$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: t4chyndQ7H8JFA9N0ikjxRaZkk14M+lcQCLJEKoc0pk= Subject key identifier: 02:73:F1:EF:05:65:FE:D6:18:53:91:DC:4B:A3:1C:9C:A5:BF:8F:C5 Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 01A3 Signing time: Sat 19 Jul 2025 03:29:24 +0000 Manifest this update: Sat 19 Jul 2025 03:29:23 +0000 Manifest next update: Sat 26 Jul 2025 03:29:23 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: wpa3ZAxpcuAodQOWMF5fryK7dda2/Occ/355YY8RS5I=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: W0hL1B4Pu9Y3eTRJdGcmU+N0LKwGZJeiFs+2ym6914M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Jul 19 03:29:23 2025 GMT Not After : Jul 26 03:29:23 2025 GMT Subject: CN=687b1114-9aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cd:38:ea:e2:9a:81:60:03:87:96:37:fa:16: f1:f4:01:e1:35:56:a7:18:50:17:59:17:0a:b5:0a: b9:d4:79:d2:dc:06:ff:85:63:19:b8:a9:62:46:16: c7:a5:e8:68:e7:42:ff:a2:e7:6c:66:74:46:aa:60: 9b:f2:48:72:60:a2:e6:c0:20:d2:fb:99:c2:23:74: 14:47:25:62:f6:7a:17:eb:ef:0c:e9:45:60:90:aa: aa:be:f1:e8:7d:9f:ca:84:48:e4:50:91:2c:22:c2: 95:41:a5:cd:e1:5d:ef:e8:a3:f4:75:f6:a0:70:e4: 87:d2:4f:54:f9:c2:0d:ee:21:77:67:4f:8a:ff:74: ab:5b:d5:11:8d:8b:bc:b9:92:76:17:96:62:ab:4f: 05:53:18:6a:38:b2:e3:81:1a:9b:ca:5d:7a:f3:cf: 81:f5:f3:0a:95:57:11:67:6b:e9:5d:b3:77:f3:96: 9e:4d:9c:85:c2:83:fa:91:88:9b:0e:78:16:71:ac: 3c:10:37:0d:f3:ea:c0:3d:32:9b:fe:3c:f6:00:a7: 20:95:14:4b:54:da:17:9f:c7:7c:d1:fc:06:6f:07: a9:88:f5:01:49:78:6c:7d:c7:f9:1d:87:16:09:e4: 66:d4:3a:6f:a0:58:aa:da:ab:08:24:7a:b9:ac:69: 9e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:73:F1:EF:05:65:FE:D6:18:53:91:DC:4B:A3:1C:9C:A5:BF:8F:C5 X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:86:e6:9b:66:4e:fd:71:dc:31:ab:84:aa:4e:f7:3a:d1:14: 12:80:47:95:3a:a1:c6:68:65:7d:06:09:80:73:e1:8b:f3:f0: 76:19:70:a0:3c:b2:f5:07:3d:45:65:21:71:83:96:d3:56:5e: e8:25:53:de:0f:21:77:ad:ca:c9:21:c3:36:34:a8:32:7c:a6: 79:76:59:de:f1:49:1e:26:ab:78:a1:d8:47:d8:2c:c1:aa:92: c5:2d:83:54:ad:ca:33:6b:e6:85:d6:cc:ea:12:39:00:e9:47: 9b:49:d3:09:a3:4e:8a:fb:db:fc:3f:fe:1f:f4:c2:12:e5:e0: 0e:4b:13:92:5a:82:29:f1:50:1d:1d:c3:11:55:05:fa:db:28: e2:86:b7:16:b4:3f:48:1d:f6:41:ce:d5:f1:cf:ac:0a:25:fb: de:36:5b:e7:5e:f7:22:d7:95:2b:25:3b:2a:8f:52:d0:4e:ab: 8b:9e:e1:82:92:67:ed:54:6f:bf:2b:d3:c6:b5:12:11:af:d4: 38:07:10:ea:93:c6:7f:c1:fa:ee:ee:17:18:e1:6b:59:fb:6a: 98:4c:fe:09:82:af:94:eb:89:72:56:5a:46:a5:d4:63:76:62: ca:8b:13:6a:9f:7f:ba:2a:95:ac:b0:df:18:e6:64:f8:bb:b9: 64:43:87:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUwNzE5MDMyOTIzWhcNMjUwNzI2MDMyOTIzWjAYMRYwFAYD VQQDEw02ODdiMTExNC05YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2M046uKagWADh5Y3+hbx9AHhNVanGFAXWRcKtQq51HnS3Ab/hWMZuKliRhbH peho50L/oudsZnRGqmCb8khyYKLmwCDS+5nCI3QURyVi9noX6+8M6UVgkKqqvvHo fZ/KhEjkUJEsIsKVQaXN4V3v6KP0dfagcOSH0k9U+cIN7iF3Z0+K/3SrW9URjYu8 uZJ2F5Ziq08FUxhqOLLjgRqbyl1688+B9fMKlVcRZ2vpXbN385aeTZyFwoP6kYib DngWcaw8EDcN8+rAPTKb/jz2AKcglRRLVNoXn8d80fwGbwepiPUBSXhsfcf5HYcW CeRm1DpvoFiq2qsIJHq5rGmepQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJz8e8F Zf7WGFOR3EujHJylv4/FMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/huabZk79cdwxq4SqTvc60RQSgEeVOqHGaGV9BgmAc+GL8/B2GXCg PLL1Bz1FZSFxg5bTVl7oJVPeDyF3rcrJIcM2NKgyfKZ5dlne8UkeJqt4odhH2CzB qpLFLYNUrcoza+aF1szqEjkA6UebSdMJo06K+9v8P/4f9MIS5eAOSxOSWoIp8VAd HcMRVQX62yjihrcWtD9IHfZBztXxz6wKJfveNlvnXvci15UrJTsqj1LQTquLnuGC kmftVG+/K9PGtRIRr9Q4BxDqk8Z/wfru7hcY4WtZ+2qYTP4Jgq+U64lyVlpGpdRj dmLKixNqn3+6KpWssN8Y5mT4u7lkQ4fZ -----END CERTIFICATE-----Generated at Sun Jul 20 11:21:31 2025 by rpki-client