$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft File: _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json) Hash identifier: LMNVwcT71muq7ItC+wSuO7jD5pnF0eDdF3rl5dQ4Xyw= Subject key identifier: 77:86:BA:F5:9F:56:A1:59:EA:31:97:91:3B:CE:F6:43:85:1D:09:35 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft Manifest number: 8A Signing time: Thu 21 Aug 2025 06:45:50 +0000 Manifest this update: Thu 21 Aug 2025 06:45:49 +0000 Manifest next update: Thu 28 Aug 2025 06:45:49 +0000 Files and hashes: 1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: vrVqlfr/ZRPa6aqIrw8H5awRGYsEx7UJcnq5bFjJSRc=) 2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: Y+fJ5KK7IVdhYlyuLVkF2P1TQN/5/+n0ri0WCyCm2Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 06:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Aug 21 06:45:49 2025 GMT Not After : Aug 28 06:45:49 2025 GMT Subject: CN=68a6c09e-d699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:42:03:fd:9b:7d:19:e0:5e:47:04:33:92: 2e:4a:39:93:8d:29:63:4a:1a:84:b8:20:04:25:03: dc:c6:68:8b:46:3e:0b:fc:4a:cc:15:bb:87:7b:d8: 42:bd:4e:7a:00:e5:36:07:ed:87:5c:a5:7a:db:fa: 77:ef:51:cc:a3:c3:0b:46:75:8c:b6:3c:cc:0d:89: 9a:83:85:d6:60:0b:bc:0b:76:fd:84:ab:67:78:ef: ea:8a:45:fb:5d:13:df:7c:dc:fe:d1:d6:62:d1:ce: 0a:0d:30:ee:6f:56:ba:92:2d:b3:89:1a:77:5a:c7: eb:64:0e:93:8c:46:96:6e:dc:c4:e5:16:27:bb:fe: 45:c9:bf:b7:39:c9:a4:f0:af:f1:c8:0a:98:d1:6e: 7d:f0:0c:0c:6c:7e:60:66:2c:dc:e1:5f:55:bb:59: cc:3d:a7:27:8b:98:4b:fd:f8:ec:4a:89:e2:04:8c: 8c:c8:cc:3a:0a:b0:a6:c7:70:36:1a:9b:d3:22:f7: 13:2b:14:03:32:0a:c4:26:3b:1c:d1:05:6c:59:1a: 23:f6:ba:05:e7:26:09:7a:a2:bc:87:ae:5d:87:49: 44:43:5b:7a:db:4c:25:4a:08:66:d3:ec:83:f3:ef: 9c:83:56:c1:09:d6:76:46:69:bb:e1:de:9d:02:ec: 09:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:86:BA:F5:9F:56:A1:59:EA:31:97:91:3B:CE:F6:43:85:1D:09:35 X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:f8:26:1b:e9:93:50:70:e2:85:e6:f5:36:99:76:f5:6d:8c: 5e:79:02:fe:39:6d:60:99:56:c7:13:c1:79:87:37:77:9a:0e: 8f:e6:f2:cc:ad:82:f8:c6:92:62:b6:93:0c:eb:62:3c:c0:69: 59:49:ea:eb:6b:c0:f7:36:c4:97:63:0e:22:03:1b:0b:1b:5f: 5b:41:cd:e4:f7:58:eb:83:ae:07:14:e5:b3:da:8e:0e:af:c4: b0:64:a1:16:c3:c7:de:8a:4a:47:19:35:5c:08:79:e7:ae:5d: ac:0d:5e:fc:51:94:e3:0b:df:7c:b6:a5:bd:eb:e8:10:d1:3e: 64:36:fb:47:18:52:b4:05:71:31:7d:69:61:08:71:3c:6b:99: 83:ea:0a:32:77:36:12:a9:56:b0:94:3b:b5:39:99:84:3e:33: 45:3f:b8:88:64:66:6c:70:39:2f:87:1c:3b:d3:02:e0:23:80: bb:ab:08:5f:da:87:a2:a9:09:b6:52:69:f0:28:02:68:e1:85: c5:17:3f:54:35:1e:87:f3:39:1d:51:97:1f:b4:a1:26:09:cf: 46:04:4d:0a:0e:67:44:aa:e0:00:1c:e3:42:0d:fd:af:ca:c5: 0a:92:ee:6f:0c:ce:07:26:bb:38:a4:77:ea:db:0f:b8:2d:4b: 3f:d4:14:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEZEODhERUY5QTZCRERCRUE1OTM4OUVEQzYxNzFBQURD QTEwNkI1MDkwHhcNMjUwODIxMDY0NTQ5WhcNMjUwODI4MDY0NTQ5WjAYMRYwFAYD VQQDEw02OGE2YzA5ZS1kNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvadCA/2bfRngXkcEM5IuSjmTjSljShqEuCAEJQPcxmiLRj4L/ErMFbuHe9hC vU56AOU2B+2HXKV62/p371HMo8MLRnWMtjzMDYmag4XWYAu8C3b9hKtneO/qikX7 XRPffNz+0dZi0c4KDTDub1a6ki2ziRp3WsfrZA6TjEaWbtzE5RYnu/5Fyb+3Ocmk 8K/xyAqY0W598AwMbH5gZizc4V9Vu1nMPacni5hL/fjsSoniBIyMyMw6CrCmx3A2 GpvTIvcTKxQDMgrEJjsc0QVsWRoj9roF5yYJeqK8h65dh0lEQ1t620wlSghm0+yD 8++cg1bBCdZ2Rmm74d6dAuwJhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeGuvWf VqFZ6jGXkTvO9kOFHQk1MB8GA1UdIwQYMBaAFP2I3vmmvdvqWTie3GFxqtyhBrUJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FREFCRDIzMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTItcFpPSjdjWVhHcTNLRUd0 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FREFCRDIzMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTIt cFpPSjdjWVhHcTNLRUd0UWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg+CYb6ZNQcOKF5vU2mXb1bYxeeQL+OW1gmVbHE8F5hzd3mg6P5vLM rYL4xpJitpMM62I8wGlZSerra8D3NsSXYw4iAxsLG19bQc3k91jrg64HFOWz2o4O r8SwZKEWw8feikpHGTVcCHnnrl2sDV78UZTjC998tqW96+gQ0T5kNvtHGFK0BXEx fWlhCHE8a5mD6goydzYSqVawlDu1OZmEPjNFP7iIZGZscDkvhxw70wLgI4C7qwhf 2oeiqQm2UmnwKAJo4YXFFz9UNR6H8zkdUZcftKEmCc9GBE0KDmdEquAAHONCDf2v ysUKku5vDM4HJrs4pHfq2w+4LUs/1BSp -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:44 2025 by rpki-client