$ rpki-client -vvf rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft File: YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft (raw, json) Hash identifier: +QXOF6unymJi8ndh7ObttxGnFgr4jDt+rSuOSeQaX0w= Subject key identifier: 13:C0:05:D7:C2:8E:84:D9:51:DE:B5:1F:7D:3F:71:B7:B8:03:1B:18 Authority key identifier: 61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 Certificate issuer: /CN=A914F7F0/serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft Manifest number: C6 Signing time: Thu 21 Aug 2025 05:59:22 +0000 Manifest this update: Thu 21 Aug 2025 05:59:21 +0000 Manifest next update: Thu 28 Aug 2025 05:59:21 +0000 Files and hashes: 1: YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl (hash: 7zUeJdmxjthxiysQUskUrcwJvwkSt6lntuJy8RZIALk=) 2: 9A826D9059D611EF814F004DC4F9AE02.roa (hash: 3aT0muq2AP76fHDV6M45dsCuBJOlUCEA5kwKeP8ww7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F7F0, serialNumber=611CB556C87BC049A5A43EB1F297107EFF1B7940 Validity Not Before: Aug 21 05:59:21 2025 GMT Not After : Aug 28 05:59:21 2025 GMT Subject: CN=68a6b5ba-29c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bb:92:7c:32:35:d0:31:4d:17:65:be:85:b1: d2:a1:8f:b3:e4:b5:2e:07:74:0c:87:88:58:61:ef: d8:47:34:69:aa:74:f7:fd:8b:0c:66:00:97:04:c6: ab:7c:af:97:3f:ba:82:a7:c1:37:8b:77:86:bb:74: 17:aa:27:5a:46:e2:34:eb:97:1f:de:fb:94:d2:e0: 70:83:bd:f8:e5:51:00:68:22:a5:08:5b:00:64:fb: 16:1e:c5:26:c1:3e:38:4a:7e:15:c8:8c:9e:8a:a5: 64:fd:be:11:4d:15:1c:a1:f3:be:9a:57:8a:08:9d: a1:e6:5e:4e:21:12:20:66:0f:fd:dd:48:10:35:48: 85:a9:16:66:cb:2a:d1:b1:d6:19:1f:1b:e9:f8:93: fe:d2:1b:e3:12:7e:31:fe:12:1a:e8:5a:53:1b:ff: 6e:eb:a9:de:62:45:a0:80:8a:62:55:7f:5b:e4:5e: cf:59:05:4b:9e:f8:a6:6d:4a:72:09:2f:c3:fd:da: 25:bd:95:fb:7f:60:eb:2d:4a:de:d1:51:c7:e7:04: 6d:2e:14:3c:62:c3:31:25:04:e3:89:fa:34:dd:c1: 5a:3a:67:45:c3:9c:5f:c2:46:40:35:33:4f:0b:42: 3a:05:8b:29:8d:16:67:94:b2:33:68:ff:f1:0d:74: 5b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C0:05:D7:C2:8E:84:D9:51:DE:B5:1F:7D:3F:71:B7:B8:03:1B:18 X509v3 Authority Key Identifier: keyid:61:1C:B5:56:C8:7B:C0:49:A5:A4:3E:B1:F2:97:10:7E:FF:1B:79:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRy1Vsh7wEmlpD6x8pcQfv8beUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F7F0/C74EB69A59D511EF83D28B4BC4F9AE02/YRy1Vsh7wEmlpD6x8pcQfv8beUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:9b:22:8c:3a:08:b3:2d:cb:23:d5:1e:66:3d:9f:08:96:50: 20:b8:9f:72:06:6e:b9:50:f8:cf:68:90:4d:0b:2b:83:05:95: 59:d1:f9:01:70:8e:72:f9:3a:a7:39:24:cd:6a:3e:b2:f6:34: a9:33:88:ee:01:33:f7:5c:51:af:b7:0d:d7:ba:da:6a:d6:b6: 83:97:e5:89:73:cf:2d:75:32:3a:2b:f5:07:03:74:f4:c9:ad: 00:7e:dd:e6:a2:f4:f0:61:2d:06:1b:b1:ee:35:a1:fe:60:89: 50:f7:37:d6:d7:21:66:1d:54:3b:a8:5c:3b:6d:3c:70:b8:23: 5a:08:58:5c:d8:7c:f5:4b:41:53:1e:4b:c9:af:00:86:ca:0f: e1:d7:d3:a7:a2:f8:27:2a:81:17:7b:3e:1a:8c:39:1f:f8:cd: 90:b6:9c:98:e7:cf:9f:7b:f9:74:6c:5e:39:5b:9b:fa:4b:b8: b5:dc:7d:7c:9c:e2:63:4e:82:f4:7b:4c:b9:e0:1a:49:d7:e5: 6c:03:57:8a:73:08:b2:58:05:c4:24:7d:b9:88:c5:5f:c1:b1: 87:9f:26:7f:9e:53:e9:a2:03:e6:51:62:e2:07:e9:4d:b3:3b: df:54:f7:62:a0:c0:3c:be:d0:56:10:b5:ca:6b:11:94:10:e1: 03:e5:09:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY3RjAxMTAvBgNVBAUTKDYxMUNCNTU2Qzg3QkMwNDlBNUE0M0VCMUYyOTcxMDdF RkYxQjc5NDAwHhcNMjUwODIxMDU1OTIxWhcNMjUwODI4MDU1OTIxWjAYMRYwFAYD VQQDEw02OGE2YjViYS0yOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3buSfDI10DFNF2W+hbHSoY+z5LUuB3QMh4hYYe/YRzRpqnT3/YsMZgCXBMar fK+XP7qCp8E3i3eGu3QXqidaRuI065cf3vuU0uBwg7345VEAaCKlCFsAZPsWHsUm wT44Sn4VyIyeiqVk/b4RTRUcofO+mleKCJ2h5l5OIRIgZg/93UgQNUiFqRZmyyrR sdYZHxvp+JP+0hvjEn4x/hIa6FpTG/9u66neYkWggIpiVX9b5F7PWQVLnvimbUpy CS/D/dolvZX7f2DrLUre0VHH5wRtLhQ8YsMxJQTjifo03cFaOmdFw5xfwkZANTNP C0I6BYspjRZnlLIzaP/xDXRb5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPABdfC joTZUd61H30/cbe4AxsYMB8GA1UdIwQYMBaAFGEctVbIe8BJpaQ+sfKXEH7/G3lA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjdGMC9DNzRFQjY5QTU5 RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dFbWxwRDZ4OHBjUWZ2OGJl VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSeTFWc2g3d0VtbHBENng4cGNRZnY4YmVVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjdGMC9DNzRFQjY5QTU5RDUxMUVGODNEMjhCNEJDNEY5QUUwMi9ZUnkxVnNoN3dF bWxwRDZ4OHBjUWZ2OGJlVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVmyKMOgizLcsj1R5mPZ8IllAguJ9yBm65UPjPaJBNCyuDBZVZ0fkB cI5y+TqnOSTNaj6y9jSpM4juATP3XFGvtw3Xutpq1raDl+WJc88tdTI6K/UHA3T0 ya0Aft3movTwYS0GG7HuNaH+YIlQ9zfW1yFmHVQ7qFw7bTxwuCNaCFhc2Hz1S0FT HkvJrwCGyg/h19OnovgnKoEXez4ajDkf+M2QtpyY58+fe/l0bF45W5v6S7i13H18 nOJjToL0e0y54BpJ1+VsA1eKcwiyWAXEJH25iMVfwbGHnyZ/nlPpogPmUWLiB+lN szvfVPdioMA8vtBWELXKaxGUEOED5Qmx -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:46 2025 by rpki-client