$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: b9R2eFn0u2Qi7Ag3qCP4XvsvoJQq3D/0uV0JY4J+vGY= Subject key identifier: 5F:48:69:CF:44:78:4B:1E:A4:44:2B:B5:57:5E:09:EE:63:45:15:64 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 0204 Signing time: Sat 23 Aug 2025 02:33:06 +0000 Manifest this update: Sat 23 Aug 2025 02:33:05 +0000 Manifest next update: Sat 30 Aug 2025 02:33:05 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: iRDdIC4M1DrCMNpxK0rT1Kg7DKhWGTY8wFj4fDa6ryQ=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: 7d+9V95blk3EIKh2Ixj3Euh7Ce2kReodQwZ4pY3gbnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Aug 23 02:33:05 2025 GMT Not After : Aug 30 02:33:05 2025 GMT Subject: CN=68a92861-b6b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:87:6f:f7:01:68:fc:44:a0:bc:7e:e0:1d: 95:d4:66:2b:03:8e:61:ce:8d:2b:ed:17:ea:39:8f: 06:a5:b9:4c:97:fe:39:fe:44:05:d3:99:85:f6:51: 0d:ac:b8:d0:f0:12:88:29:36:0c:80:38:f5:87:9d: 5b:fb:d4:8d:e3:1c:db:17:b2:75:82:50:a0:24:7b: d8:b9:cb:0f:bf:a2:41:58:16:34:1e:aa:3c:d2:0d: c6:23:04:71:99:a1:0f:01:5d:26:81:be:61:88:b1: 45:fc:62:aa:47:5a:86:46:2f:05:10:36:3f:67:f6: 61:a2:93:8d:c0:f2:d6:e2:68:e8:25:f2:53:77:d1: fa:cb:dc:75:6b:30:08:e1:53:3e:08:59:aa:83:04: d6:7d:9e:f5:77:a4:34:a0:6c:91:78:36:41:45:03: fc:af:e6:59:54:26:72:be:e1:70:4f:47:ee:c1:e3: 84:54:87:5f:db:87:ed:7e:95:4c:0d:f6:3b:2f:f3: c3:52:86:d6:42:45:83:84:f7:1b:f2:be:19:3a:51: a0:78:ad:a2:5b:fe:19:88:c1:7b:2f:ef:18:af:d1: 16:b1:65:70:fc:ae:58:a8:09:0d:dd:a0:7d:78:03: ff:13:de:01:a0:8d:23:eb:df:33:d2:4d:d4:9f:f7: fd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:48:69:CF:44:78:4B:1E:A4:44:2B:B5:57:5E:09:EE:63:45:15:64 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:df:71:99:97:5b:5c:91:7b:a7:d8:83:f4:d8:be:28:22:fe: 25:6d:f4:5d:27:99:b5:ce:7f:cd:8f:74:4e:5a:c4:bc:4b:a0: 6f:11:ae:56:cf:7a:a1:f5:56:c2:f6:28:d8:b3:31:cf:8c:51: 25:52:5d:d7:1f:ac:d7:f7:9f:ac:8c:91:55:79:18:5a:ee:e6: 13:b1:35:3c:6d:ec:65:72:e8:59:78:5e:0f:40:e6:c6:56:0e: 34:63:27:52:a5:b7:f4:20:f4:70:c0:2c:69:ac:c1:1a:07:31: 6c:74:59:6e:7f:ff:61:08:b3:68:5a:92:05:8c:da:04:fd:36: 01:75:e9:95:84:06:80:02:6a:82:ac:dd:a5:d5:ed:89:eb:89: 33:3f:9e:66:38:4a:d2:dc:9e:31:9b:2f:04:72:4e:d1:d5:82: b1:c1:e3:70:b8:7e:cd:7c:ec:eb:f7:6b:32:a9:61:57:de:c0: 79:cb:43:da:f4:50:db:cf:7c:8c:7a:86:4a:15:55:d7:27:5b: 2d:11:df:0e:c9:1d:cb:46:79:07:ac:59:60:7e:18:f0:a9:18: 0f:cb:5e:1c:6f:14:79:0e:a0:9a:ee:77:e7:71:e8:52:48:74: 3b:ba:67:78:28:81:a3:67:0b:40:f5:bc:17:fb:f7:a6:fc:0e: 3d:66:6f:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwODIzMDIzMzA1WhcNMjUwODMwMDIzMzA1WjAYMRYwFAYD VQQDEw02OGE5Mjg2MS1iNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqmHb/cBaPxEoLx+4B2V1GYrA45hzo0r7RfqOY8GpblMl/45/kQF05mF9lEN rLjQ8BKIKTYMgDj1h51b+9SN4xzbF7J1glCgJHvYucsPv6JBWBY0Hqo80g3GIwRx maEPAV0mgb5hiLFF/GKqR1qGRi8FEDY/Z/ZhopONwPLW4mjoJfJTd9H6y9x1azAI 4VM+CFmqgwTWfZ71d6Q0oGyReDZBRQP8r+ZZVCZyvuFwT0fuweOEVIdf24ftfpVM DfY7L/PDUobWQkWDhPcb8r4ZOlGgeK2iW/4ZiMF7L+8Yr9EWsWVw/K5YqAkN3aB9 eAP/E94BoI0j698z0k3Un/f9kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9Iac9E eEsepEQrtVdeCe5jRRVkMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF33GZl1tckXun2IP02L4oIv4lbfRdJ5m1zn/Nj3ROWsS8S6BvEa5W z3qh9VbC9ijYszHPjFElUl3XH6zX95+sjJFVeRha7uYTsTU8bexlcuhZeF4PQObG Vg40YydSpbf0IPRwwCxprMEaBzFsdFluf/9hCLNoWpIFjNoE/TYBdemVhAaAAmqC rN2l1e2J64kzP55mOErS3J4xmy8Eck7R1YKxweNwuH7NfOzr92syqWFX3sB5y0Pa 9FDbz3yMeoZKFVXXJ1stEd8OyR3LRnkHrFlgfhjwqRgPy14cbxR5DqCa7nfncehS SHQ7umd4KIGjZwtA9bwX+/em/A49Zm8J -----END CERTIFICATE-----Generated at Sat Aug 23 16:25:26 2025 by rpki-client