$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: CSKs6H5IvNroG1ZxjmUOwktZRFdxXb16RZofnCda6AY= Subject key identifier: CC:81:A1:70:24:A2:7C:7E:33:88:AD:33:0A:63:0A:47:65:B7:97:09 Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: CA Signing time: Tue 09 Sep 2025 05:51:43 +0000 Manifest this update: Tue 09 Sep 2025 05:51:43 +0000 Manifest next update: Tue 16 Sep 2025 05:51:43 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: FepGT3hfvNE8NY/NWebpL+MY0A9kErafKRpP0tEYLxY=) 2: C384F0025BA011EFB7E79861C4F9AE02.roa (hash: aEdHvDNzBa4hPG2blWZSu2BBm178UoZmxvwcICwviec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24, serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Sep 9 05:51:43 2025 GMT Not After : Sep 16 05:51:43 2025 GMT Subject: CN=68bfc06f-6bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:52:f6:e3:4c:3a:0d:76:35:d6:94:22:f4:37: 08:80:8c:f3:a7:2a:f5:d1:80:ec:85:8e:d5:f6:33: 38:cb:0b:06:d8:33:c1:5a:39:ed:32:c6:ca:4d:57: 6b:b5:e2:62:7e:01:26:68:0d:9e:c6:54:b2:be:58: b6:52:1d:3f:28:09:37:2d:93:23:d9:55:2f:a2:9f: 20:3b:ae:e1:f7:54:d6:65:44:0e:00:fc:87:77:be: 65:58:da:30:24:84:55:87:9a:b2:f3:01:4c:93:d0: 45:89:4a:21:84:cb:a2:ff:75:63:06:e6:b4:58:32: f9:95:af:e9:b5:97:01:27:ea:c5:48:e0:70:05:4f: 67:6e:f9:27:e9:56:c1:dc:a0:9a:0e:49:77:b4:93: 76:a9:95:bf:c4:b0:fb:4f:93:4e:a0:15:8f:9e:83: 67:5c:b6:b2:4e:98:da:b9:24:a5:c7:c5:9e:db:05: e1:7d:a7:d7:9f:58:3f:46:d9:35:df:13:73:7d:71: 82:d2:cb:e7:9d:9c:b5:40:2a:46:de:d8:c9:67:c9: a3:ae:ec:bf:b7:89:73:49:99:f9:56:c2:84:af:b3: e2:d4:d8:72:4c:e2:00:ca:07:1c:e8:36:b0:71:ac: f4:71:56:bb:eb:7c:68:e5:66:b7:39:19:bc:81:db: 4e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:81:A1:70:24:A2:7C:7E:33:88:AD:33:0A:63:0A:47:65:B7:97:09 X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:54:9a:69:38:42:0a:19:ff:11:78:47:3c:ce:4a:24:bd:05: 81:2e:9a:04:52:59:25:1d:8d:19:c8:3a:f8:e1:45:8c:65:35: 2b:ba:7e:06:13:37:32:75:3b:35:29:48:21:a5:e1:41:25:a9: 60:6a:53:da:3b:53:81:65:b1:84:d1:61:b8:5a:49:54:25:2c: cf:45:58:25:38:1f:9d:8a:7e:91:f3:3f:2b:a9:77:af:6f:1a: 5e:6f:48:4f:cf:61:d3:45:c6:4c:91:85:c0:31:29:ee:13:2f: 56:a7:42:6e:26:27:dc:9d:02:c2:0a:68:dd:eb:1d:ee:1e:7a: 8b:5d:9f:b4:83:1d:f8:08:94:fa:55:3c:bc:e4:c4:a5:56:18: 58:1d:7a:e4:3c:c4:b5:96:e8:bd:e9:5c:a7:d8:48:4d:b4:8c: 09:95:e2:ca:8e:2d:71:0a:05:b7:42:af:3c:ae:c6:37:17:f6: 7f:fe:49:a3:fe:c2:5f:f2:8b:04:72:a0:f2:68:42:22:67:ef: 91:82:84:b0:8c:18:46:a6:11:6c:e2:f4:b3:1f:1f:96:55:88: e5:29:27:74:df:97:40:3b:d1:a1:ae:ec:84:c2:63:35:11:58: a4:90:72:85:a0:c3:76:06:26:e9:0d:ab:da:bb:85:f0:5a:43: 40:cf:41:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCMjQxMTAvBgNVBAUTKENBNjRCMTczMTE5NTIwOTNDRDRENjBEQUFGMTdCNkFD QTBGN0E1MTYwHhcNMjUwOTA5MDU1MTQzWhcNMjUwOTE2MDU1MTQzWjAYMRYwFAYD VQQDEw02OGJmYzA2Zi02YmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1L240w6DXY11pQi9DcIgIzzpyr10YDshY7V9jM4ywsG2DPBWjntMsbKTVdr teJifgEmaA2exlSyvli2Uh0/KAk3LZMj2VUvop8gO67h91TWZUQOAPyHd75lWNow JIRVh5qy8wFMk9BFiUohhMui/3VjBua0WDL5la/ptZcBJ+rFSOBwBU9nbvkn6VbB 3KCaDkl3tJN2qZW/xLD7T5NOoBWPnoNnXLayTpjauSSlx8We2wXhfafXn1g/Rtk1 3xNzfXGC0svnnZy1QCpG3tjJZ8mjruy/t4lzSZn5VsKEr7Pi1NhyTOIAygcc6Daw caz0cVa763xo5Wa3ORm8gdtOUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyBoXAk onx+M4itMwpjCkdlt5cJMB8GA1UdIwQYMBaAFMpksXMRlSCTzU1g2q8Xtqyg96UW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkIyNC84QTE2RkY3MjVC QTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklKUE5UV0RhcnhlMnJLRDNw UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkIyNC84QTE2RkY3MjVCQTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklK UE5UV0RhcnhlMnJLRDNwUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEVJppOEIKGf8ReEc8zkokvQWBLpoEUlklHY0ZyDr44UWMZTUrun4G EzcydTs1KUghpeFBJalgalPaO1OBZbGE0WG4WklUJSzPRVglOB+din6R8z8rqXev bxpeb0hPz2HTRcZMkYXAMSnuEy9Wp0JuJifcnQLCCmjd6x3uHnqLXZ+0gx34CJT6 VTy85MSlVhhYHXrkPMS1lui96Vyn2EhNtIwJleLKji1xCgW3Qq88rsY3F/Z//kmj /sJf8osEcqDyaEIiZ++RgoSwjBhGphFs4vSzHx+WVYjlKSd035dAO9GhruyEwmM1 EVikkHKFoMN2BibpDavau4XwWkNAz0E4 -----END CERTIFICATE-----Generated at Tue Sep 9 14:18:17 2025 by rpki-client