$ rpki-client -vvf rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft File: YQPK5q-yXkC6nl2kxULP4JtndCo.mft (raw, json) Hash identifier: tyS1E1L2rY1RnNKuDvIO9oBsdtrcTA1XSk9dCc9u8iw= Subject key identifier: 8D:CD:D5:81:3D:2E:24:4C:F7:0C:E1:A1:99:79:5F:7E:DE:2C:F1:81 Authority key identifier: 61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A Certificate issuer: /CN=A9186193/serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Certificate serial: 099F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft Manifest number: 0997 Signing time: Sun 20 Jul 2025 20:12:07 +0000 Manifest this update: Sun 20 Jul 2025 20:12:06 +0000 Manifest next update: Sun 27 Jul 2025 20:12:06 +0000 Files and hashes: 1: YQPK5q-yXkC6nl2kxULP4JtndCo.crl (hash: 7lS+CH7Kzva1noYityQwSumvIvd+KKau1Ot8/PzGBsk=) 2: B781FD5C8FB411EAA396FB5CC4F9AE02.roa (hash: kppfjOmUGO+tWg93gbF2w14mllXA4v8g2v3smcz3zqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186193, serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Validity Not Before: Jul 20 20:12:06 2025 GMT Not After : Jul 27 20:12:06 2025 GMT Subject: CN=687d4d97-5d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e9:7b:c8:9d:cb:0f:dc:3d:a1:a4:02:bd:a7: 18:d6:80:b7:24:27:66:3a:33:f1:d9:44:ec:ab:6e: 1b:6b:6c:b6:01:15:35:86:5f:e6:d4:f4:55:6c:00: 6f:24:fe:b1:08:5f:93:9d:20:8b:5f:7a:4b:d0:7e: 8a:3c:cf:77:42:cc:45:44:79:ed:8b:3d:ac:9a:05: c2:43:4f:62:35:1a:08:4e:2b:dc:5f:ce:5f:7c:e9: a0:7a:66:19:21:35:29:7f:fb:cf:0c:bf:ed:ad:7d: 0f:4a:49:79:56:aa:10:9b:83:09:fd:2c:b6:fd:34: 87:e0:f5:26:d9:6a:e6:61:f8:bb:df:3a:aa:a6:e3: ee:e5:49:07:fd:bf:2a:56:ed:15:96:88:b1:a5:c9: b7:88:9b:79:6a:f0:bf:01:36:d9:9e:7b:68:92:75: d6:8e:95:c9:b7:0e:cb:a7:af:ea:34:69:76:73:cc: 57:4e:6e:82:72:ef:a4:a1:37:c2:5a:81:0e:9b:1b: d5:80:f6:32:80:2a:03:a9:3e:f6:ef:93:67:ba:0b: a9:83:a0:46:bb:0e:df:e1:d2:1b:a6:80:70:d3:36: d6:48:88:17:af:e4:f9:b4:32:2d:55:30:e1:f2:d3: cf:e8:7f:e0:c0:a2:2d:ce:45:d3:50:44:df:4c:86: f3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CD:D5:81:3D:2E:24:4C:F7:0C:E1:A1:99:79:5F:7E:DE:2C:F1:81 X509v3 Authority Key Identifier: keyid:61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:dc:ea:56:d1:92:8a:c3:e1:28:a8:ee:eb:e6:42:1c:37:97: e1:7c:e0:4f:b2:6d:0a:24:ad:35:86:63:00:48:d7:6e:3b:a7: 90:d5:39:c1:fc:e5:a1:03:9b:7f:09:95:34:c8:a1:18:d6:90: 9b:ae:8d:87:86:6d:80:ad:7a:7d:5b:67:fc:e1:d5:99:5f:e7: 4c:a4:8b:59:33:25:d9:61:3e:0c:4f:24:f5:5a:54:13:e5:5e: 26:91:26:f1:96:bc:b3:e6:a4:4b:91:eb:29:4d:2e:04:c6:c2: 53:d1:3a:5a:4c:94:cd:95:3d:e1:a1:06:3f:36:7b:a3:fc:46: 91:ee:2c:39:a0:98:0c:6d:01:4e:e5:9d:97:8d:1e:da:8a:c6: 39:27:34:14:6a:a5:ff:79:8b:7e:a8:ec:41:f1:61:62:70:a9: 0f:19:b3:db:18:d9:a2:21:7d:3d:ef:64:b9:b7:a6:0a:18:ff: 37:c8:6c:ea:14:f2:21:48:e3:00:75:af:27:c7:1c:5e:53:a9: 35:75:1e:2c:13:93:86:95:e4:48:13:70:86:e5:46:af:f5:17: 4b:a6:43:da:1e:b3:be:4f:86:35:a0:0c:e7:09:55:e0:d0:dd: 76:97:7a:c7:b9:90:c4:d5:d0:b0:de:55:52:b1:28:02:db:a1: 7c:13:68:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYxOTMxMTAvBgNVBAUTKDYxMDNDQUU2QUZCMjVFNDBCQTlFNURBNEM1NDJDRkUw OUI2Nzc0MkEwHhcNMjUwNzIwMjAxMjA2WhcNMjUwNzI3MjAxMjA2WjAYMRYwFAYD VQQDEw02ODdkNGQ5Ny01ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ul7yJ3LD9w9oaQCvacY1oC3JCdmOjPx2UTsq24ba2y2ARU1hl/m1PRVbABv JP6xCF+TnSCLX3pL0H6KPM93QsxFRHntiz2smgXCQ09iNRoITivcX85ffOmgemYZ ITUpf/vPDL/trX0PSkl5VqoQm4MJ/Sy2/TSH4PUm2WrmYfi73zqqpuPu5UkH/b8q Vu0Vloixpcm3iJt5avC/ATbZnntoknXWjpXJtw7Lp6/qNGl2c8xXTm6Ccu+koTfC WoEOmxvVgPYygCoDqT7275Nnugupg6BGuw7f4dIbpoBw0zbWSIgXr+T5tDItVTDh 8tPP6H/gwKItzkXTUETfTIbzmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3N1YE9 LiRM9wzhoZl5X37eLPGBMB8GA1UdIwQYMBaAFGEDyuavsl5Aup5dpMVCz+CbZ3Qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjE5My8xRDUxNDA1RThG QjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhrQzZubDJreFVMUDRKdG5k Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lRUEs1cS15WGtDNm5sMmt4VUxQNEp0bmRDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjE5My8xRDUxNDA1RThGQjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhr QzZubDJreFVMUDRKdG5kQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb3OpW0ZKKw+EoqO7r5kIcN5fhfOBPsm0KJK01hmMASNduO6eQ1TnB /OWhA5t/CZU0yKEY1pCbro2Hhm2ArXp9W2f84dWZX+dMpItZMyXZYT4MTyT1WlQT 5V4mkSbxlryz5qRLkespTS4ExsJT0TpaTJTNlT3hoQY/Nnuj/EaR7iw5oJgMbQFO 5Z2XjR7aisY5JzQUaqX/eYt+qOxB8WFicKkPGbPbGNmiIX0972S5t6YKGP83yGzq FPIhSOMAda8nxxxeU6k1dR4sE5OGleRIE3CG5Uav9RdLpkPaHrO+T4Y1oAznCVXg 0N12l3rHuZDE1dCw3lVSsSgC26F8E2gE -----END CERTIFICATE-----Generated at Mon Jul 21 08:07:11 2025 by rpki-client