$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: NpFRkoCBhPxf/J47cqp42iuETnDt1B4qjqmVcMFV5EQ= Subject key identifier: 13:31:84:8E:57:BA:8A:71:67:54:89:FA:66:38:4C:E6:19:34:3E:8A Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0201 Signing time: Sat 23 Aug 2025 02:28:44 +0000 Manifest this update: Sat 23 Aug 2025 02:28:44 +0000 Manifest next update: Sat 30 Aug 2025 02:28:44 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: PWUPJUynwHf/Mqu0M7PjLFkWmU97tNocYGkSiqLpeTU=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Aug 23 02:28:44 2025 GMT Not After : Aug 30 02:28:44 2025 GMT Subject: CN=68a9275c-bf14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:d2:b6:39:27:80:2c:10:51:7e:94:61:7d: b0:7a:b8:04:2f:79:d5:a9:77:79:6b:e1:af:00:df: d3:38:b2:41:95:a9:f4:59:36:ed:e9:b3:fd:40:8f: 9b:40:21:5c:10:8e:7f:67:cd:00:f3:90:b5:c0:07: 94:38:61:f3:c2:eb:e9:1e:44:af:78:f3:41:af:ba: ff:5c:0d:86:b7:d8:1e:75:9e:1f:8f:69:f3:b7:58: 77:93:08:0b:8c:19:9f:ad:60:cc:45:2c:2f:46:d8: 2a:bb:96:e3:40:a3:93:6f:4a:2c:44:72:a3:eb:b5: 0c:7b:cb:db:d7:e8:68:25:7a:85:4d:50:02:81:a5: 86:36:e9:06:81:39:5d:35:ef:22:0c:87:67:cf:a1: f5:7f:dd:6f:6a:dd:18:2b:93:88:67:68:a5:c5:e3: 77:31:7c:78:c0:fa:3b:60:a2:b7:55:62:69:1b:a1: cd:8a:32:c2:c5:9c:72:ec:ac:af:08:5a:1a:48:a5: 0b:f0:c7:39:5b:c7:46:83:9c:8b:78:27:d6:0c:4f: c1:21:8b:48:ca:6b:19:14:1c:77:12:e5:2f:c7:02: 0e:e1:94:90:d2:22:c8:ba:db:1c:db:5e:91:8c:49: be:94:a1:4d:09:8f:29:ab:d8:2e:74:9c:f1:11:05: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:31:84:8E:57:BA:8A:71:67:54:89:FA:66:38:4C:E6:19:34:3E:8A X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e2:ff:f6:ec:11:99:40:5e:ea:70:8a:bf:f0:8d:70:2d:ee: ec:73:74:2c:e3:aa:8f:94:6f:07:72:2a:46:2a:9e:8b:ef:ee: 22:07:05:77:0c:bc:97:9b:64:b1:d8:15:de:d6:af:5a:ac:65: 09:cd:e8:a2:dd:63:9a:24:98:ff:b2:64:a7:5c:45:eb:d0:f9: 8d:06:0c:8a:4b:e0:06:7c:9e:16:bb:b0:25:ff:8b:ce:a0:52: 0f:e7:5d:49:e7:7e:fa:09:b8:80:24:c3:e7:f7:8b:2c:f0:52: 82:fe:58:27:2c:0f:87:4b:9c:4c:40:bd:40:6a:f2:98:f6:58: 5f:95:67:9d:f8:c7:8c:f2:1d:a4:d4:a7:ef:9b:ce:85:65:4e: 31:ba:b2:5e:f9:83:7b:5a:1a:6f:f9:4c:bd:8c:23:a5:31:f5: f5:05:2f:5a:39:b8:bd:39:40:f9:cc:b0:53:8b:b2:93:1a:62: c5:10:2f:f4:30:f0:7e:dc:1e:74:af:b1:b8:fa:65:a5:09:2d: 20:a5:81:0b:0d:2f:ed:d8:ba:96:b2:3f:47:ee:57:e5:9d:a5: 02:0a:ad:2c:94:c5:f0:10:53:97:b9:89:07:91:8e:9b:4d:9a: 80:88:cb:55:b8:a0:c3:c1:db:9c:50:fa:f7:f8:00:fc:d6:a9: 7a:25:be:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwODIzMDIyODQ0WhcNMjUwODMwMDIyODQ0WjAYMRYwFAYD VQQDEw02OGE5Mjc1Yy1iZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04jStjkngCwQUX6UYX2wergEL3nVqXd5a+GvAN/TOLJBlan0WTbt6bP9QI+b QCFcEI5/Z80A85C1wAeUOGHzwuvpHkSvePNBr7r/XA2Gt9gedZ4fj2nzt1h3kwgL jBmfrWDMRSwvRtgqu5bjQKOTb0osRHKj67UMe8vb1+hoJXqFTVACgaWGNukGgTld Ne8iDIdnz6H1f91vat0YK5OIZ2ilxeN3MXx4wPo7YKK3VWJpG6HNijLCxZxy7Kyv CFoaSKUL8Mc5W8dGg5yLeCfWDE/BIYtIymsZFBx3EuUvxwIO4ZSQ0iLIutsc216R jEm+lKFNCY8pq9gudJzxEQUo8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMxhI5X uopxZ1SJ+mY4TOYZND6KMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW4v/27BGZQF7qcIq/8I1wLe7sc3Qs46qPlG8HcipGKp6L7+4iBwV3 DLyXm2Sx2BXe1q9arGUJzeii3WOaJJj/smSnXEXr0PmNBgyKS+AGfJ4Wu7Al/4vO oFIP511J5376CbiAJMPn94ss8FKC/lgnLA+HS5xMQL1AavKY9lhflWed+MeM8h2k 1Kfvm86FZU4xurJe+YN7Whpv+Uy9jCOlMfX1BS9aObi9OUD5zLBTi7KTGmLFEC/0 MPB+3B50r7G4+mWlCS0gpYELDS/t2LqWsj9H7lflnaUCCq0slMXwEFOXuYkHkY6b TZqAiMtVuKDDwducUPr3+AD81ql6Jb7x -----END CERTIFICATE-----Generated at Sat Aug 23 15:39:16 2025 by rpki-client