$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: xBq5eWZeJyje4NGYe4UswtR8M+LFH7E+8YU2OHty9Z4= Subject key identifier: 20:19:40:81:A2:C0:CF:99:00:E0:68:B7:44:53:13:30:23:8B:44:B9 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 0181 Signing time: Sat 23 Aug 2025 03:50:26 +0000 Manifest this update: Sat 23 Aug 2025 03:50:26 +0000 Manifest next update: Sat 30 Aug 2025 03:50:26 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: 7FgP3tFDf/ygGsekb9jBYNdYEcxvcxjJYAfuZjcWWsw=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: g09v6jk8fn3awL6foCEfKGlvvvO5I0PHpOGz6LziEuA=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: rhIhi3I6SpyrkjjQ3cL8Mw2vXOogWSjfaZP+3P/2bFk=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: qvUP6d81IdrzZbKdEjVG1snn+Y2Byr8jMGRCFKnK8TM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Aug 23 03:50:26 2025 GMT Not After : Aug 30 03:50:26 2025 GMT Subject: CN=68a93a82-260a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:79:fa:1b:4c:3e:ef:c6:ee:45:16:6a:84:72: 10:1c:84:85:bf:ad:ce:eb:ea:7d:31:98:d2:13:54: 54:f7:6c:32:53:5f:46:ef:cc:66:03:67:31:a9:9c: 85:d3:e9:e0:fd:79:c8:86:05:28:c4:65:38:9a:d2: 3e:5e:67:67:94:7e:66:44:6d:7c:65:ed:51:bb:1e: c4:dd:a2:28:ff:16:23:f5:2e:47:da:95:5f:25:96: 1c:50:29:e5:31:d9:61:43:ff:1d:48:9c:a4:8e:34: 37:77:f8:85:87:b4:97:74:4b:ea:83:3c:61:4e:9e: 01:43:fe:a2:58:a4:5c:5a:57:f8:25:34:36:ac:a6: 9d:4d:be:a7:46:63:77:66:92:c9:be:d4:66:b8:b2: 5b:58:b6:cf:e9:1a:f2:f3:91:95:01:ea:66:29:3d: 19:4e:aa:f4:ee:ff:b8:36:ef:77:dc:29:4b:6f:f3: f8:45:84:3a:ca:8e:93:65:8c:b5:67:3f:9c:8b:22: 2a:1f:16:24:1b:d6:a5:d1:ab:b5:47:f4:7a:a5:f6: d1:b1:bf:29:7d:88:bf:6f:23:66:9f:51:5c:e5:27: 18:2b:26:21:77:08:f6:1d:6c:c8:56:2c:9c:ed:a0: b8:6d:bf:fa:15:33:b0:24:a6:47:67:aa:c8:ca:00: a5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:19:40:81:A2:C0:CF:99:00:E0:68:B7:44:53:13:30:23:8B:44:B9 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:e3:c0:9b:5e:9a:00:f5:c1:70:ac:21:8f:27:a7:63:e2:e3: ae:f0:1d:54:8c:01:62:89:0e:49:1b:d4:8e:82:b0:68:9a:79: 00:a0:56:ca:7f:67:64:7b:e2:10:63:8d:57:fc:1f:a7:59:62: 59:58:23:02:0e:86:e8:3f:6c:c4:a4:24:73:8c:02:bb:c5:67: 73:fa:15:26:70:58:d3:dd:2b:ba:a2:d4:47:2c:4b:3e:90:43: f0:fe:fd:3f:30:c4:ed:43:cc:36:63:98:53:e2:91:25:d7:cc: 43:1d:ab:0b:17:93:74:e4:e5:c8:ee:d1:b2:65:3b:b0:70:50: 8e:38:7c:8e:5f:4a:4a:82:26:c3:e7:d8:de:d3:8e:eb:70:2b: fc:2b:58:12:f9:08:ad:e7:2f:09:a6:28:0f:50:06:a0:4d:bb: 34:9a:d5:39:88:cd:bb:07:9e:ee:e2:85:f3:25:39:88:79:3e: c3:e6:3e:9c:61:1d:4e:67:71:c3:a0:dc:4f:93:9f:8d:51:3d: 8b:f2:67:b2:7e:bb:6c:6c:16:3c:80:e5:1c:f6:98:b3:70:aa: 43:7b:b6:8c:2f:d5:3a:6f:e6:85:16:54:cd:d1:77:10:82:40: 7b:de:a2:f4:fa:24:e9:05:1b:fb:55:0e:86:d5:4d:28:10:4a: 8b:4e:7e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUwODIzMDM1MDI2WhcNMjUwODMwMDM1MDI2WjAYMRYwFAYD VQQDEw02OGE5M2E4Mi0yNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHn6G0w+78buRRZqhHIQHISFv63O6+p9MZjSE1RU92wyU19G78xmA2cxqZyF 0+ng/XnIhgUoxGU4mtI+XmdnlH5mRG18Ze1Rux7E3aIo/xYj9S5H2pVfJZYcUCnl MdlhQ/8dSJykjjQ3d/iFh7SXdEvqgzxhTp4BQ/6iWKRcWlf4JTQ2rKadTb6nRmN3 ZpLJvtRmuLJbWLbP6Rry85GVAepmKT0ZTqr07v+4Nu933ClLb/P4RYQ6yo6TZYy1 Zz+ciyIqHxYkG9al0au1R/R6pfbRsb8pfYi/byNmn1Fc5ScYKyYhdwj2HWzIViyc 7aC4bb/6FTOwJKZHZ6rIygClTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAZQIGi wM+ZAOBot0RTEzAji0S5MB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC548CbXpoA9cFwrCGPJ6dj4uOu8B1UjAFiiQ5JG9SOgrBomnkAoFbK f2dke+IQY41X/B+nWWJZWCMCDoboP2zEpCRzjAK7xWdz+hUmcFjT3Su6otRHLEs+ kEPw/v0/MMTtQ8w2Y5hT4pEl18xDHasLF5N05OXI7tGyZTuwcFCOOHyOX0pKgibD 59je047rcCv8K1gS+Qit5y8JpigPUAagTbs0mtU5iM27B57u4oXzJTmIeT7D5j6c YR1OZ3HDoNxPk5+NUT2L8meyfrtsbBY8gOUc9pizcKpDe7aML9U6b+aFFlTN0XcQ gkB73qL0+iTpBRv7VQ6G1U0oEEqLTn51 -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:05 2025 by rpki-client