$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: 9lZ9O4oIQmMV1go4EjKaairsKp03O4ih0OiD6SvnuX8= Subject key identifier: EB:73:07:BD:8B:36:35:63:2B:93:37:C5:FA:AD:3F:95:AF:D1:96:A3 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 110D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 10FC Signing time: Thu 18 Sep 2025 17:26:23 +0000 Manifest this update: Thu 18 Sep 2025 17:26:23 +0000 Manifest next update: Thu 25 Sep 2025 17:26:23 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: i/3lBOYLJw9B9eVoRkE/AOmGyT3kvlF6jytWHdwHvXo=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4365 (0x110d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Sep 18 17:26:23 2025 GMT Not After : Sep 25 17:26:23 2025 GMT Subject: CN=68cc40bf-8921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1b:16:89:0d:3e:d9:ba:80:36:45:9a:ef:f0: a9:5e:3e:bd:49:79:0c:ab:e1:fa:61:83:7a:02:7a: 04:88:63:d3:2b:66:42:e2:e8:93:9e:d3:06:8e:08: f9:ad:7e:7d:9a:2e:f7:49:75:84:76:a5:e1:de:4d: 8d:59:c4:2a:78:d3:76:55:4f:e9:24:75:f0:aa:05: f1:66:02:25:7e:92:49:79:42:fb:d5:37:a4:95:2d: 72:b2:50:cf:79:5b:e4:76:c3:b6:fa:cd:fa:b6:85: cd:fa:a2:e7:16:95:a5:75:c4:7d:9b:dd:79:cc:19: 81:73:77:b3:04:38:8f:c4:7f:2d:b1:d3:81:24:5e: 3e:52:d4:6a:fa:02:fd:94:60:51:84:e2:5a:72:62: 95:f3:b7:e8:eb:62:af:9a:83:a5:66:2f:c9:18:3e: dc:40:ec:82:28:7d:2a:4f:1f:a2:bc:dd:dc:d1:fd: c8:30:3b:58:50:46:ea:a4:78:dc:bb:ae:92:06:ad: 34:04:5f:23:4d:b6:47:6e:70:99:81:96:33:cb:fa: 04:a8:82:34:3f:9e:c2:63:74:90:5f:49:9b:2c:7b: 25:0b:bd:24:db:8f:5e:ba:ec:f1:d0:01:ad:0c:70: 37:c3:78:e5:5e:35:e4:57:64:60:e0:41:63:e8:1b: a4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:73:07:BD:8B:36:35:63:2B:93:37:C5:FA:AD:3F:95:AF:D1:96:A3 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:0b:78:ef:53:1e:72:37:98:db:80:ad:9c:c8:e6:f8:c1:9c: 18:f7:4b:bb:29:e3:e2:20:19:ea:17:27:45:5e:ef:e6:04:96: f7:43:44:50:36:42:64:ec:8c:78:3a:5a:67:aa:f0:03:31:8b: 6e:df:ae:a0:1d:c3:a0:74:92:73:c4:7a:98:02:1b:91:7c:57: ae:6f:9d:98:b0:10:7e:2b:ae:25:2d:10:54:b3:e0:09:47:26: 35:50:9b:e4:99:b4:c1:8c:3b:b0:64:1d:91:a0:d2:cf:33:20: 14:77:47:03:c8:64:86:80:ba:0a:24:3f:b5:3b:a7:16:c2:69: 80:8d:50:f9:59:d4:ea:a3:83:87:b0:07:27:c2:1e:44:ba:8c: 89:ea:42:53:51:02:52:3f:af:00:43:58:22:7f:2a:46:93:83: 93:35:f8:01:7c:24:65:a5:75:3f:d0:45:15:11:ad:69:41:ed: 28:d0:39:90:08:5b:1c:5f:5c:c2:20:81:b9:db:7a:07:32:06: 40:fb:4a:29:81:30:17:f8:fa:63:e2:f1:9e:d7:17:3f:f1:77: a2:6a:86:83:aa:15:d4:59:85:53:bb:34:ba:44:fc:b4:7f:b0: c0:e5:30:50:fa:9b:3a:97:8b:c4:e7:86:e9:2c:38:16:f5:c5: 63:7c:c5:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwOTE4MTcyNjIzWhcNMjUwOTI1MTcyNjIzWjAYMRYwFAYD VQQDEw02OGNjNDBiZi04OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RsWiQ0+2bqANkWa7/CpXj69SXkMq+H6YYN6AnoEiGPTK2ZC4uiTntMGjgj5 rX59mi73SXWEdqXh3k2NWcQqeNN2VU/pJHXwqgXxZgIlfpJJeUL71TeklS1yslDP eVvkdsO2+s36toXN+qLnFpWldcR9m915zBmBc3ezBDiPxH8tsdOBJF4+UtRq+gL9 lGBRhOJacmKV87fo62KvmoOlZi/JGD7cQOyCKH0qTx+ivN3c0f3IMDtYUEbqpHjc u66SBq00BF8jTbZHbnCZgZYzy/oEqII0P57CY3SQX0mbLHslC70k249euuzx0AGt DHA3w3jlXjXkV2Rg4EFj6BukmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtzB72L NjVjK5M3xfqtP5Wv0ZajMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfC3jvUx5yN5jbgK2cyOb4wZwY90u7KePiIBnqFydFXu/mBJb3Q0RQ NkJk7Ix4OlpnqvADMYtu366gHcOgdJJzxHqYAhuRfFeub52YsBB+K64lLRBUs+AJ RyY1UJvkmbTBjDuwZB2RoNLPMyAUd0cDyGSGgLoKJD+1O6cWwmmAjVD5WdTqo4OH sAcnwh5EuoyJ6kJTUQJSP68AQ1gifypGk4OTNfgBfCRlpXU/0EUVEa1pQe0o0DmQ CFscX1zCIIG523oHMgZA+0opgTAX+Ppj4vGe1xc/8XeiaoaDqhXUWYVTuzS6RPy0 f7DA5TBQ+ps6l4vE54bpLDgW9cVjfMXF -----END CERTIFICATE-----Generated at Sat Sep 20 02:46:11 2025 by rpki-client