$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: fmUfQ78RGs9qEeW0ZLNJlqApuTeCvhZxLWb3iagIils= Subject key identifier: 78:48:36:3B:3F:3F:DC:11:8C:8F:E9:0C:9D:AA:CE:B3:16:88:1E:60 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 92 Signing time: Sat 23 Aug 2025 06:40:06 +0000 Manifest this update: Sat 23 Aug 2025 06:40:06 +0000 Manifest next update: Sat 30 Aug 2025 06:40:05 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: lK1r0wzm1uFS0f+08kri7SGVEgILBYIPo81kbHShuRA=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Aug 23 06:40:06 2025 GMT Not After : Aug 30 06:40:05 2025 GMT Subject: CN=68a96246-4f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0e:b6:8f:4f:14:d3:ee:2b:c8:a7:a5:64:ba: 39:75:5e:17:d7:4f:85:a2:cb:bc:eb:74:b0:da:a0: 5b:36:f9:82:bd:78:e3:c2:03:f6:a4:d5:80:3b:77: 83:f1:a7:9a:a2:f2:ce:37:80:0f:ce:af:e5:9d:04: 41:62:e6:19:68:7a:f0:9c:11:a6:41:aa:85:06:7c: 8c:2b:42:de:bc:14:ce:ae:1e:df:34:47:df:03:d4: 3c:7f:11:ad:37:95:30:a0:ed:31:80:b2:3d:76:08: 50:4e:02:d1:13:aa:37:9a:8f:f8:87:c6:10:2c:22: da:5c:80:70:ed:17:94:2b:f3:0b:cb:fe:65:9e:ac: 48:73:53:e3:2f:ce:fd:79:26:10:6a:78:aa:09:50: 58:2e:65:7e:e3:e1:33:a4:26:78:1e:63:c1:45:28: c9:c9:dc:ae:17:27:43:90:f2:ea:4c:80:98:34:cc: 87:9f:78:56:3e:b7:1c:dd:58:a3:bd:47:eb:7a:09: 4e:8d:41:d7:a2:6a:53:ad:b4:6f:a1:c4:5f:07:b9: 2c:7e:73:ef:93:9d:eb:ec:9a:40:1d:65:63:0f:cb: e7:35:7c:63:01:2e:68:d1:07:d6:2f:24:2e:8a:15: 05:4a:83:c7:33:50:2c:80:b6:df:63:96:af:f8:4a: cd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:48:36:3B:3F:3F:DC:11:8C:8F:E9:0C:9D:AA:CE:B3:16:88:1E:60 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:b4:da:f1:47:17:12:75:9d:56:14:7e:d3:92:fb:32:43:7d: f5:1d:6b:92:38:56:53:86:ac:6e:b6:53:0c:1f:59:0b:2a:f9: a8:49:82:48:27:ef:93:a6:9b:4a:24:f1:17:e5:fd:ce:ec:be: 01:33:06:25:85:6f:27:e1:66:bf:72:a4:92:69:62:25:1c:32: 1e:92:c3:7d:43:fd:5e:24:b6:09:d9:bc:0d:36:c9:77:32:7d: 6b:82:cd:d3:10:65:3f:49:7d:bb:46:cc:c8:0c:a1:97:f1:50: 5b:63:96:90:3c:d0:0c:3b:54:88:d8:ed:a5:51:7f:d9:a3:5a: a5:71:83:85:eb:3e:3e:3c:02:30:4f:ec:fd:56:11:27:f1:2d: 10:ae:29:60:35:a9:df:fa:14:4f:ee:83:0f:62:72:4f:72:42: 69:39:50:80:e9:57:b7:0e:bf:73:ca:70:6d:09:70:d6:c3:fd: 3e:c9:f8:f2:6d:78:a7:ab:7a:71:d6:3e:ab:0c:41:98:18:54: d6:b7:3c:1d:18:b4:fd:f0:25:58:42:5d:54:07:99:d0:8e:d2: 0c:19:7b:09:90:81:09:64:56:c3:8c:f9:c6:bf:2d:c2:25:3c: 7f:21:d5:17:71:ed:4b:19:c2:c6:79:2d:2f:aa:4a:ce:d8:d9: 04:45:43:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEM0UxMTAvBgNVBAUTKDYwNkVCMjk1ODI1NEFDOThCNjMzNkVBQTQxQUM4MEIy RENCMTlDNkUwHhcNMjUwODIzMDY0MDA2WhcNMjUwODMwMDY0MDA1WjAYMRYwFAYD VQQDEw02OGE5NjI0Ni00ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQ62j08U0+4ryKelZLo5dV4X10+Fosu863Sw2qBbNvmCvXjjwgP2pNWAO3eD 8aeaovLON4APzq/lnQRBYuYZaHrwnBGmQaqFBnyMK0LevBTOrh7fNEffA9Q8fxGt N5UwoO0xgLI9dghQTgLRE6o3mo/4h8YQLCLaXIBw7ReUK/MLy/5lnqxIc1PjL879 eSYQaniqCVBYLmV+4+EzpCZ4HmPBRSjJydyuFydDkPLqTICYNMyHn3hWPrcc3Vij vUfreglOjUHXompTrbRvocRfB7ksfnPvk53r7JpAHWVjD8vnNXxjAS5o0QfWLyQu ihUFSoPHM1AsgLbfY5av+ErNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhINjs/ P9wRjI/pDJ2qzrMWiB5gMB8GA1UdIwQYMBaAFGBuspWCVKyYtjNuqkGsgLLcsZxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEQzRS9CNURGQzhDMDlG RDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJKaTJNMjZxUWF5QXN0eXhu RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5HNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEQzRS9CNURGQzhDMDlGRDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJK aTJNMjZxUWF5QXN0eXhuRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAntNrxRxcSdZ1WFH7TkvsyQ331HWuSOFZThqxutlMMH1kLKvmoSYJI J++TpptKJPEX5f3O7L4BMwYlhW8n4Wa/cqSSaWIlHDIeksN9Q/1eJLYJ2bwNNsl3 Mn1rgs3TEGU/SX27RszIDKGX8VBbY5aQPNAMO1SI2O2lUX/Zo1qlcYOF6z4+PAIw T+z9VhEn8S0QrilgNanf+hRP7oMPYnJPckJpOVCA6Ve3Dr9zynBtCXDWw/0+yfjy bXinq3px1j6rDEGYGFTWtzwdGLT98CVYQl1UB5nQjtIMGXsJkIEJZFbDjPnGvy3C JTx/IdUXce1LGcLGeS0vqkrO2NkERUPO -----END CERTIFICATE-----Generated at Sat Aug 23 10:34:46 2025 by rpki-client