$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: cSJnmi4wBukllnnkxv/75nq45aT6wKTU2hc14nuWNi4= Subject key identifier: 9E:5F:CD:77:47:D5:BC:08:68:8F:C1:A4:77:58:5A:41:59:55:73:A1 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0ADA Signing time: Wed 02 Jul 2025 19:43:41 +0000 Manifest this update: Wed 02 Jul 2025 19:43:40 +0000 Manifest next update: Wed 09 Jul 2025 19:43:40 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: KtdmBsElU+JGKeHL7deZ3ZnUwox2dQgug6/H3tlTBqg=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Jul 2 19:43:40 2025 GMT Not After : Jul 9 19:43:40 2025 GMT Subject: CN=68658bed-5c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:97:25:72:3f:26:52:34:df:77:ac:ec:a5: 10:a5:3d:05:32:ec:d0:a2:83:db:ed:d7:1f:0d:84: a7:d2:61:70:1b:0b:66:a2:60:76:74:3b:f7:5e:a7: 14:64:d3:c6:5f:82:fc:8b:95:68:48:f2:17:79:11: 43:2e:84:9d:3a:99:4a:d9:28:df:b9:27:0e:bb:37: 68:42:48:e5:20:f4:14:42:b0:42:86:0d:c5:03:1c: 14:f6:41:6b:86:23:c2:1c:a1:12:a7:9c:c7:73:b9: 1d:3a:75:c6:f6:35:c2:79:60:78:0e:5d:fd:1f:4a: 4d:7b:df:45:e8:ec:af:98:50:ae:40:d7:22:fe:60: 11:e5:7d:11:c3:d5:32:1e:af:b7:bd:47:14:8c:63: 85:09:9d:16:f6:68:48:68:8d:7a:28:72:7b:d2:a4: b7:b0:10:40:9d:2c:63:23:eb:f2:c1:d3:f1:00:5c: fd:37:31:14:21:d4:80:60:2a:7f:55:7f:56:94:aa: d9:33:32:d0:78:59:67:00:db:1a:8e:e4:5f:f5:7c: 07:54:62:2c:61:fc:64:89:b5:97:47:10:1e:9d:d2: 1c:3c:51:c0:a8:1c:8a:85:1b:a4:68:a2:ea:c3:d1: 02:b5:aa:ed:09:69:82:4f:e0:cc:9a:22:03:ec:9d: a8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5F:CD:77:47:D5:BC:08:68:8F:C1:A4:77:58:5A:41:59:55:73:A1 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:de:64:c6:45:b0:8f:2f:45:32:5d:d5:6d:c1:61:ac:d4:a4: a0:54:da:75:47:e1:ca:6c:b2:a1:7a:26:a7:fb:e6:08:6e:06: 1f:7b:5d:da:77:90:48:bf:46:b6:88:db:0a:70:a7:77:9f:ec: 1c:36:27:ef:6d:27:fc:9f:9e:29:75:de:7e:6f:e0:27:fa:73: a0:e7:f7:a3:f4:f4:64:2b:96:6d:09:16:3f:04:f4:ed:5e:e8: 6f:d9:ec:f6:b3:07:cd:95:48:66:77:a9:4f:96:51:f1:ad:83: 0a:06:a7:0c:3f:d0:9b:af:e6:75:b9:41:89:71:35:64:80:f4: 22:6f:90:76:43:02:60:99:b5:e0:8c:85:3f:55:cc:a2:f4:e5: f4:c9:91:d2:24:13:db:d1:68:d7:dd:50:d2:98:c6:d3:ab:81: 83:98:cb:2d:81:b5:f1:93:2f:6c:a2:55:5e:11:61:91:fd:28: 8d:a4:6c:4a:47:ca:14:17:92:87:38:02:7d:cc:a2:ed:ec:b5: 60:ea:cd:1c:4f:da:fb:bc:1b:09:8e:20:eb:db:e0:fb:d4:85: c0:6a:84:a5:f6:99:8f:b0:d8:2a:dc:aa:ea:20:7e:b8:34:ce: 98:5e:e0:80:32:66:2a:97:42:ef:24:10:64:55:c1:9f:6e:fc: 85:bc:35:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUwNzAyMTk0MzQwWhcNMjUwNzA5MTk0MzQwWjAYMRYwFAYD VQQDEw02ODY1OGJlZC01YzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRGXJXI/JlI033es7KUQpT0FMuzQooPb7dcfDYSn0mFwGwtmomB2dDv3XqcU ZNPGX4L8i5VoSPIXeRFDLoSdOplK2SjfuScOuzdoQkjlIPQUQrBChg3FAxwU9kFr hiPCHKESp5zHc7kdOnXG9jXCeWB4Dl39H0pNe99F6OyvmFCuQNci/mAR5X0Rw9Uy Hq+3vUcUjGOFCZ0W9mhIaI16KHJ70qS3sBBAnSxjI+vywdPxAFz9NzEUIdSAYCp/ VX9WlKrZMzLQeFlnANsajuRf9XwHVGIsYfxkibWXRxAendIcPFHAqByKhRukaKLq w9ECtartCWmCT+DMmiID7J2omQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5fzXdH 1bwIaI/BpHdYWkFZVXOhMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp3mTGRbCPL0UyXdVtwWGs1KSgVNp1R+HKbLKheian++YIbgYfe13a d5BIv0a2iNsKcKd3n+wcNifvbSf8n54pdd5+b+An+nOg5/ej9PRkK5ZtCRY/BPTt Xuhv2ez2swfNlUhmd6lPllHxrYMKBqcMP9Cbr+Z1uUGJcTVkgPQib5B2QwJgmbXg jIU/Vcyi9OX0yZHSJBPb0WjX3VDSmMbTq4GDmMstgbXxky9solVeEWGR/SiNpGxK R8oUF5KHOAJ9zKLt7LVg6s0cT9r7vBsJjiDr2+D71IXAaoSl9pmPsNgq3KrqIH64 NM6YXuCAMmYql0LvJBBkVcGfbvyFvDV6 -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:02 2025 by rpki-client