$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: GN5jG28Gta7+OO0FuT7xihcW+/U8HA0XVUHhxbxBqxY= Subject key identifier: AC:5E:BA:65:03:24:D3:3E:AE:14:38:2A:50:42:E0:EF:1D:02:4E:73 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 80 Signing time: Sat 19 Jul 2025 06:53:11 +0000 Manifest this update: Sat 19 Jul 2025 06:53:10 +0000 Manifest next update: Sat 26 Jul 2025 06:53:10 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: ig2SMqGqM+x8Rpk5cMeCTxmVsZb1hqpbSOeWgoP3f/o=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Jul 19 06:53:10 2025 GMT Not After : Jul 26 06:53:10 2025 GMT Subject: CN=687b40d6-859e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:15:a9:13:8d:50:0b:29:07:06:8a:3a:3e:64: 03:d3:8d:9b:4a:a7:74:5b:0b:5b:94:0a:da:76:a2: d8:e0:68:65:1b:b6:33:ba:d3:db:1f:c2:d8:06:2a: 4f:2e:7a:f9:6e:ec:49:5b:5b:6b:8d:0a:9d:47:a1: fa:c7:1e:19:bb:79:25:fe:46:ce:32:76:6b:b3:73: f5:ce:89:d2:c8:c7:d2:ef:c9:e1:44:56:e7:b8:88: ac:87:f6:ec:49:70:7f:21:e9:77:32:6c:1a:08:02: d0:b1:cc:cb:eb:4a:40:62:3f:a7:f8:7b:74:83:5f: 62:8b:05:0c:19:24:d4:db:b7:46:5a:c9:0c:2b:23: 72:06:ba:45:8d:8c:5e:44:5b:27:ad:bf:60:89:f0: 8e:4c:91:1e:de:66:69:f8:15:ba:61:6b:5d:52:bd: b0:04:bf:40:34:ff:cd:02:47:65:18:cf:f4:e5:ff: 8d:9c:9c:2e:a2:e7:38:3c:db:17:0b:8f:d0:3a:51: ad:db:87:c8:60:68:b5:5b:cf:50:5a:27:c3:59:6b: 63:18:df:93:d3:9d:85:fb:7e:03:95:0c:c3:5c:9d: b9:81:7a:2e:80:7a:23:67:cd:20:52:f9:d8:7b:d2: 7b:47:a9:19:31:be:ad:e3:93:c1:1d:71:ce:37:9d: 72:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5E:BA:65:03:24:D3:3E:AE:14:38:2A:50:42:E0:EF:1D:02:4E:73 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:36:83:6a:65:3d:9a:b7:a0:01:b9:76:b3:40:21:47:04:77: 29:cb:c8:e9:90:2f:b6:8d:4c:3a:d0:7f:53:ab:ab:a3:d2:91: ce:e7:d3:c0:0e:4b:63:22:3b:e9:22:8c:05:a3:95:b3:15:3d: 43:5f:72:33:8a:16:25:8d:27:65:ba:cd:e8:fa:d9:ec:85:3b: bf:c5:c5:5e:87:47:55:47:b1:6e:14:91:45:d8:ec:3f:83:06: bc:10:42:9b:4b:26:67:49:d6:1e:6b:40:e7:0b:cc:9d:03:67: 1d:83:fc:17:5a:4f:19:98:55:8c:f1:76:7a:dd:3f:c6:eb:45: c3:75:7f:07:23:42:23:5c:86:54:43:d7:86:29:4f:78:63:1e: 97:b7:2e:5a:7c:4c:75:56:a1:e9:fd:ec:f8:82:92:32:77:32: 84:53:cb:9d:d2:2b:32:6c:8b:74:40:a3:57:a4:1e:82:b5:74: aa:4d:91:1c:04:87:47:43:eb:3f:44:a2:58:c1:23:6a:79:52: ce:79:7e:78:0a:e8:ab:ac:ea:b0:c4:48:0c:70:d6:07:7d:5f: ba:c5:bd:1c:5c:c6:ff:f6:9b:ac:72:8d:50:7d:f6:42:aa:11: 30:a0:0e:a7:8e:8b:fa:cf:c7:45:63:55:dd:aa:5e:f0:ce:ac: 00:e8:58:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEM0UxMTAvBgNVBAUTKDYwNkVCMjk1ODI1NEFDOThCNjMzNkVBQTQxQUM4MEIy RENCMTlDNkUwHhcNMjUwNzE5MDY1MzEwWhcNMjUwNzI2MDY1MzEwWjAYMRYwFAYD VQQDEw02ODdiNDBkNi04NTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xWpE41QCykHBoo6PmQD042bSqd0WwtblAradqLY4GhlG7YzutPbH8LYBipP Lnr5buxJW1trjQqdR6H6xx4Zu3kl/kbOMnZrs3P1zonSyMfS78nhRFbnuIish/bs SXB/Iel3MmwaCALQsczL60pAYj+n+Ht0g19iiwUMGSTU27dGWskMKyNyBrpFjYxe RFsnrb9gifCOTJEe3mZp+BW6YWtdUr2wBL9ANP/NAkdlGM/05f+NnJwuouc4PNsX C4/QOlGt24fIYGi1W89QWifDWWtjGN+T052F+34DlQzDXJ25gXougHojZ80gUvnY e9J7R6kZMb6t45PBHXHON51ytwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxeumUD JNM+rhQ4KlBC4O8dAk5zMB8GA1UdIwQYMBaAFGBuspWCVKyYtjNuqkGsgLLcsZxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEQzRS9CNURGQzhDMDlG RDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJKaTJNMjZxUWF5QXN0eXhu RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5HNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEQzRS9CNURGQzhDMDlGRDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJK aTJNMjZxUWF5QXN0eXhuRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuNoNqZT2at6ABuXazQCFHBHcpy8jpkC+2jUw60H9Tq6uj0pHO59PA DktjIjvpIowFo5WzFT1DX3IzihYljSdlus3o+tnshTu/xcVeh0dVR7FuFJFF2Ow/ gwa8EEKbSyZnSdYea0DnC8ydA2cdg/wXWk8ZmFWM8XZ63T/G60XDdX8HI0IjXIZU Q9eGKU94Yx6Xty5afEx1VqHp/ez4gpIydzKEU8ud0isybIt0QKNXpB6CtXSqTZEc BIdHQ+s/RKJYwSNqeVLOeX54CuirrOqwxEgMcNYHfV+6xb0cXMb/9pusco1QffZC qhEwoA6njov6z8dFY1Xdql7wzqwA6FgX -----END CERTIFICATE-----Generated at Sun Jul 20 21:56:48 2025 by rpki-client