$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: LbrpVO3tuNqXYa7WhH4k18JphKKXf3f7Z1ZFkl3ndGM= Subject key identifier: 0A:B4:50:16:FD:E3:0F:3F:A9:04:1B:31:C6:BC:10:06:A9:79:32:17 Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B34 Signing time: Thu 04 Sep 2025 16:24:51 +0000 Manifest this update: Thu 04 Sep 2025 16:24:51 +0000 Manifest next update: Thu 11 Sep 2025 16:24:51 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: aTnVp0Lv0+OgFqjGLr+sA8Lh710iWlBCiauNWkcdzqE=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: Jv1d6fF3qu1qMz0c/kGUVQ3xOsIZk2UWH2dC2+4vagE=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: hMIakiTTivB+fRa4Rnc2jL//XFH58YMCoj5LWIbNoBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7008 (0x1b60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Sep 4 16:24:51 2025 GMT Not After : Sep 11 16:24:51 2025 GMT Subject: CN=68b9bd53-d66e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:ea:16:69:65:91:77:ea:f5:11:08:04:cd: 60:65:18:42:dd:4d:e9:ac:43:07:c5:ba:74:41:6d: ee:56:73:ce:99:4b:74:f9:52:27:4c:b1:7d:bc:ef: 8a:04:1a:e4:13:ee:9e:5b:62:45:df:3e:72:c0:c9: a1:74:ba:a7:61:f3:d0:8e:ec:e8:f7:9b:ae:a8:1b: 45:07:9b:b8:fa:49:66:a5:12:01:d5:a5:64:bb:bd: 5a:c1:84:a9:f0:b0:6b:1c:a3:b2:e7:77:70:5e:ec: 63:7a:fe:34:bb:fb:5b:b0:ce:87:95:56:c4:22:a3: 04:1b:6a:4c:87:6a:bd:55:65:3c:8c:df:a8:84:62: 5f:53:4d:a2:39:db:04:2b:5c:d6:40:1b:8b:68:01: eb:bf:63:33:49:3a:1f:dc:89:a7:83:71:c8:30:a5: 1a:1c:c3:ec:03:fe:51:fa:42:45:5d:95:ea:57:73: 4f:c6:5e:26:6b:5b:f3:da:8e:12:99:17:9a:7e:08: af:5e:23:e9:c6:2c:58:9d:82:58:68:99:40:9b:84: 56:b9:93:02:a1:64:a0:0e:52:dd:ca:c7:25:c5:29: d8:a4:cf:e6:72:aa:90:48:3e:b2:5d:61:86:f1:fb: a5:3f:13:cb:d6:2e:c4:fb:ef:3e:9b:41:2d:0f:36: c1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B4:50:16:FD:E3:0F:3F:A9:04:1B:31:C6:BC:10:06:A9:79:32:17 X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:cf:64:0a:e2:93:3f:b4:58:4e:a3:db:34:a8:4d:62:68:f3: fc:64:00:56:5a:f8:5c:55:d1:a5:b4:10:87:77:08:1b:50:37: 86:63:ea:80:74:a9:e2:1e:ee:fc:97:95:b8:0d:c4:da:88:08: 50:1a:85:cb:4a:40:fe:d2:5d:68:39:7e:95:28:fd:1d:be:cd: 1b:33:e0:b3:9b:e3:27:58:60:64:28:79:ed:fa:41:8f:f0:d3: 8a:8d:f3:68:b4:22:a4:50:97:05:33:1e:a0:35:f9:55:a5:7d: a6:39:20:be:67:12:4e:a1:79:96:e1:a5:12:46:01:2c:24:29: 02:de:77:7e:1e:31:3c:a4:69:08:b7:26:3f:b5:83:41:97:01: 13:5f:59:e1:e3:41:b2:48:d2:d5:e6:a1:f0:83:82:ed:0c:18: 40:f3:8c:e5:aa:13:69:4d:51:6e:56:cb:d3:13:95:69:20:03: f4:77:25:15:87:cc:4b:94:70:38:d6:d0:3c:7d:e0:cb:73:08: a0:4c:35:c0:10:69:06:ee:ea:5b:6d:12:49:09:8e:b5:f2:a4: f3:94:c9:1c:2b:88:b8:c8:ea:c1:ca:b7:f0:ea:65:78:11:f1: 18:c8:ce:92:b0:7b:b8:44:01:0f:e2:b2:a7:72:ba:92:c1:18: b1:cb:ac:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUwOTA0MTYyNDUxWhcNMjUwOTExMTYyNDUxWjAYMRYwFAYD VQQDEw02OGI5YmQ1My1kNjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtibqFmllkXfq9REIBM1gZRhC3U3prEMHxbp0QW3uVnPOmUt0+VInTLF9vO+K BBrkE+6eW2JF3z5ywMmhdLqnYfPQjuzo95uuqBtFB5u4+klmpRIB1aVku71awYSp 8LBrHKOy53dwXuxjev40u/tbsM6HlVbEIqMEG2pMh2q9VWU8jN+ohGJfU02iOdsE K1zWQBuLaAHrv2MzSTof3Imng3HIMKUaHMPsA/5R+kJFXZXqV3NPxl4ma1vz2o4S mReafgivXiPpxixYnYJYaJlAm4RWuZMCoWSgDlLdysclxSnYpM/mcqqQSD6yXWGG 8fulPxPL1i7E++8+m0EtDzbBgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAq0UBb9 4w8/qQQbMca8EAapeTIXMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTz2QK4pM/tFhOo9s0qE1iaPP8ZABWWvhcVdGltBCHdwgbUDeGY+qA dKniHu78l5W4DcTaiAhQGoXLSkD+0l1oOX6VKP0dvs0bM+Czm+MnWGBkKHnt+kGP 8NOKjfNotCKkUJcFMx6gNflVpX2mOSC+ZxJOoXmW4aUSRgEsJCkC3nd+HjE8pGkI tyY/tYNBlwETX1nh40GySNLV5qHwg4LtDBhA84zlqhNpTVFuVsvTE5VpIAP0dyUV h8xLlHA41tA8feDLcwigTDXAEGkG7upbbRJJCY618qTzlMkcK4i4yOrByrfw6mV4 EfEYyM6SsHu4RAEP4rKncrqSwRixy6xN -----END CERTIFICATE-----Generated at Sat Sep 6 15:29:19 2025 by rpki-client