$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: wXVcTKQSASikf1pNpFw/D+q63h66EG2e1S8Ho3/JXFI= Subject key identifier: 4F:B0:E2:4B:1A:F3:29:D6:75:F3:37:AF:C9:C7:C5:96:C0:50:60:73 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0AF4 Signing time: Fri 22 Aug 2025 19:35:00 +0000 Manifest this update: Fri 22 Aug 2025 19:34:59 +0000 Manifest next update: Fri 29 Aug 2025 19:34:59 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: Qapsor9WaPNwZBCWdyagtEhdZf1HPK3Tg+QaO87FWBE=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Aug 22 19:34:59 2025 GMT Not After : Aug 29 19:34:59 2025 GMT Subject: CN=68a8c664-01ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:65:ea:cb:90:aa:4c:ad:8a:98:d2:7a:1a:72: 92:d3:27:fa:69:ce:1d:60:ca:91:2f:52:f4:6c:b4: a3:57:8f:77:3b:20:2c:64:26:9f:bd:ac:15:9f:5a: 0b:ae:57:1b:e7:55:76:4e:e4:14:8b:32:ab:18:ad: a3:0a:60:64:4d:00:ec:2c:07:a0:20:68:51:9f:8f: 0e:ac:ef:76:a3:fb:56:1a:8a:08:89:d4:92:7b:68: c5:59:c4:2f:79:07:f1:de:78:46:5f:c6:a5:2c:15: 0f:97:61:44:ea:68:00:ea:68:23:46:a8:98:0b:d3: 27:6a:89:1d:0b:07:cd:d5:7f:38:fa:1e:f2:1c:5b: 79:65:a3:79:3e:88:ec:e1:46:f7:e2:df:3c:52:ca: ce:b5:c8:8d:a9:4c:0c:bb:1f:04:59:96:fa:47:2f: a7:55:f0:42:97:4e:22:46:91:5d:cb:27:44:68:64: b6:0c:27:73:8d:a7:a5:4c:1f:50:78:9a:13:ba:58: 75:27:b4:a3:70:4f:e5:f7:4d:8d:0c:b2:bd:5c:04: 65:05:bf:01:19:6a:89:17:5d:18:d6:c0:bf:02:a6: b3:e2:1c:95:36:c4:30:3b:ee:f7:e1:8b:56:6e:91: b2:10:d6:6b:3d:1d:87:7c:31:71:6e:9b:4f:8f:cb: 26:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B0:E2:4B:1A:F3:29:D6:75:F3:37:AF:C9:C7:C5:96:C0:50:60:73 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:31:ed:df:1e:8b:59:f9:76:03:7d:f1:85:3e:56:aa:ce:43: 85:32:00:d1:0a:44:55:f1:e9:b6:0c:cb:b4:ca:ab:f2:ec:59: 31:13:35:4e:0b:e7:4c:16:82:80:59:68:d4:cd:b1:4b:e5:9a: 5f:c7:23:c5:28:f7:c8:a6:17:86:b0:d9:a9:3b:21:08:97:80: e2:5d:23:de:a3:b7:fc:1d:cc:a8:63:f6:fc:a9:95:7d:cb:e6: 7c:9f:1f:22:19:bb:bc:85:78:4e:a6:c9:83:ae:95:bb:80:10: ff:4d:25:6e:9d:2f:91:36:45:7c:12:e0:69:04:71:9b:42:1f: a8:6f:05:62:de:aa:7e:7a:1f:7b:e6:b9:17:53:8a:d4:8b:1d: a5:eb:72:2d:d3:3c:3a:e1:5f:05:c8:78:30:e5:d1:cf:56:e3: 47:a6:6c:e8:12:17:f9:8a:72:64:19:f1:e1:68:2b:c6:75:33: 17:a5:4e:b5:77:cf:26:28:7d:44:86:d5:e4:27:92:eb:d9:df: 25:d3:9b:92:f4:4f:dc:30:8a:e6:6b:6e:2a:75:b9:56:fc:2b: 47:08:e5:6c:5c:73:30:2d:e5:c0:d0:a5:ac:8a:83:aa:9c:91: 38:e9:98:b8:53:50:07:5a:e5:d2:b8:1d:9e:4e:34:bc:2b:5a: de:0d:5d:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUwODIyMTkzNDU5WhcNMjUwODI5MTkzNDU5WjAYMRYwFAYD VQQDEw02OGE4YzY2NC0wMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2Xqy5CqTK2KmNJ6GnKS0yf6ac4dYMqRL1L0bLSjV493OyAsZCafvawVn1oL rlcb51V2TuQUizKrGK2jCmBkTQDsLAegIGhRn48OrO92o/tWGooIidSSe2jFWcQv eQfx3nhGX8alLBUPl2FE6mgA6mgjRqiYC9MnaokdCwfN1X84+h7yHFt5ZaN5Pojs 4Ub34t88UsrOtciNqUwMux8EWZb6Ry+nVfBCl04iRpFdyydEaGS2DCdzjaelTB9Q eJoTulh1J7SjcE/l902NDLK9XARlBb8BGWqJF10Y1sC/Aqaz4hyVNsQwO+734YtW bpGyENZrPR2HfDFxbptPj8smtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+w4ksa 8ynWdfM3r8nHxZbAUGBzMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Me3fHotZ+XYDffGFPlaqzkOFMgDRCkRV8em2DMu0yqvy7FkxEzVO C+dMFoKAWWjUzbFL5ZpfxyPFKPfIpheGsNmpOyEIl4DiXSPeo7f8HcyoY/b8qZV9 y+Z8nx8iGbu8hXhOpsmDrpW7gBD/TSVunS+RNkV8EuBpBHGbQh+obwVi3qp+eh97 5rkXU4rUix2l63It0zw64V8FyHgw5dHPVuNHpmzoEhf5inJkGfHhaCvGdTMXpU61 d88mKH1EhtXkJ5Lr2d8l05uS9E/cMIrma24qdblW/CtHCOVsXHMwLeXA0KWsioOq nJE46Zi4U1AHWuXSuB2eTjS8K1reDV06 -----END CERTIFICATE-----Generated at Sun Aug 24 05:16:32 2025 by rpki-client