$ rpki-client -vvf rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft File: yizBAkNd6FHdppmDFZEvBvQQTrE.mft (raw, json) Hash identifier: +FI50GpXPCHH+L9FGMB8HikOF8+5gHXOQ+NQfpTy+74= Subject key identifier: 08:67:83:84:29:D5:85:88:A5:A4:FF:81:EF:61:E5:34:E2:C3:09:8F Authority key identifier: CA:2C:C1:02:43:5D:E8:51:DD:A6:99:83:15:91:2F:06:F4:10:4E:B1 Certificate issuer: /CN=A9177562/serialNumber=CA2CC102435DE851DDA6998315912F06F4104EB1 Certificate serial: 0541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft Manifest number: 053C Signing time: Fri 22 Aug 2025 23:41:16 +0000 Manifest this update: Fri 22 Aug 2025 23:41:15 +0000 Manifest next update: Fri 29 Aug 2025 23:41:15 +0000 Files and hashes: 1: yizBAkNd6FHdppmDFZEvBvQQTrE.crl (hash: kfSeFhFU/j35I7KZ4domPrD9H5z3bERMOH1Wz3B7N+o=) 2: 973E6B76107C11ECB1F7DE5DC4F9AE02.roa (hash: SQGdKb1vFGjNIUOuBUka92JYyHUgvE8twdlpTLjrdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.crl rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177562, serialNumber=CA2CC102435DE851DDA6998315912F06F4104EB1 Validity Not Before: Aug 22 23:41:15 2025 GMT Not After : Aug 29 23:41:15 2025 GMT Subject: CN=68a9001b-dd63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:31:4c:4a:d5:45:64:20:44:69:3b:93:eb:c6: 15:a3:28:27:36:9b:39:6d:de:8e:c5:65:f0:dc:8d: 38:a5:e4:2f:58:59:e1:20:16:c8:cd:ae:bf:88:f7: 30:83:d5:12:a0:be:05:b3:30:e1:70:22:f6:01:5c: ef:2e:49:71:f1:e0:41:66:bb:fe:30:2b:f7:c8:80: 61:55:16:1d:d2:10:84:d7:15:50:7b:bb:ac:a2:d0: 58:ab:1f:6e:6d:f6:3a:62:27:c7:45:00:d7:e3:59: 91:75:a2:02:41:b2:f3:01:d0:f5:2f:60:4c:aa:1e: 95:78:40:2f:f5:54:c0:47:fb:93:74:34:58:3c:5c: 54:e0:03:0c:f6:ed:e3:04:e3:37:6e:ea:9b:67:5d: 6e:00:f4:67:ae:46:b5:20:4e:8c:6e:bc:d9:76:76: 4b:36:46:a3:aa:62:44:16:2c:ca:8e:08:0a:26:af: a8:f7:b1:1e:3c:f6:06:f7:93:8a:5f:90:bf:83:d3: 3f:f0:bc:49:d2:b9:67:89:cf:9e:1e:ae:ca:29:f3: 23:a5:ab:b4:0d:52:03:c4:31:39:82:8f:c3:50:8d: 46:87:4d:fd:77:51:3c:9b:d3:ea:04:2b:e0:af:79: 8a:a8:b0:fa:37:a4:67:e8:ab:76:58:75:0f:0d:f1: 8c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:67:83:84:29:D5:85:88:A5:A4:FF:81:EF:61:E5:34:E2:C3:09:8F X509v3 Authority Key Identifier: keyid:CA:2C:C1:02:43:5D:E8:51:DD:A6:99:83:15:91:2F:06:F4:10:4E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yizBAkNd6FHdppmDFZEvBvQQTrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177562/6A3F921C073011ECB1249841C4F9AE02/yizBAkNd6FHdppmDFZEvBvQQTrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:c5:cb:69:df:b5:40:58:0f:03:2e:68:f1:f9:b7:1d:22:61: 19:15:91:3f:54:8a:97:f1:02:f2:80:5b:47:32:3d:6c:f0:ae: 15:fd:b1:96:d4:55:f3:3e:53:ed:83:c4:be:6b:65:1a:be:9e: 07:a3:30:34:aa:00:2a:62:18:a6:b6:0d:01:86:b0:cd:3e:ff: 79:28:72:c3:e5:e8:61:5e:f4:dc:5a:47:54:bf:1b:ae:de:3e: 23:0b:54:13:b9:ed:a8:e9:10:5e:6a:5d:44:7e:76:a5:17:be: 57:d9:b7:21:82:00:d2:22:dd:54:ff:ad:44:52:2d:c5:87:81: 81:c8:dd:75:30:74:a0:47:85:e8:0b:65:c0:8a:47:2f:30:d5: 7c:5d:e1:ba:52:e0:54:fd:64:5e:45:91:99:b8:9c:47:e3:4b: 14:c7:e3:c1:1a:6e:dd:a1:bd:d8:cf:78:64:39:8b:d4:e4:51: 28:6e:29:6c:e2:86:5b:1a:9f:0f:a4:cb:78:39:c0:2f:36:7d: 60:92:56:ab:64:2e:2c:34:8d:3a:c1:a6:75:f2:85:87:b7:bc: 7d:10:41:02:d9:e7:9e:51:2c:5c:4d:4b:6a:9c:81:0e:fc:7d: ef:ae:e7:77:c7:59:d4:b1:c3:a5:de:97:8c:df:2b:0d:39:d7: 47:07:3d:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc1NjIxMTAvBgNVBAUTKENBMkNDMTAyNDM1REU4NTFEREE2OTk4MzE1OTEyRjA2 RjQxMDRFQjEwHhcNMjUwODIyMjM0MTE1WhcNMjUwODI5MjM0MTE1WjAYMRYwFAYD VQQDEw02OGE5MDAxYi1kZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DFMStVFZCBEaTuT68YVoygnNps5bd6OxWXw3I04peQvWFnhIBbIza6/iPcw g9USoL4FszDhcCL2AVzvLklx8eBBZrv+MCv3yIBhVRYd0hCE1xVQe7usotBYqx9u bfY6YifHRQDX41mRdaICQbLzAdD1L2BMqh6VeEAv9VTAR/uTdDRYPFxU4AMM9u3j BOM3buqbZ11uAPRnrka1IE6MbrzZdnZLNkajqmJEFizKjggKJq+o97EePPYG95OK X5C/g9M/8LxJ0rlnic+eHq7KKfMjpau0DVIDxDE5go/DUI1Gh039d1E8m9PqBCvg r3mKqLD6N6Rn6Kt2WHUPDfGMpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhng4Qp 1YWIpaT/ge9h5TTiwwmPMB8GA1UdIwQYMBaAFMoswQJDXehR3aaZgxWRLwb0EE6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzU2Mi82QTNGOTIxQzA3 MzAxMUVDQjEyNDk4NDFDNEY5QUUwMi95aXpCQWtOZDZGSGRwcG1ERlpFdkJ2UVFU ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpekJBa05kNkZIZHBwbURGWkV2QnZRUVRyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzU2Mi82QTNGOTIxQzA3MzAxMUVDQjEyNDk4NDFDNEY5QUUwMi95aXpCQWtOZDZG SGRwcG1ERlpFdkJ2UVFUckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClxctp37VAWA8DLmjx+bcdImEZFZE/VIqX8QLygFtHMj1s8K4V/bGW 1FXzPlPtg8S+a2Uavp4HozA0qgAqYhimtg0BhrDNPv95KHLD5ehhXvTcWkdUvxuu 3j4jC1QTue2o6RBeal1EfnalF75X2bchggDSIt1U/61EUi3Fh4GByN11MHSgR4Xo C2XAikcvMNV8XeG6UuBU/WReRZGZuJxH40sUx+PBGm7dob3Yz3hkOYvU5FEobils 4oZbGp8PpMt4OcAvNn1gklarZC4sNI06waZ18oWHt7x9EEEC2eeeUSxcTUtqnIEO /H3vrud3x1nUscOl3peM3ysNOddHBz35 -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:58 2025 by rpki-client