$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: 1xK8w20fkadljf3MehL4433QmLrc7UvLNKthLkHizHA= Subject key identifier: D9:F0:38:1D:46:32:2F:D1:ED:D4:3A:59:73:7C:34:38:C0:DB:CB:F7 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01F0 Signing time: Mon 21 Jul 2025 02:36:20 +0000 Manifest this update: Mon 21 Jul 2025 02:36:19 +0000 Manifest next update: Mon 28 Jul 2025 02:36:19 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: +2LpQn5tree/JFfpR3z+Qffj9Y2weLTwocr7uT+zZpo=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Jul 21 02:36:19 2025 GMT Not After : Jul 28 02:36:19 2025 GMT Subject: CN=687da7a3-30e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:11:b2:3a:54:a8:e2:eb:da:91:1a:5e:c7:ec: 00:a0:7b:d9:bc:78:cd:43:5c:b7:f9:93:d5:9b:46: 6c:26:41:03:82:9f:7f:69:e9:ee:24:56:8f:9f:3d: c2:ee:1a:51:69:db:8a:c9:9e:50:f4:d0:a6:db:34: dd:e0:c4:17:7f:90:af:b4:db:58:b7:a6:e6:5c:51: 6c:5b:d3:9e:6d:bb:fb:6b:e2:ca:9e:e2:4b:14:0f: 11:1a:2f:6d:0d:73:81:6c:b6:15:02:5c:ae:53:1e: a0:d9:bb:db:ab:26:f4:aa:bc:f5:4f:24:4a:7a:af: 06:78:bd:e6:f4:65:18:0b:38:d8:d1:e3:96:fe:2d: a6:1a:11:57:b3:12:d7:3d:a3:64:2b:e9:b4:2d:0b: 48:28:e6:8e:42:81:de:d1:e2:00:46:80:16:56:91: 17:66:3e:d3:fe:92:06:4d:05:94:4e:e5:51:95:e6: b5:88:14:2c:97:4e:bc:e8:c6:09:00:8d:c9:d0:50: d8:6f:6b:6d:e4:46:a7:c4:d1:9e:6a:cd:14:28:13: 0a:e4:9d:1f:7d:cf:05:1c:c0:a3:3b:5e:99:13:7d: ff:b8:93:3a:d4:16:54:91:4e:d2:26:21:a9:72:2f: 64:1c:3c:28:76:f5:f9:16:64:0d:8b:06:f9:3a:ec: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F0:38:1D:46:32:2F:D1:ED:D4:3A:59:73:7C:34:38:C0:DB:CB:F7 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:24:65:29:6c:6f:6a:7a:89:98:43:a7:5f:07:c5:ee:0e:2f: 38:80:50:b8:1e:77:68:5a:2a:28:4f:ae:e8:87:69:67:2d:a9: 0c:c4:dc:97:06:09:f3:64:3c:60:2d:2d:76:66:a5:f1:a8:3c: b8:b6:6c:94:fd:75:bb:79:2d:b0:33:f1:c8:93:23:8f:19:4b: e8:c8:98:7f:38:e4:c2:21:58:29:ce:82:e4:5b:3f:fb:30:15: 29:ad:da:2b:61:30:e2:47:38:ab:5c:c1:df:96:f5:12:07:64: 29:a7:b2:cd:39:9d:94:bc:ce:84:bf:2f:24:58:52:ef:8d:94: 04:74:ac:eb:ae:25:de:56:d1:5c:b8:dd:f7:67:f5:1d:c3:06: 1a:74:a9:f8:5c:65:16:3b:f3:98:4a:67:d8:0b:7f:5a:cf:cf: bc:6c:25:96:8d:4a:e0:98:eb:f5:09:8d:8b:13:82:57:c3:98: e4:5a:20:f2:cd:79:23:b2:2b:f5:99:a7:e6:86:91:e4:43:77: 32:2d:97:ab:a1:2e:c1:e8:76:e3:b6:37:17:2f:32:43:ed:6a: 79:0a:27:6d:64:45:0f:23:81:5b:a1:1a:82:dc:e8:81:52:49: 85:81:f6:99:00:1b:f1:56:80:6e:dd:ac:20:68:7c:f4:47:f6: 0d:68:78:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNzIxMDIzNjE5WhcNMjUwNzI4MDIzNjE5WjAYMRYwFAYD VQQDEw02ODdkYTdhMy0zMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BGyOlSo4uvakRpex+wAoHvZvHjNQ1y3+ZPVm0ZsJkEDgp9/aenuJFaPnz3C 7hpRaduKyZ5Q9NCm2zTd4MQXf5CvtNtYt6bmXFFsW9Oebbv7a+LKnuJLFA8RGi9t DXOBbLYVAlyuUx6g2bvbqyb0qrz1TyRKeq8GeL3m9GUYCzjY0eOW/i2mGhFXsxLX PaNkK+m0LQtIKOaOQoHe0eIARoAWVpEXZj7T/pIGTQWUTuVRlea1iBQsl0686MYJ AI3J0FDYb2tt5EanxNGeas0UKBMK5J0ffc8FHMCjO16ZE33/uJM61BZUkU7SJiGp ci9kHDwodvX5FmQNiwb5OuxRXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnwOB1G Mi/R7dQ6WXN8NDjA28v3MB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfJGUpbG9qeomYQ6dfB8XuDi84gFC4HndoWiooT67oh2lnLakMxNyX BgnzZDxgLS12ZqXxqDy4tmyU/XW7eS2wM/HIkyOPGUvoyJh/OOTCIVgpzoLkWz/7 MBUprdorYTDiRzirXMHflvUSB2Qpp7LNOZ2UvM6Evy8kWFLvjZQEdKzrriXeVtFc uN33Z/UdwwYadKn4XGUWO/OYSmfYC39az8+8bCWWjUrgmOv1CY2LE4JXw5jkWiDy zXkjsiv1mafmhpHkQ3cyLZeroS7B6HbjtjcXLzJD7Wp5CidtZEUPI4FboRqC3OiB UkmFgfaZABvxVoBu3awgaHz0R/YNaHgy -----END CERTIFICATE-----Generated at Mon Jul 21 06:49:19 2025 by rpki-client