$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: bcvKd6GEhssmHUVcDXeGVAp5qLjpFAsJj2PrcA2934s= Subject key identifier: D5:14:30:6C:C0:45:18:D1:1D:6F:C4:3B:FD:32:8D:D6:96:48:4E:FC Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C4A Signing time: Fri 22 Aug 2025 18:43:08 +0000 Manifest this update: Fri 22 Aug 2025 18:43:07 +0000 Manifest next update: Fri 29 Aug 2025 18:43:07 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: yiQ59zUPSfSGuXEBdTF1G3OW9RsqqHXawgLLMYqwJmU=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Aug 22 18:43:07 2025 GMT Not After : Aug 29 18:43:07 2025 GMT Subject: CN=68a8ba3c-b958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3a:39:d2:2c:9b:99:6a:18:d2:a7:31:d7:40: 20:39:d7:d8:5b:aa:ab:75:cf:4e:d3:70:77:47:e9: eb:58:0c:69:c3:37:fb:79:97:62:e9:c8:e0:23:a0: df:28:99:f6:83:62:0e:c7:69:ef:aa:0c:98:e8:7e: 8f:5c:55:16:3b:d6:32:d3:86:26:22:16:2b:95:f4: 6d:06:1f:f9:88:54:ce:0f:5d:68:34:3b:8a:15:bc: 2f:82:57:83:cb:2f:89:e0:df:65:a2:e0:aa:76:fb: 9e:4c:26:ab:81:9b:ec:ee:0a:85:09:9f:ef:5c:fc: 1e:bb:bd:47:2f:ce:26:de:d0:d5:65:07:7b:f7:80: a7:24:f1:0c:72:3a:f9:31:9a:2d:7c:97:e1:46:c1: e7:ee:a2:c8:96:7b:e8:15:4a:d3:4f:1e:71:0f:b3: fc:d7:38:95:d4:c5:7b:91:84:91:2d:b9:b5:90:c7: 40:d5:8d:cf:29:eb:00:35:67:4a:34:d1:35:52:58: 9a:d1:f7:fa:fa:3a:fd:4b:3b:83:03:ce:cd:f1:75: 5a:1a:1f:9c:ab:8c:14:ae:13:f8:59:1c:63:f1:ed: c5:36:c7:2a:0e:0b:d8:eb:68:1a:ca:20:bd:2f:24: 33:45:e8:86:2b:61:5c:9b:19:9f:c6:91:48:40:da: 4d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:14:30:6C:C0:45:18:D1:1D:6F:C4:3B:FD:32:8D:D6:96:48:4E:FC X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:2d:b6:cb:54:e3:5f:5a:aa:68:70:ce:98:60:c2:5a:df:39: 65:26:76:47:8a:5f:39:2b:f3:2c:e5:9b:c8:47:6f:15:24:6b: ad:3a:65:9e:0b:ea:5d:89:83:9e:9d:0c:76:e1:94:a0:d6:33: 37:20:09:b0:36:fa:49:4e:fe:5a:87:fb:b4:f7:18:d4:d1:99: b9:82:af:f9:2e:89:46:9e:31:72:4d:c6:6c:4c:2b:d1:5f:0e: 24:c3:c3:5a:05:2b:c3:6f:e1:ec:96:cd:b1:80:6b:f2:76:d5: 0b:70:09:7b:36:22:50:39:fd:55:d3:b8:ca:5c:db:13:67:8a: 28:db:b0:aa:ab:e1:7e:b5:ff:7b:51:b4:46:18:aa:5b:96:74: 4f:1b:18:0c:bf:98:75:c1:17:13:13:16:77:76:ac:c7:40:42: 05:11:d6:ef:25:21:04:f4:8d:f1:ce:5a:29:a9:49:d5:4b:aa: 72:df:78:e3:62:54:f9:c2:c8:e1:14:e6:96:97:af:85:67:38: f8:3c:46:ca:b2:88:2e:8b:16:06:fa:5e:94:70:12:d7:74:fe: b6:5a:57:87:1e:db:88:21:fa:91:ba:b1:dc:5d:78:07:7d:26: 60:54:b4:33:3c:d4:42:f2:06:67:19:b7:bc:9c:c5:ba:64:16: 94:50:d0:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwODIyMTg0MzA3WhcNMjUwODI5MTg0MzA3WjAYMRYwFAYD VQQDEw02OGE4YmEzYy1iOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzo50iybmWoY0qcx10AgOdfYW6qrdc9O03B3R+nrWAxpwzf7eZdi6cjgI6Df KJn2g2IOx2nvqgyY6H6PXFUWO9Yy04YmIhYrlfRtBh/5iFTOD11oNDuKFbwvgleD yy+J4N9louCqdvueTCargZvs7gqFCZ/vXPweu71HL84m3tDVZQd794CnJPEMcjr5 MZotfJfhRsHn7qLIlnvoFUrTTx5xD7P81ziV1MV7kYSRLbm1kMdA1Y3PKesANWdK NNE1Ulia0ff6+jr9SzuDA87N8XVaGh+cq4wUrhP4WRxj8e3FNscqDgvY62gayiC9 LyQzReiGK2FcmxmfxpFIQNpNSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUUMGzA RRjRHW/EO/0yjdaWSE78MB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2LbbLVONfWqpocM6YYMJa3zllJnZHil85K/Ms5ZvIR28VJGutOmWe C+pdiYOenQx24ZSg1jM3IAmwNvpJTv5ah/u09xjU0Zm5gq/5LolGnjFyTcZsTCvR Xw4kw8NaBSvDb+Hsls2xgGvydtULcAl7NiJQOf1V07jKXNsTZ4oo27Cqq+F+tf97 UbRGGKpblnRPGxgMv5h1wRcTExZ3dqzHQEIFEdbvJSEE9I3xzlopqUnVS6py33jj YlT5wsjhFOaWl6+FZzj4PEbKsoguixYG+l6UcBLXdP62WleHHtuIIfqRurHcXXgH fSZgVLQzPNRC8gZnGbe8nMW6ZBaUUNDQ -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:52 2025 by rpki-client