$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: WBwvK2MGszKamUp64z3W+vZtz9CeeIWL4cyuVFCbfVA= Subject key identifier: E2:8C:67:49:F9:20:7A:69:87:8E:55:66:FE:1B:18:D3:DE:1F:4A:60 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0CC1 Signing time: Wed 20 Aug 2025 18:12:53 +0000 Manifest this update: Wed 20 Aug 2025 18:12:53 +0000 Manifest next update: Wed 27 Aug 2025 18:12:53 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: Y4gwceVEuIuzy0AE/gbzPzwieOmV41gurH3+z5WixjM=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Aug 20 18:12:53 2025 GMT Not After : Aug 27 18:12:53 2025 GMT Subject: CN=68a61025-7621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5d:14:2e:91:06:26:cb:17:4c:e7:4e:9a:a0: 03:a8:e8:99:44:93:b3:24:6a:82:ea:55:50:d2:13: 03:10:89:ce:b6:b3:4e:a0:fa:00:0d:12:70:99:c7: b8:dc:f2:75:50:4d:5c:20:ab:60:3c:db:21:5e:ed: 89:8b:cd:66:48:fa:a6:c4:4f:10:69:bd:28:a4:9a: e3:36:e8:15:05:c4:d9:f0:fe:fe:44:f1:4e:a1:98: 91:e9:67:7f:3a:4f:dd:41:f9:1d:53:ff:1d:b0:fe: 0b:1d:f4:37:37:47:af:dc:d4:58:4e:95:c3:96:c0: 34:84:14:9b:d0:b8:af:d0:bc:35:ba:08:e7:8a:55: 50:10:38:2d:fe:94:f8:ba:8f:64:b4:f1:c7:35:ba: 63:45:80:c9:03:bc:3b:e2:09:39:ae:6e:bb:f3:54: 0b:2a:ca:68:12:88:74:67:e1:29:54:18:e8:00:2b: a7:e7:3d:47:05:00:9a:94:6f:ea:41:ee:e7:26:f8: b4:85:2a:e2:03:d9:46:e9:d4:a2:c7:9e:7a:bb:d2: dd:37:50:e8:a4:14:03:41:76:1a:3c:b2:ea:9d:8c: 04:fc:a1:e8:89:95:46:ec:06:df:66:a6:49:5a:94: 3d:04:ad:d6:55:ce:82:ef:63:70:38:c2:7f:78:36: 0a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8C:67:49:F9:20:7A:69:87:8E:55:66:FE:1B:18:D3:DE:1F:4A:60 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:45:13:13:fa:88:10:07:0a:09:13:49:66:39:4c:86:0b:e5: fc:41:ca:45:f4:48:4b:ac:e6:95:6d:4f:bc:0f:ac:2d:1a:09: 9b:65:12:62:0f:9f:41:06:f3:b5:fe:f9:f6:71:5c:dc:f5:89: 26:ff:0f:07:e1:7e:7a:52:05:21:43:6c:ef:5f:32:55:f8:38: ad:c9:c0:ca:88:7c:ea:34:20:ea:ca:3e:0d:c7:24:f3:e1:d8: 93:27:87:e5:4d:4d:e5:7b:ec:4a:1d:18:63:15:f2:64:bf:ce: e1:79:d7:c4:c8:41:4a:1e:36:e0:22:3b:64:1e:f8:68:8b:fa: e3:13:08:eb:09:a7:0a:48:98:9e:fe:a0:d2:0c:1a:ea:5d:f8: ac:fc:54:53:a7:c4:b3:b9:ad:33:ba:4d:9c:85:12:ad:d0:a4: fd:81:d0:6c:90:7f:e0:13:c6:c8:5b:ce:7f:95:c0:14:a4:c6: 08:33:f1:d6:cd:44:47:bd:01:c1:0a:2c:6e:be:51:1a:f4:45: ed:61:a9:8d:17:66:41:55:ad:3f:4d:ea:c9:cb:0b:60:1e:18: 9d:f4:06:f0:d4:56:de:87:ca:e8:85:47:21:0f:0d:68:32:47: 3f:da:dc:8f:94:06:85:9f:39:4b:b6:4e:21:63:a6:bb:95:7b: 66:33:4d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwODIwMTgxMjUzWhcNMjUwODI3MTgxMjUzWjAYMRYwFAYD VQQDEw02OGE2MTAyNS03NjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA710ULpEGJssXTOdOmqADqOiZRJOzJGqC6lVQ0hMDEInOtrNOoPoADRJwmce4 3PJ1UE1cIKtgPNshXu2Ji81mSPqmxE8Qab0opJrjNugVBcTZ8P7+RPFOoZiR6Wd/ Ok/dQfkdU/8dsP4LHfQ3N0ev3NRYTpXDlsA0hBSb0Liv0Lw1ugjnilVQEDgt/pT4 uo9ktPHHNbpjRYDJA7w74gk5rm6781QLKspoEoh0Z+EpVBjoACun5z1HBQCalG/q Qe7nJvi0hSriA9lG6dSix556u9LdN1DopBQDQXYaPLLqnYwE/KHoiZVG7AbfZqZJ WpQ9BK3WVc6C72NwOMJ/eDYK8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKMZ0n5 IHpph45VZv4bGNPeH0pgMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+RRMT+ogQBwoJE0lmOUyGC+X8QcpF9EhLrOaVbU+8D6wtGgmbZRJi D59BBvO1/vn2cVzc9Ykm/w8H4X56UgUhQ2zvXzJV+DitycDKiHzqNCDqyj4NxyTz 4diTJ4flTU3le+xKHRhjFfJkv87hedfEyEFKHjbgIjtkHvhoi/rjEwjrCacKSJie /qDSDBrqXfis/FRTp8Szua0zuk2chRKt0KT9gdBskH/gE8bIW85/lcAUpMYIM/HW zURHvQHBCixuvlEa9EXtYamNF2ZBVa0/TerJywtgHhid9Abw1Fbeh8rohUchDw1o Mkc/2tyPlAaFnzlLtk4hY6a7lXtmM002 -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:15 2025 by rpki-client