$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: nspMAH9a4/5nwZRwrdlal/aV1N7Gw7FK5P6NzXJFKlc= Subject key identifier: 89:F5:C5:DB:9D:74:11:34:BD:05:1E:A0:9E:CF:64:50:63:78:7C:51 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 0174 Signing time: Sat 23 Aug 2025 04:06:14 +0000 Manifest this update: Sat 23 Aug 2025 04:06:14 +0000 Manifest next update: Sat 30 Aug 2025 04:06:14 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: dbpr0Dxz/IgKgUGgJWDYWsbCtpykjHEiJy2HW+4f1U0=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: /lY6MRoQmBol07GaZSzAkv2Tfx/7fsrdKUpKLuZMxDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589, serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Aug 23 04:06:14 2025 GMT Not After : Aug 30 04:06:14 2025 GMT Subject: CN=68a93e36-4ec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b5:9c:9c:ed:27:bd:aa:82:80:d5:c1:c4:2e: 67:dc:00:e7:b6:52:38:b5:f4:58:e1:46:29:66:93: 5b:8c:0c:68:bc:48:63:21:6a:fc:5b:2e:64:15:7e: 0c:9b:27:c5:c6:15:2f:b6:f9:7d:76:40:fa:58:79: 46:7d:df:dc:c6:da:ab:dc:d0:25:45:91:95:8d:9e: 5f:fe:4b:fa:03:58:fc:e8:51:32:f1:d8:68:07:df: 6c:d3:4f:22:f2:54:41:b0:72:1e:c5:5e:b2:00:f7: 4d:43:70:9e:00:9d:06:f1:4d:25:4f:f0:14:c7:c6: ea:9d:54:e5:1f:9b:a9:14:12:49:66:aa:6c:c1:dd: 46:2b:a4:d4:71:21:be:ea:23:bc:ee:b3:d5:cd:16: 42:67:5a:69:3e:fb:82:71:e6:e7:43:cb:ef:eb:97: 47:4b:fc:ae:f8:45:5f:d1:64:60:0f:7c:34:fe:2d: c1:43:8c:6c:10:d2:77:b0:67:af:4a:d2:f9:8e:b1: fe:02:76:40:a9:17:8b:2b:a0:27:7c:63:75:a6:fb: 6a:02:5c:05:dc:06:97:4d:e5:9e:2f:28:c2:78:5e: 29:bf:e9:b2:d8:69:7a:42:2e:05:40:e9:52:01:62: 2e:55:3d:0b:e2:5e:84:bd:96:3e:8d:b4:ca:2b:fb: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F5:C5:DB:9D:74:11:34:BD:05:1E:A0:9E:CF:64:50:63:78:7C:51 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:b4:36:b8:21:f5:64:82:13:27:eb:d5:d8:a6:a4:ef:68:14: 30:d9:63:1d:a3:47:bb:e7:ed:4c:a1:8d:c4:ee:dd:89:8c:f9: cc:11:34:0d:9f:50:9c:ae:2d:3e:8a:e2:c3:3c:24:ff:e8:be: 4b:36:83:7f:ae:3a:55:0f:c8:db:bd:d6:a4:a6:81:a8:69:0b: 97:76:6f:66:49:73:2a:79:09:a1:7b:2a:42:46:b5:69:a6:47: e4:84:38:09:f3:bc:f8:f2:18:fe:ef:78:5e:10:fb:5b:1e:0d: 79:4d:53:aa:4a:13:6d:8c:98:b2:4e:46:73:1b:5d:48:c1:85: 0f:f7:21:30:b3:9c:13:43:8b:54:19:e1:04:c8:1a:97:e1:2a: 7f:f6:48:5c:13:59:c6:d2:8d:6a:da:f9:c5:c4:44:9a:ff:5d: a1:d9:c9:8c:f4:47:12:bc:01:a3:eb:83:ac:29:e6:a7:07:46: c4:c9:82:90:78:5e:a5:07:50:22:58:dd:c4:49:25:30:20:a9: c1:0d:6b:bb:a6:9b:19:d0:a4:c9:80:4c:1b:e0:5f:ba:04:39: 66:d0:77:b5:d9:0d:02:84:b9:ea:ed:75:6d:a2:14:72:9e:6d: 60:8c:f9:ed:96:3f:1d:b0:a9:da:45:14:8c:5a:66:f7:f3:6e: 55:70:13:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjUwODIzMDQwNjE0WhcNMjUwODMwMDQwNjE0WjAYMRYwFAYD VQQDEw02OGE5M2UzNi00ZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbWcnO0nvaqCgNXBxC5n3ADntlI4tfRY4UYpZpNbjAxovEhjIWr8Wy5kFX4M myfFxhUvtvl9dkD6WHlGfd/cxtqr3NAlRZGVjZ5f/kv6A1j86FEy8dhoB99s008i 8lRBsHIexV6yAPdNQ3CeAJ0G8U0lT/AUx8bqnVTlH5upFBJJZqpswd1GK6TUcSG+ 6iO87rPVzRZCZ1ppPvuCcebnQ8vv65dHS/yu+EVf0WRgD3w0/i3BQ4xsENJ3sGev StL5jrH+AnZAqReLK6AnfGN1pvtqAlwF3AaXTeWeLyjCeF4pv+my2Gl6Qi4FQOlS AWIuVT0L4l6EvZY+jbTKK/spyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIn1xdud dBE0vQUeoJ7PZFBjeHxRMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChtDa4IfVkghMn69XYpqTvaBQw2WMdo0e75+1MoY3E7t2JjPnMETQN n1Ccri0+iuLDPCT/6L5LNoN/rjpVD8jbvdakpoGoaQuXdm9mSXMqeQmheypCRrVp pkfkhDgJ87z48hj+73heEPtbHg15TVOqShNtjJiyTkZzG11IwYUP9yEws5wTQ4tU GeEEyBqX4Sp/9khcE1nG0o1q2vnFxESa/12h2cmM9EcSvAGj64OsKeanB0bEyYKQ eF6lB1AiWN3ESSUwIKnBDWu7ppsZ0KTJgEwb4F+6BDlm0He12Q0ChLnq7XVtohRy nm1gjPntlj8dsKnaRRSMWmb3825VcBPT -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:09 2025 by rpki-client