$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: EAEGk++dIOXjNY/60GVmWKEi0ipe5KHSGuixDHczGuc= Subject key identifier: 2A:05:3B:EA:1C:A8:79:F9:DD:8A:C7:79:9C:F4:97:BC:2B:D5:66:0C Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 7F Signing time: Fri 05 Sep 2025 07:21:39 +0000 Manifest this update: Fri 05 Sep 2025 07:21:38 +0000 Manifest next update: Fri 12 Sep 2025 07:21:38 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: T84Kj1I+ANZBVJIDuUODo9YGHTpA9QNNxlKa7Bg2cgQ=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: mzE4Rj9TzgxYoPFC7hLQmMNdU4o1ATX8k/0uu+bhb9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Sep 5 07:21:38 2025 GMT Not After : Sep 12 07:21:38 2025 GMT Subject: CN=68ba8f82-4cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:86:c1:d1:9b:92:08:f5:a4:08:09:9d:8f:f2: f7:f6:34:45:9a:d3:b4:1f:b8:0e:bb:0e:9f:24:3f: 17:5e:28:75:07:2f:f7:18:00:8e:eb:d8:f0:7c:a9: d8:19:3f:6f:66:a5:e7:76:c6:b1:a6:31:a3:51:e3: 9d:5a:19:d6:f8:53:5a:e9:da:41:47:8e:06:db:b2: 96:7e:eb:46:5b:da:8d:5e:10:aa:76:17:9f:f3:2b: c0:cc:9d:c2:b3:d7:7c:4b:cb:2b:5c:01:18:66:d4: 00:1e:32:71:5d:36:c9:f8:d1:fb:4f:65:e4:12:6c: 1f:82:44:38:ec:9d:01:f7:5a:e0:57:1f:77:8e:d1: 17:fb:5f:08:24:98:62:4c:00:79:11:a8:be:91:af: 65:c8:e0:ec:d9:18:6f:4f:00:36:dc:7e:f2:d8:24: 38:51:f3:15:a4:34:f8:ab:1b:f4:c7:9b:f5:04:00: e8:87:04:a6:d0:5e:5a:7f:1e:cf:08:76:89:91:5d: d1:c9:0a:68:b6:b2:0d:17:1e:60:2d:eb:25:14:c0: 0d:3b:ce:f3:1f:18:8c:9c:f6:e3:7b:12:c1:0c:64: c1:81:13:45:d8:ce:c3:3f:f7:94:75:ef:5b:cc:66: 59:82:b0:28:e8:4a:5f:2e:57:43:a6:b6:3f:06:2c: d5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:05:3B:EA:1C:A8:79:F9:DD:8A:C7:79:9C:F4:97:BC:2B:D5:66:0C X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f8:45:4b:6e:b9:4c:2e:cc:8c:37:6c:51:56:c0:8d:06:b1: 07:dc:25:46:83:da:9c:a2:28:44:de:16:57:42:f0:47:8e:5c: 4e:48:8d:47:ce:04:b4:a1:c0:55:1b:73:c0:0f:85:fd:56:26: 86:1e:96:f8:b8:d8:ac:a7:95:d0:dc:7d:ba:31:0d:05:c4:7e: 71:7b:9e:a0:27:6e:a5:24:5e:b6:31:3b:4f:74:f4:e3:55:ed: 74:74:25:ed:65:e5:d6:07:a6:ae:32:c4:4f:7c:14:db:3f:1c: 79:43:5c:72:5e:71:6c:88:2d:d6:5b:90:2c:20:65:44:07:d1: 99:15:69:85:76:30:b0:6c:90:c6:62:6d:96:07:da:4c:5f:cb: 8d:f3:6b:52:e2:a6:4e:ac:6a:26:88:20:a7:61:e0:0a:b6:ef: 5c:82:e2:1a:19:49:8b:e2:4b:44:54:88:49:c0:28:5a:de:e9: 85:0f:9e:40:d3:36:01:90:ee:09:03:06:8d:88:4b:e0:b1:23: cc:bd:96:89:e6:16:d5:16:ea:1f:3c:10:7a:ce:87:18:ea:6e: 29:16:3f:0f:d5:fe:3f:f4:49:d1:9c:d2:57:b2:ae:f8:66:ba: 1e:bb:95:73:a5:d0:58:21:e6:4c:04:94:8e:7e:e7:b4:d4:77: 29:6c:cb:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjUwOTA1MDcyMTM4WhcNMjUwOTEyMDcyMTM4WjAYMRYwFAYD VQQDEw02OGJhOGY4Mi00Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYbB0ZuSCPWkCAmdj/L39jRFmtO0H7gOuw6fJD8XXih1By/3GACO69jwfKnY GT9vZqXndsaxpjGjUeOdWhnW+FNa6dpBR44G27KWfutGW9qNXhCqdhef8yvAzJ3C s9d8S8srXAEYZtQAHjJxXTbJ+NH7T2XkEmwfgkQ47J0B91rgVx93jtEX+18IJJhi TAB5Eai+ka9lyODs2RhvTwA23H7y2CQ4UfMVpDT4qxv0x5v1BADohwSm0F5afx7P CHaJkV3RyQpotrINFx5gLeslFMANO87zHxiMnPbjexLBDGTBgRNF2M7DP/eUde9b zGZZgrAo6EpfLldDprY/BizVJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoFO+oc qHn53YrHeZz0l7wr1WYMMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq+EVLbrlMLsyMN2xRVsCNBrEH3CVGg9qcoihE3hZXQvBHjlxOSI1H zgS0ocBVG3PAD4X9ViaGHpb4uNisp5XQ3H26MQ0FxH5xe56gJ26lJF62MTtPdPTj Ve10dCXtZeXWB6auMsRPfBTbPxx5Q1xyXnFsiC3WW5AsIGVEB9GZFWmFdjCwbJDG Ym2WB9pMX8uN82tS4qZOrGomiCCnYeAKtu9cguIaGUmL4ktEVIhJwCha3umFD55A 0zYBkO4JAwaNiEvgsSPMvZaJ5hbVFuofPBB6zocY6m4pFj8P1f4/9EnRnNJXsq74 Zroeu5VzpdBYIeZMBJSOfue01HcpbMtz -----END CERTIFICATE-----Generated at Sat Sep 6 15:51:40 2025 by rpki-client