$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: wwTi9+VHKlT+fudSQMW6lsWAof6m6jbhAGzqZH0Dwm0= Subject key identifier: 18:A3:EB:45:DA:A4:9C:AF:0A:29:B7:8F:88:D4:A0:3F:22:5B:7A:DA Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C6E Signing time: Sun 24 Aug 2025 18:21:14 +0000 Manifest this update: Sun 24 Aug 2025 18:21:13 +0000 Manifest next update: Sun 31 Aug 2025 18:21:13 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: i1FN3xkNb6gBuhz/M85deSE+JD+23hO0+LF0/6kwniU=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: f31uXjqb4DNcM+Zpb2Aaj4CME0IwegAYYNe/FOHZjWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Aug 24 18:21:13 2025 GMT Not After : Aug 31 18:21:13 2025 GMT Subject: CN=68ab5819-7e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:aa:28:e7:2f:55:09:4c:cb:4a:2a:81:c0: c0:e1:01:b8:1f:23:e1:2f:18:4c:d9:00:cd:b3:bb: 57:8f:18:2d:f0:38:71:d1:3a:8f:b8:cf:00:3d:eb: f4:1f:26:89:8b:b7:5b:70:25:f3:99:89:98:9b:5e: 28:da:2c:ab:79:0b:00:4b:10:42:aa:c5:df:ca:12: d5:81:15:25:b8:b9:e6:5c:26:39:35:00:57:13:49: c3:ab:61:6c:9f:45:1f:8e:ce:70:62:76:19:7e:fa: 01:ad:90:aa:cf:64:dd:ed:86:98:05:b0:0e:e7:a5: 6f:e1:86:5a:b6:b6:37:ae:4c:bf:aa:a4:9c:93:d2: 5b:42:dc:f0:0f:c4:6e:c5:57:bc:df:b4:39:3e:ae: 9d:a2:c2:2e:80:8a:a8:47:71:33:99:43:3f:4c:a2: 05:8d:cf:61:77:9b:1e:3f:e2:47:2b:92:84:40:68: df:be:ca:28:95:f1:dc:4a:06:a8:13:33:71:f7:b6: 07:e8:e2:04:bc:1b:98:65:38:3c:9e:e1:ea:89:96: 3e:01:51:a3:69:36:0a:78:ab:66:05:4e:85:fc:09: 49:8e:45:37:ae:dd:1f:f9:60:09:4c:02:da:24:14: f2:d3:96:98:ba:26:bf:1a:7f:06:2e:b6:9a:d2:0e: ca:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A3:EB:45:DA:A4:9C:AF:0A:29:B7:8F:88:D4:A0:3F:22:5B:7A:DA X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7f:e8:53:2a:93:4d:27:97:cc:42:d0:e9:e9:b5:e8:1f:90: 4b:28:b9:9d:59:c3:49:38:74:0c:24:45:71:94:12:d8:c1:ea: 36:8c:10:2e:8f:27:23:40:85:5b:ff:a9:27:5b:12:23:f6:4e: a5:84:26:1d:0c:fd:e0:c6:8a:c1:5a:4b:4f:7e:1a:72:f1:6b: a3:98:9d:62:f3:c7:4e:c4:e0:16:99:4a:21:df:4f:82:b6:fc: e7:5e:da:aa:69:14:ce:3e:55:89:9c:61:8d:8b:6f:54:1f:0b: e1:1f:e1:e1:fb:4a:d0:56:e3:6e:83:6a:80:92:b9:c9:d6:61: 73:41:b0:0c:6e:25:65:1f:c1:c4:34:93:02:65:c2:a7:c4:81: bb:0e:d5:06:89:8d:2f:84:f3:92:4c:a9:8a:47:d4:48:db:df: 64:f0:df:b7:0c:5a:b0:06:fe:73:ef:b7:94:2c:b9:03:59:bd: 32:f9:84:91:07:aa:57:d2:6d:8c:23:ea:fb:26:ed:37:57:71: 7b:91:3e:e5:2f:79:6d:6e:5f:9d:38:7a:a8:0c:9a:64:f8:de: 77:8c:96:32:19:71:4a:90:f4:6c:56:42:7c:9c:8d:71:84:80: e8:76:e9:9a:76:1b:69:c0:86:13:9b:88:fa:af:06:00:41:73: 2a:7f:cd:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUwODI0MTgyMTEzWhcNMjUwODMxMTgyMTEzWjAYMRYwFAYD VQQDEw02OGFiNTgxOS03ZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6yqKOcvVQlMy0oqgcDA4QG4HyPhLxhM2QDNs7tXjxgt8Dhx0TqPuM8APev0 HyaJi7dbcCXzmYmYm14o2iyreQsASxBCqsXfyhLVgRUluLnmXCY5NQBXE0nDq2Fs n0Ufjs5wYnYZfvoBrZCqz2Td7YaYBbAO56Vv4YZatrY3rky/qqSck9JbQtzwD8Ru xVe837Q5Pq6dosIugIqoR3EzmUM/TKIFjc9hd5seP+JHK5KEQGjfvsoolfHcSgao EzNx97YH6OIEvBuYZTg8nuHqiZY+AVGjaTYKeKtmBU6F/AlJjkU3rt0f+WAJTALa JBTy05aYuia/Gn8GLraa0g7KWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBij60Xa pJyvCim3j4jUoD8iW3raMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdf+hTKpNNJ5fMQtDp6bXoH5BLKLmdWcNJOHQMJEVxlBLYweo2jBAu jycjQIVb/6knWxIj9k6lhCYdDP3gxorBWktPfhpy8WujmJ1i88dOxOAWmUoh30+C tvznXtqqaRTOPlWJnGGNi29UHwvhH+Hh+0rQVuNug2qAkrnJ1mFzQbAMbiVlH8HE NJMCZcKnxIG7DtUGiY0vhPOSTKmKR9RI299k8N+3DFqwBv5z77eULLkDWb0y+YSR B6pX0m2MI+r7Ju03V3F7kT7lL3ltbl+dOHqoDJpk+N53jJYyGXFKkPRsVkJ8nI1x hIDodumadhtpwIYTm4j6rwYAQXMqf80J -----END CERTIFICATE-----Generated at Sun Aug 24 21:54:10 2025 by rpki-client