$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: 9vSU4ifJFH2D5IiiPV6h3SEKq73gqzyasZWd3dUQrnc= Subject key identifier: 5E:F5:4E:4D:84:6D:57:BD:EF:C5:35:D3:62:49:64:7E:6A:E2:6C:99 Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: 9D Signing time: Sat 23 Aug 2025 06:32:03 +0000 Manifest this update: Sat 23 Aug 2025 06:32:03 +0000 Manifest next update: Sat 30 Aug 2025 06:32:03 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: OubJ7mIcKQJzYmTCTBfVY93/bhd8BwoPt0Ktv3KcO/w=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: 559cCrhl2gmU3vGuvWQWRr1GfQBHKWRfQIAknTBhv8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: Aug 23 06:32:03 2025 GMT Not After : Aug 30 06:32:03 2025 GMT Subject: CN=68a96063-9b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d8:2a:0e:b8:7c:68:37:19:ed:10:ae:c1:2a: 0d:f8:97:7e:bd:bc:a5:9a:20:6c:36:c6:38:5d:01: df:7e:33:4f:dc:77:12:8e:aa:9e:1d:e3:fe:b8:8f: 6b:ee:70:70:28:30:19:07:3e:0b:2d:47:71:9e:30: 9e:9b:50:42:e2:d2:c1:70:38:b3:b4:1e:12:43:ca: b8:ce:fe:67:2b:6e:f7:92:b5:e8:f8:d5:1b:22:74: b9:67:96:96:1c:99:a5:04:13:8e:72:0c:da:84:61: a1:1b:66:50:75:a7:9d:cb:dc:4a:19:ee:85:c2:1e: ef:13:6a:5d:23:1f:35:bf:66:29:ef:41:83:23:cd: 22:ae:c5:7f:1e:05:9a:27:ab:12:af:ff:c8:3b:f5: 96:2b:22:3b:57:7c:8f:6f:48:c4:1c:43:db:86:31: 60:84:ee:f6:8a:55:c8:77:a0:42:8a:08:5f:a2:44: c6:cc:7e:95:29:c4:8f:0e:82:62:a1:c8:17:97:87: d1:e1:d1:b4:c5:19:18:9c:c1:ad:6c:d6:93:3c:49: 80:43:ad:8a:35:ab:bc:38:53:3d:66:8d:bc:ac:8f: f6:56:7b:47:77:d1:aa:2b:bd:4e:66:14:d6:7f:5f: e8:7b:89:27:a4:c5:ef:2f:75:39:75:4a:39:10:f4: 62:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F5:4E:4D:84:6D:57:BD:EF:C5:35:D3:62:49:64:7E:6A:E2:6C:99 X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:e0:e2:40:93:d2:94:81:e0:c5:04:70:51:58:66:63:d7:2b: cc:e8:59:aa:16:68:fb:79:e4:1f:e8:77:f9:45:55:6f:3f:d8: 35:3e:16:95:7c:bc:75:a3:f0:02:39:83:10:a4:24:41:9c:32: 67:2a:3b:51:ed:a2:6d:b7:04:44:b6:78:a2:55:d3:a5:6b:bb: f7:b2:6a:2e:16:db:d7:82:93:61:6b:79:62:91:17:8d:72:4d: 79:0c:a3:9f:bf:5b:e3:09:50:46:bd:06:56:8b:74:c7:e7:d2: d0:03:38:ee:77:9c:1e:c0:e1:63:5d:9a:f6:9d:2f:44:9e:5c: 28:59:8e:fe:c7:7f:b9:ba:84:12:bc:42:c1:0a:11:05:b2:a8: b7:d9:c3:3f:64:2d:92:44:28:8f:6a:4d:11:c0:eb:5d:c2:fb: 17:87:b0:17:37:2e:92:d3:66:1c:a4:f1:6d:cf:cf:d9:90:9c: e4:c3:d3:7c:e4:8c:b3:a1:77:81:4c:cd:bc:63:56:10:4b:c4: bc:90:ef:0d:f6:94:c6:e8:8f:cb:1b:63:76:56:51:c2:a2:87: 99:b6:19:5e:fd:67:2a:17:f4:9e:65:ee:c5:b7:cd:f1:a4:6a: 12:ba:c1:22:0b:5d:8d:5b:95:a7:90:58:8e:78:5a:79:71:ab: 0d:9b:a2:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKEVEODJBMkZEN0RFMTQ3NTI3Q0ZDQzQyNDdBMjU2QzFB MEVEQjRFRDMwHhcNMjUwODIzMDYzMjAzWhcNMjUwODMwMDYzMjAzWjAYMRYwFAYD VQQDEw02OGE5NjA2My05YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9gqDrh8aDcZ7RCuwSoN+Jd+vbylmiBsNsY4XQHffjNP3HcSjqqeHeP+uI9r 7nBwKDAZBz4LLUdxnjCem1BC4tLBcDiztB4SQ8q4zv5nK273krXo+NUbInS5Z5aW HJmlBBOOcgzahGGhG2ZQdaedy9xKGe6Fwh7vE2pdIx81v2Yp70GDI80irsV/HgWa J6sSr//IO/WWKyI7V3yPb0jEHEPbhjFghO72ilXId6BCighfokTGzH6VKcSPDoJi ocgXl4fR4dG0xRkYnMGtbNaTPEmAQ62KNau8OFM9Zo28rI/2VntHd9GqK71OZhTW f1/oe4knpMXvL3U5dUo5EPRibwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF71Tk2E bVe978U102JJZH5q4myZMB8GA1UdIwQYMBaAFO2Cov194UdSfPzEJHolbBoO207T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yQjFDNDdGRThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIxSjhfTVFrZWlWc0dnN2JU dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yQjFDNDdGRThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIx SjhfTVFrZWlWc0dnN2JUdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl4OJAk9KUgeDFBHBRWGZj1yvM6FmqFmj7eeQf6Hf5RVVvP9g1PhaV fLx1o/ACOYMQpCRBnDJnKjtR7aJttwREtniiVdOla7v3smouFtvXgpNha3likReN ck15DKOfv1vjCVBGvQZWi3TH59LQAzjud5wewOFjXZr2nS9EnlwoWY7+x3+5uoQS vELBChEFsqi32cM/ZC2SRCiPak0RwOtdwvsXh7AXNy6S02YcpPFtz8/ZkJzkw9N8 5IyzoXeBTM28Y1YQS8S8kO8N9pTG6I/LG2N2VlHCooeZthle/WcqF/SeZe7Ft83x pGoSusEiC12NW5WnkFiOeFp5casNm6L/ -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:15 2025 by rpki-client