$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: uxjaZVlWPofjIC3McBMZqsBLzRYd2YvT+R04GqN93HA= Subject key identifier: 82:F8:40:85:FD:28:15:2D:68:92:B1:62:62:4C:9F:89:E2:F5:6D:C0 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: CC Signing time: Sun 07 Sep 2025 06:11:44 +0000 Manifest this update: Sun 07 Sep 2025 06:11:44 +0000 Manifest next update: Sun 14 Sep 2025 06:11:44 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: VFqbf0owTL5LvlOZLOLl74H2JBC5IfPvyEXP3YnbErk=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: cRgznzypgNObdJ5+nUBdFPZbJ/XSHjedbIfP0KuyG4Y=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: Po3+3jwZqbergErT/CE07CzYXSwWNnVs3V/GDhF2/Rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Sep 7 06:11:44 2025 GMT Not After : Sep 14 06:11:44 2025 GMT Subject: CN=68bd2220-0d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3a:2d:e1:88:0d:d0:56:aa:62:aa:34:f9:77: 3b:00:5b:ab:c8:dd:c7:9d:31:5c:37:af:42:50:e8: 03:43:c6:c8:2b:f4:e7:c4:b8:d2:f3:77:e8:7c:8b: 2f:9c:94:ad:f8:bf:49:9b:1d:f4:cc:76:c6:39:c2: b4:bb:d6:6d:29:cd:3f:00:71:15:29:11:14:14:26: 75:66:51:34:e7:cb:f7:e4:8b:8a:89:a6:58:a8:30: 89:7d:06:43:da:23:3e:ec:3b:79:98:e6:d0:53:0a: de:f3:f4:3a:32:bd:2c:22:d3:be:b7:22:e2:77:72: 34:c3:39:a2:82:e6:9b:74:f3:93:93:8e:08:c4:35: 2a:06:55:c2:a4:5d:b4:3c:a0:7f:9c:26:c5:5c:94: f9:8d:a1:ea:6d:4d:25:74:4a:54:d1:38:93:7b:4d: a2:17:16:81:54:cc:65:f9:07:d5:e6:01:ee:86:05: 9e:d7:a8:82:11:30:13:13:1c:c7:b5:f6:02:98:78: f9:7b:57:ae:4a:1f:56:df:4a:52:4a:af:ec:ce:c3: e5:19:e4:07:e7:fc:ae:75:ab:b2:26:c8:95:f0:83: 48:66:c7:38:6e:37:f1:97:31:e2:a6:5b:4b:93:2a: af:2e:50:b9:77:a1:ec:db:5c:70:5e:7d:06:f5:2d: 17:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F8:40:85:FD:28:15:2D:68:92:B1:62:62:4C:9F:89:E2:F5:6D:C0 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:94:49:be:e9:b8:31:cd:f3:ef:52:84:40:17:de:5a:c0:49: a5:dc:10:35:e2:be:a5:05:be:f9:6f:02:68:e1:d7:d0:a6:34: 36:23:a0:8e:93:c4:84:25:de:01:9b:ea:86:75:af:eb:32:ab: e3:8b:dd:f3:44:98:42:1d:24:ce:0b:6f:3a:73:87:b1:49:ea: 48:33:12:df:59:57:58:05:fa:cb:4b:96:ac:b3:2f:f5:fc:46: e8:d9:69:4c:e3:25:82:0f:ed:97:76:27:c4:32:8d:af:1b:38: ab:3d:fb:8a:ae:bd:d7:6b:c3:ab:da:c9:ee:86:25:62:2f:7b: 87:4c:a0:ce:d9:d3:1d:a8:54:51:16:e4:44:34:37:8f:7e:f1: fd:2d:9d:a3:fd:0e:00:f0:1d:af:12:d0:24:b1:e0:ec:91:f9: fb:87:98:92:01:4d:07:e8:8f:28:62:0d:0f:48:f1:d5:ad:03: 31:ba:8b:84:42:ab:15:96:11:a0:b2:48:8c:ba:38:d5:46:81: 6a:3a:0c:f4:9d:10:95:ea:81:6c:71:db:ad:8b:e3:e5:4f:6f: c6:87:a7:68:5d:8b:17:fd:27:67:da:a7:ba:2f:bc:53:fa:75: ce:8d:e5:5a:85:d8:0f:41:99:d1:d2:dc:1d:dc:0a:bf:d7:cd: 76:87:c3:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwOTA3MDYxMTQ0WhcNMjUwOTE0MDYxMTQ0WjAYMRYwFAYD VQQDEw02OGJkMjIyMC0wZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjot4YgN0FaqYqo0+Xc7AFuryN3HnTFcN69CUOgDQ8bIK/TnxLjS83fofIsv nJSt+L9Jmx30zHbGOcK0u9ZtKc0/AHEVKREUFCZ1ZlE058v35IuKiaZYqDCJfQZD 2iM+7Dt5mObQUwre8/Q6Mr0sItO+tyLid3I0wzmiguabdPOTk44IxDUqBlXCpF20 PKB/nCbFXJT5jaHqbU0ldEpU0TiTe02iFxaBVMxl+QfV5gHuhgWe16iCETATExzH tfYCmHj5e1euSh9W30pSSq/szsPlGeQH5/yudauyJsiV8INIZsc4bjfxlzHipltL kyqvLlC5d6Hs21xwXn0G9S0XYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIL4QIX9 KBUtaJKxYmJMn4ni9W3AMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAlEm+6bgxzfPvUoRAF95awEml3BA14r6lBb75bwJo4dfQpjQ2I6CO k8SEJd4Bm+qGda/rMqvji93zRJhCHSTOC286c4exSepIMxLfWVdYBfrLS5assy/1 /Ebo2WlM4yWCD+2XdifEMo2vGzirPfuKrr3Xa8Or2snuhiViL3uHTKDO2dMdqFRR FuRENDePfvH9LZ2j/Q4A8B2vEtAkseDskfn7h5iSAU0H6I8oYg0PSPHVrQMxuouE QqsVlhGgskiMujjVRoFqOgz0nRCV6oFscduti+PlT2/Gh6doXYsX/Sdn2qe6L7xT +nXOjeVahdgPQZnR0twd3Aq/1812h8OU -----END CERTIFICATE-----Generated at Mon Sep 8 08:38:38 2025 by rpki-client