$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: u77RphZmi1n+t8hNwH3SYCs3eFZAcVx2W45WnrjUN6I= Subject key identifier: D9:16:1A:9C:BB:D8:A6:C0:E6:EE:D5:10:28:2A:44:60:0B:A7:41:88 Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 01C4 Signing time: Wed 17 Sep 2025 03:28:57 +0000 Manifest this update: Wed 17 Sep 2025 03:28:56 +0000 Manifest next update: Wed 24 Sep 2025 03:28:56 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: TwETrcj7k5baUY6lwTVV4MHM8hXGqcOkbS2ot4/8GVY=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: pHgzN34iRPTaLcApX6DppL1Ukj9nGDxnuXFRn1kqOaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Sep 17 03:28:56 2025 GMT Not After : Sep 24 03:28:56 2025 GMT Subject: CN=68ca2af8-899b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:09:81:1a:2c:9c:d7:c4:08:4d:e2:3a:86:c7: 4e:e8:63:26:fa:01:78:2d:8b:5d:28:fc:c5:c3:d4: 31:07:c7:7d:e2:c2:af:5a:bc:76:7f:26:e1:3d:88: d4:a3:aa:2a:01:de:7d:83:ab:c9:bb:b2:27:03:7d: ad:cb:93:d5:4a:23:29:08:03:f4:5f:36:b6:a8:38: 8b:5d:bd:c1:8b:d6:07:7f:65:3d:04:a0:68:fb:40: 88:e1:96:35:24:a7:d6:0e:73:80:d6:ed:62:65:ab: 97:73:4e:d7:c0:63:b5:25:d9:08:66:ad:16:82:d0: 72:84:ac:41:d6:f8:51:86:c0:75:5c:f7:a1:dc:05: f0:1c:18:0f:73:24:d5:ce:c8:1a:e3:77:e3:62:88: f2:c7:78:42:ec:d0:4f:c2:20:78:cb:38:5c:bc:cf: 45:b6:24:26:60:89:26:d2:4f:b3:b3:57:20:1a:48: 26:aa:75:dd:a6:d4:ec:cf:7e:d3:6f:e9:9c:40:9e: 7a:65:01:0a:3d:b0:3b:b0:4e:bc:8d:32:82:41:11: cb:b2:86:33:ee:bd:bb:65:9f:ea:39:d3:49:94:c5: 04:46:b9:dc:4f:d1:32:5d:af:81:6f:aa:43:ec:27: 25:a6:f3:bd:ec:4f:3f:d7:e2:dd:bf:4c:e4:9d:9b: b5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:16:1A:9C:BB:D8:A6:C0:E6:EE:D5:10:28:2A:44:60:0B:A7:41:88 X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8a:5f:89:8f:c4:30:6c:8c:2b:7c:db:77:62:bd:65:35:c9: 15:f9:f3:d7:b6:1b:50:bf:3c:c7:ea:ff:6e:82:1c:04:19:14: a7:1d:ec:40:06:b3:30:bc:bb:9b:c4:c2:c2:9c:c0:5f:96:c1: ac:8d:b5:c4:9d:e1:1e:d7:36:d3:40:cd:48:37:92:01:3e:9a: 58:90:d3:ba:f9:09:2f:e3:d2:79:1d:a5:c7:92:20:e3:7c:a9: 35:9f:cb:fd:39:3e:fd:58:b7:f5:c3:47:f3:a2:55:88:d4:3f: 92:cb:48:43:72:69:03:6a:7a:b1:dd:74:4d:07:0a:a6:8f:57: 96:e3:48:e7:5f:90:63:46:2f:7b:cb:62:ba:2c:d1:ef:8c:9a: 3c:59:dd:5b:3b:1a:f3:73:e2:e0:bc:77:df:b4:7b:3b:c6:db: da:24:49:6e:19:b3:44:ac:5c:4f:23:7d:78:e0:76:31:07:35: 02:0c:cd:aa:db:c2:f3:50:6c:51:4a:ec:a7:ff:63:e6:31:5d: 7e:f1:4c:9b:40:9a:ff:58:d2:5e:fe:11:41:96:da:d1:06:ca: 30:09:99:3a:a1:3c:ef:ee:da:02:76:9a:37:a5:50:47:36:bb: 0f:58:df:90:f2:de:24:68:8e:2a:37:b2:d5:ec:1a:dc:aa:6e: ca:ea:d8:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUwOTE3MDMyODU2WhcNMjUwOTI0MDMyODU2WjAYMRYwFAYD VQQDEw02OGNhMmFmOC04OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQmBGiyc18QITeI6hsdO6GMm+gF4LYtdKPzFw9QxB8d94sKvWrx2fybhPYjU o6oqAd59g6vJu7InA32ty5PVSiMpCAP0Xza2qDiLXb3Bi9YHf2U9BKBo+0CI4ZY1 JKfWDnOA1u1iZauXc07XwGO1JdkIZq0WgtByhKxB1vhRhsB1XPeh3AXwHBgPcyTV zsga43fjYojyx3hC7NBPwiB4yzhcvM9FtiQmYIkm0k+zs1cgGkgmqnXdptTsz37T b+mcQJ56ZQEKPbA7sE68jTKCQRHLsoYz7r27ZZ/qOdNJlMUERrncT9EyXa+Bb6pD 7CclpvO97E8/1+Ldv0zknZu1cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkWGpy7 2KbA5u7VECgqRGALp0GIMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCil+Jj8QwbIwrfNt3Yr1lNckV+fPXthtQvzzH6v9ughwEGRSnHexA BrMwvLubxMLCnMBflsGsjbXEneEe1zbTQM1IN5IBPppYkNO6+Qkv49J5HaXHkiDj fKk1n8v9OT79WLf1w0fzolWI1D+Sy0hDcmkDanqx3XRNBwqmj1eW40jnX5BjRi97 y2K6LNHvjJo8Wd1bOxrzc+LgvHfftHs7xtvaJEluGbNErFxPI3144HYxBzUCDM2q 28LzUGxRSuyn/2PmMV1+8UybQJr/WNJe/hFBltrRBsowCZk6oTzv7toCdpo3pVBH NrsPWN+Q8t4kaI4qN7LV7Brcqm7K6tiU -----END CERTIFICATE-----Generated at Wed Sep 17 19:18:29 2025 by rpki-client