mGoeB2PQqVAPvi1reQzwKNBZcw/ VJHH+ZrkE0vlvmUacHIqi6fdHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIb9Y2Zl 3a268Vasd5HZpCq9atktMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP1RLPv+NrQXFDXVKEvwdpzn4qcwRyvABMCCFlFa0hMRb7GP/4YQJD 8ceBzmseNMODUz7tCJ780KDsuFkMWzzgW28K2SgInH5AMnIoc9FJRgLqIhTf5qbH t1kn18E+fNIKWjhnr9ayjy0V5J4yEd6vzo0rdnckiwk2B3NWvLCcRNvv2QvHk5aM qspf9R/wVHO9G6MdkpX3/BJ66fwgMeKAebAr86AnoLJou8kKXbkSQ3FnV9MVdqU1 KrnE45It9rZbVZy7M6Vj5tEFWcgw7YU8/HTxDZdJgnAl4nP0tWN5ORAaoctPzfwG 6sORTSmJFT18NU8EkLxzHKo3JH5KrAEG -----END CERTIFICATE-----Generated at Sat Aug 23 14:30:41 2025 by rpki-client