$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: TB65CuMWIfLwIG1QaSTolfE5BwuiMMZ3P2uBAU8K0Mw= Subject key identifier: D2:5D:E9:D7:D9:83:E5:2C:DB:32:40:E0:27:B1:FB:5A:27:FB:5D:73 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 0190 Signing time: Sat 23 Aug 2025 03:35:09 +0000 Manifest this update: Sat 23 Aug 2025 03:35:08 +0000 Manifest next update: Sat 30 Aug 2025 03:35:08 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: GnKaoDm8H5r/HgsPdRpnVdCIqPzEL7aXw9dy6js8u/8=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: 1HSPz5fptSUhMZGOqCo4GWHbK/jQcYLJDQgsd3l//0k=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: qxrX+Z3cG6vZ3aS4ZRQYNGD9CmXUX4wxNipZHWRT9gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Aug 23 03:35:08 2025 GMT Not After : Aug 30 03:35:08 2025 GMT Subject: CN=68a936ed-3ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:11:fd:2f:e1:15:42:86:98:a8:8d:87:7a: 76:69:42:ed:bd:f8:37:ba:75:f3:36:0d:1d:0d:f2: 43:a2:df:be:b4:8f:1a:60:b6:84:fb:1e:f2:2d:cb: af:27:24:2d:8b:e7:e5:9e:61:61:c4:a5:a8:30:78: 03:5a:d8:b0:b3:9d:fc:15:86:3c:fa:b4:53:d7:68: 49:ba:53:7a:4c:33:56:f3:85:a4:a6:17:0d:f9:62: 8a:26:ae:50:9e:e1:1c:2c:6c:34:21:6a:f0:8f:e9: 41:d2:29:5d:67:c4:3f:39:1b:9b:78:cd:14:d8:02: b4:75:ab:8c:99:35:1a:e6:d3:26:57:58:54:40:f4: 75:14:f5:6e:94:74:06:7f:85:d7:a7:f1:0a:f8:17: dc:3e:0c:3f:1d:54:29:86:c7:7f:c2:73:66:f5:73: d8:24:b3:13:d1:db:92:ac:6c:ad:f2:c7:77:dc:39: 28:4e:2b:6a:26:fe:aa:e5:34:c2:ba:03:51:cc:38: 24:48:92:a3:3e:9d:65:1c:a3:ba:46:98:90:7b:9b: 39:03:5c:34:2d:b1:b0:5d:59:9d:ee:e9:b4:2c:70: 0a:87:10:fd:19:3e:60:04:52:b7:6f:f2:11:26:da: 05:68:d9:9c:94:20:42:52:a8:1e:02:3a:7c:57:4e: 3c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:5D:E9:D7:D9:83:E5:2C:DB:32:40:E0:27:B1:FB:5A:27:FB:5D:73 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:49:cb:2e:17:3a:ab:e6:ea:b6:10:a4:d7:25:c5:99:38:bb: 61:48:20:1f:6d:f4:39:e1:96:0c:86:6b:1b:6b:ad:e2:13:14: 1d:1f:68:ef:d9:f7:df:7f:41:6b:61:37:cc:c5:2e:90:1e:03: 75:f7:44:9d:57:c7:b1:9e:9f:dc:4a:30:f8:62:1d:69:71:2e: 13:f3:cf:71:5c:46:8d:29:8b:73:16:24:8a:3e:1c:10:5f:1b: 55:2f:76:1b:c5:78:d4:7a:ae:40:14:d3:2d:da:6d:a1:9b:ee: 3f:3a:73:3c:4f:37:ff:ee:38:ec:12:42:58:80:72:a8:8e:35: 72:a9:2d:0e:de:39:2c:e0:d3:c9:7a:12:cb:0b:49:a7:f2:8c: a6:c1:6c:65:4b:af:79:91:a1:0b:6b:13:14:e5:fd:16:28:b0: d8:5e:06:72:b3:9f:f7:42:0b:f1:83:ab:79:bc:53:f6:2e:ef: 47:ce:0f:05:e8:48:09:05:9b:07:11:fd:55:35:50:ea:30:26: 80:f4:f2:e5:5d:10:b7:39:c6:98:d4:86:40:7b:97:51:d5:8a: df:9d:cf:05:10:af:e5:f0:7b:a5:b9:af:3a:50:5a:39:26:94: 01:fa:17:5f:47:39:36:c5:bb:b7:cf:21:88:90:7a:a3:49:00: ea:74:c5:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwODIzMDMzNTA4WhcNMjUwODMwMDMzNTA4WjAYMRYwFAYD VQQDEw02OGE5MzZlZC0zZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JUR/S/hFUKGmKiNh3p2aULtvfg3unXzNg0dDfJDot++tI8aYLaE+x7yLcuv JyQti+flnmFhxKWoMHgDWtiws538FYY8+rRT12hJulN6TDNW84WkphcN+WKKJq5Q nuEcLGw0IWrwj+lB0ildZ8Q/ORubeM0U2AK0dauMmTUa5tMmV1hUQPR1FPVulHQG f4XXp/EK+BfcPgw/HVQphsd/wnNm9XPYJLMT0duSrGyt8sd33DkoTitqJv6q5TTC ugNRzDgkSJKjPp1lHKO6RpiQe5s5A1w0LbGwXVmd7um0LHAKhxD9GT5gBFK3b/IR JtoFaNmclCBCUqgeAjp8V048zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJd6dfZ g+Us2zJA4Cex+1on+11zMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ScsuFzqr5uq2EKTXJcWZOLthSCAfbfQ54ZYMhmsba63iExQdH2jv 2ffff0FrYTfMxS6QHgN190SdV8exnp/cSjD4Yh1pcS4T889xXEaNKYtzFiSKPhwQ XxtVL3YbxXjUeq5AFNMt2m2hm+4/OnM8Tzf/7jjsEkJYgHKojjVyqS0O3jks4NPJ ehLLC0mn8oymwWxlS695kaELaxMU5f0WKLDYXgZys5/3Qgvxg6t5vFP2Lu9Hzg8F 6EgJBZsHEf1VNVDqMCaA9PLlXRC3OcaY1IZAe5dR1Yrfnc8FEK/l8Hulua86UFo5 JpQB+hdfRzk2xbu3zyGIkHqjSQDqdMXr -----END CERTIFICATE-----Generated at Sat Aug 23 17:04:31 2025 by rpki-client