$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: pwp0jGiF9xDtJg6wAIkh2uBUxkXI9spCanZ2TbX+P+s= Subject key identifier: F5:F1:68:87:A1:B8:C8:92:A6:98:C7:75:CB:DC:69:87:34:E5:9B:51 Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 98 Signing time: Wed 03 Sep 2025 07:00:08 +0000 Manifest this update: Wed 03 Sep 2025 07:00:08 +0000 Manifest next update: Wed 10 Sep 2025 07:00:08 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: 83MtVDo7/uT6a9iKrT9WHOu15BavMQ4U+r6YRfQ/SRc=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Sep 3 07:00:08 2025 GMT Not After : Sep 10 07:00:08 2025 GMT Subject: CN=68b7e778-a923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:9c:ac:95:b2:1c:82:54:4c:9f:d5:12:0f: b8:b1:9d:80:bd:22:de:91:4c:0f:5a:4a:e3:ac:83: 5b:a6:e8:ad:cf:a8:46:d8:0b:a7:3f:e4:04:fa:d3: 1d:d6:7f:59:d0:a3:bc:85:95:f1:6a:5c:2d:8f:74: ec:36:62:4b:a2:9d:19:58:d2:ce:5d:bd:09:38:9f: e3:4a:71:91:bd:e2:42:47:a2:14:40:6c:8e:e2:2c: a9:58:bc:b8:be:de:2c:2c:fc:e9:ab:64:44:89:ad: 91:c1:68:55:b7:82:49:38:f5:62:a6:66:e2:77:62: 4c:6e:40:d7:0d:e8:c3:e3:ba:cc:46:d9:7a:dc:10: d6:7b:b2:69:5e:00:29:3b:7b:4c:b0:89:96:76:a7: 28:84:c6:2b:db:3f:7c:e9:e8:ef:ff:c4:99:a3:ec: b7:23:8c:11:f6:bf:28:11:8a:00:63:97:2c:16:9f: d8:a5:92:6f:22:c3:d0:c7:1c:b4:bd:b3:ca:87:d6: 9c:01:72:bf:5d:c0:15:9a:83:b1:9f:05:c5:d0:2e: 65:10:fc:01:c1:67:fa:90:62:f9:ca:f3:c5:04:c5: 80:8b:0a:b3:d4:15:ac:f2:88:2b:80:7d:ce:9d:8a: 2a:ba:16:89:fd:b2:0f:78:c8:15:cf:32:97:a8:ae: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F1:68:87:A1:B8:C8:92:A6:98:C7:75:CB:DC:69:87:34:E5:9B:51 X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:f9:37:ac:4e:0f:b0:5a:fb:0a:05:63:ec:0a:c3:8c:95:d3: a7:9c:6c:f9:ec:53:c4:27:ba:1d:e1:45:49:a1:bb:53:3f:59: 29:85:aa:ec:02:d9:a1:7b:52:9d:f7:74:15:35:a7:7f:8c:f5: 74:8a:11:dc:6e:d5:7f:08:fd:da:8f:2b:ab:e2:29:e9:a1:d3: 48:25:dd:ab:af:cb:5f:99:a1:f0:eb:08:7f:94:8e:fb:6f:c4: 01:be:bd:1e:31:95:43:60:4b:7d:38:6a:19:ed:32:f0:91:c4: 3e:dd:cc:a3:eb:c8:67:09:3d:d7:a7:86:a6:b9:8c:67:1f:92: ae:90:bc:d3:fe:86:33:7b:7d:6a:c6:d1:fa:10:f0:2e:1f:41: 81:fa:90:f8:84:e2:a1:ac:bb:c5:f8:68:37:21:30:2c:fa:de: ac:51:b3:4a:31:15:ee:ab:38:da:bb:f4:e3:e1:62:7f:16:5b: 56:48:9c:ec:18:e0:e5:16:70:4f:b9:dd:e1:13:a3:e0:75:55: e4:a2:ba:69:b0:79:a0:88:cb:87:02:d0:81:8b:8b:3c:f9:7a: 26:7a:d9:21:71:d4:e0:b2:55:27:51:c2:9c:11:7e:95:dc:78: 55:11:f8:ff:38:d2:24:9e:b9:41:57:29:ce:eb:22:6b:97:ec: fa:49:aa:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEM0UxMTAvBgNVBAUTKDYwNkVCMjk1ODI1NEFDOThCNjMzNkVBQTQxQUM4MEIy RENCMTlDNkUwHhcNMjUwOTAzMDcwMDA4WhcNMjUwOTEwMDcwMDA4WjAYMRYwFAYD VQQDEw02OGI3ZTc3OC1hOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwricrJWyHIJUTJ/VEg+4sZ2AvSLekUwPWkrjrINbpuitz6hG2AunP+QE+tMd 1n9Z0KO8hZXxalwtj3TsNmJLop0ZWNLOXb0JOJ/jSnGRveJCR6IUQGyO4iypWLy4 vt4sLPzpq2REia2RwWhVt4JJOPVipmbid2JMbkDXDejD47rMRtl63BDWe7JpXgAp O3tMsImWdqcohMYr2z986ejv/8SZo+y3I4wR9r8oEYoAY5csFp/YpZJvIsPQxxy0 vbPKh9acAXK/XcAVmoOxnwXF0C5lEPwBwWf6kGL5yvPFBMWAiwqz1BWs8ogrgH3O nYoquhaJ/bIPeMgVzzKXqK6q6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXxaIeh uMiSppjHdcvcaYc05ZtRMB8GA1UdIwQYMBaAFGBuspWCVKyYtjNuqkGsgLLcsZxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEQzRS9CNURGQzhDMDlG RDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJKaTJNMjZxUWF5QXN0eXhu RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5HNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEQzRS9CNURGQzhDMDlGRDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJK aTJNMjZxUWF5QXN0eXhuRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq+TesTg+wWvsKBWPsCsOMldOnnGz57FPEJ7od4UVJobtTP1kphars Atmhe1Kd93QVNad/jPV0ihHcbtV/CP3ajyur4inpodNIJd2rr8tfmaHw6wh/lI77 b8QBvr0eMZVDYEt9OGoZ7TLwkcQ+3cyj68hnCT3Xp4amuYxnH5KukLzT/oYze31q xtH6EPAuH0GB+pD4hOKhrLvF+Gg3ITAs+t6sUbNKMRXuqzjau/Tj4WJ/FltWSJzs GODlFnBPud3hE6PgdVXkorppsHmgiMuHAtCBi4s8+XometkhcdTgslUnUcKcEX6V 3HhVEfj/ONIknrlBVynO6yJrl+z6Saox -----END CERTIFICATE-----Generated at Thu Sep 4 13:56:47 2025 by rpki-client