$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft File: yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft (raw, json) Hash identifier: rgFee+cTdoEr7vhAu+8ohCR8MH/9gkoy8JxkNdereVw= Subject key identifier: D2:A0:C7:24:64:1E:5D:45:D8:AD:BB:52:1C:6F:6F:E5:02:96:24:33 Authority key identifier: C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E Certificate issuer: /CN=A9147B4B/serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft Manifest number: 7E Signing time: Sun 07 Sep 2025 07:13:18 +0000 Manifest this update: Sun 07 Sep 2025 07:13:17 +0000 Manifest next update: Sun 14 Sep 2025 07:13:17 +0000 Files and hashes: 1: yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl (hash: PoZ1skC3LY04kgs8HkvYJK88BJz+Lh5H08qWnN13xMY=) 2: C4B41888CF3911EFBA26F564C4F9AE02.roa (hash: GeuC23bQErzKdp21604gyKYVikutfo5J7NTb8XiSV2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B4B, serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Validity Not Before: Sep 7 07:13:17 2025 GMT Not After : Sep 14 07:13:17 2025 GMT Subject: CN=68bd308d-3040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:56:b2:d2:b5:db:d9:e7:cb:7c:5f:67:9a:a8: f4:c1:23:f8:6e:5b:8e:1c:7f:36:1f:8d:0e:1f:b7: 95:eb:84:ba:3a:c4:67:69:7b:b4:80:3a:5d:53:eb: 61:d9:8c:fd:0a:d0:89:1d:6e:74:13:18:b8:f8:4a: 92:5f:d2:b8:7b:1b:72:87:93:e3:02:46:63:d8:73: 5c:74:a2:ec:6e:dd:19:dd:fd:55:dc:7c:d8:a5:08: f8:cf:fa:29:8b:87:62:e3:cd:d9:23:5c:76:fc:8e: c5:b9:c2:b3:73:b7:07:9d:0a:95:78:ba:f1:ba:f0: 92:36:f1:f9:a9:9c:1b:ef:ea:1d:a1:15:82:7b:cd: 7f:37:03:0f:02:e5:4b:11:d2:f8:dd:9f:5b:e7:0e: 16:64:fa:a9:87:c4:36:78:3c:bc:90:62:ce:9b:31: 97:75:43:71:ee:39:70:bb:d3:8f:c2:bb:13:78:b9: 6f:1b:c6:08:79:c4:2c:e6:0f:e4:4b:0f:22:9e:2f: 05:9f:f8:9c:00:55:77:c7:8d:fb:50:31:18:2f:fa: d9:64:be:79:f6:4d:16:d9:3f:2e:50:dd:9f:74:3d: d1:8b:22:40:8e:fd:2c:bc:c3:1f:b0:da:6b:8d:cc: 64:9e:5a:1c:45:6e:8e:c0:6b:25:26:81:bf:a4:0b: 8a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A0:C7:24:64:1E:5D:45:D8:AD:BB:52:1C:6F:6F:E5:02:96:24:33 X509v3 Authority Key Identifier: keyid:C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:46:30:ee:dc:59:9c:b9:08:8a:99:2d:1f:a8:5d:d5:45:19: d6:df:51:b6:94:5e:db:3f:71:cc:ae:1d:a7:4e:a3:44:2d:05: eb:d5:28:3c:1b:e4:6e:65:8b:26:be:7d:86:11:8d:d5:26:39: 72:61:52:ef:04:82:74:75:51:41:9e:d0:66:85:9e:74:e3:f1: 5e:fe:23:65:bd:76:c9:ac:5f:50:54:e9:29:2f:f9:3c:e7:83: 11:fe:9d:dd:c6:59:dc:b9:62:80:98:de:bf:56:22:5c:e1:a6: b5:45:3f:eb:88:d9:01:3a:eb:6e:2e:86:1c:f9:55:67:3e:86: 47:80:93:7e:98:6f:1d:bd:ee:91:30:68:0c:3f:43:10:2e:c9: 16:80:d4:bf:7d:25:e1:39:2a:74:56:a6:63:b7:0a:19:6a:30: e2:72:3d:7b:50:69:62:24:b3:a8:59:7b:12:e6:42:ff:5f:94: a1:42:fc:1a:b5:1d:88:dd:c0:a2:8b:93:b0:59:ac:59:8f:f4: 09:5e:23:a0:29:7f:39:8e:c3:2e:63:6c:08:7c:f6:48:0a:7c: 38:27:a9:d7:7a:d0:1b:4b:04:95:09:72:f5:f1:05:13:e4:b8: 26:22:51:91:15:d7:c9:ac:76:ec:4f:2a:58:df:f9:40:2d:ed: c0:0e:5d:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNEIxMTAvBgNVBAUTKEM4NzdDREYyMkQyNUI2RTMzRkM1RTQ5NUJFNTVFNTlE MEE5NDk4N0UwHhcNMjUwOTA3MDcxMzE3WhcNMjUwOTE0MDcxMzE3WjAYMRYwFAYD VQQDEw02OGJkMzA4ZC0zMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFay0rXb2efLfF9nmqj0wSP4bluOHH82H40OH7eV64S6OsRnaXu0gDpdU+th 2Yz9CtCJHW50Exi4+EqSX9K4extyh5PjAkZj2HNcdKLsbt0Z3f1V3HzYpQj4z/op i4di483ZI1x2/I7FucKzc7cHnQqVeLrxuvCSNvH5qZwb7+odoRWCe81/NwMPAuVL EdL43Z9b5w4WZPqph8Q2eDy8kGLOmzGXdUNx7jlwu9OPwrsTeLlvG8YIecQs5g/k Sw8ini8Fn/icAFV3x437UDEYL/rZZL559k0W2T8uUN2fdD3RiyJAjv0svMMfsNpr jcxknlocRW6OwGslJoG/pAuKnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKgxyRk Hl1F2K27Uhxvb+UCliQzMB8GA1UdIwQYMBaAFMh3zfItJbbjP8Xklb5V5Z0KlJh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I0Qi9FMTU2QTA0Q0NG MzgxMUVGODQ4NEU5MkZDNEY5QUUwMi95SGZOOGkwbHR1TV94ZVNWdmxYbG5RcVVt SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIZk44aTBsdHVNX3hlU1Z2bFhsblFxVW1INC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I0Qi9FMTU2QTA0Q0NGMzgxMUVGODQ4NEU5MkZDNEY5QUUwMi95SGZOOGkwbHR1 TV94ZVNWdmxYbG5RcVVtSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTRjDu3FmcuQiKmS0fqF3VRRnW31G2lF7bP3HMrh2nTqNELQXr1Sg8 G+RuZYsmvn2GEY3VJjlyYVLvBIJ0dVFBntBmhZ504/Fe/iNlvXbJrF9QVOkpL/k8 54MR/p3dxlncuWKAmN6/ViJc4aa1RT/riNkBOutuLoYc+VVnPoZHgJN+mG8dve6R MGgMP0MQLskWgNS/fSXhOSp0VqZjtwoZajDicj17UGliJLOoWXsS5kL/X5ShQvwa tR2I3cCii5OwWaxZj/QJXiOgKX85jsMuY2wIfPZICnw4J6nXetAbSwSVCXL18QUT 5LgmIlGRFdfJrHbsTypY3/lALe3ADl05 -----END CERTIFICATE-----Generated at Sun Sep 7 14:25:38 2025 by rpki-client