$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: 7RjAtyPzVAbOivsgdJQ2KjEbxt/yjobR5eceSmZYX94= Subject key identifier: 04:B8:25:55:26:B7:27:28:B6:4C:3E:D7:8B:74:7A:91:2B:1B:B9:48 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C53 Signing time: Mon 08 Sep 2025 18:37:00 +0000 Manifest this update: Mon 08 Sep 2025 18:36:59 +0000 Manifest next update: Mon 15 Sep 2025 18:36:59 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: PZq548IxjNRMqytnWcS0mR6uw4BgoKscE/MRkVzU+ss=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Sep 8 18:36:59 2025 GMT Not After : Sep 15 18:36:59 2025 GMT Subject: CN=68bf224b-6ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c3:5c:62:9e:3b:14:99:8f:23:2e:73:20:43: f1:93:01:ef:60:09:01:8b:00:bd:2c:e1:4a:d0:20: ee:8b:a6:ff:4f:58:95:12:3b:41:ed:4e:96:ac:0e: 3b:bc:fc:6c:29:72:86:2c:f1:38:54:6f:0d:a7:8a: c8:27:68:7c:a1:2e:68:be:a4:5a:f6:95:d4:df:6e: fd:83:e9:8c:35:f9:cd:c9:bd:13:8d:cd:e6:67:8f: f3:ec:c0:b5:0e:4b:57:10:76:19:48:8b:b3:6f:e6: f5:6d:b5:f2:c8:82:18:0e:f2:47:74:ed:45:85:a6: 3d:86:d9:13:b3:69:d7:76:f7:22:98:af:82:8c:4f: 91:58:a5:1a:9b:62:2c:68:91:c5:8a:c6:03:53:43: 54:b7:b5:55:5f:cf:ac:03:7f:25:93:a9:69:d1:58: c3:5b:ed:f0:2f:08:0b:1c:09:22:e0:7b:78:68:8a: 18:22:64:0f:4f:01:bc:7f:ae:0c:99:2b:7e:8b:97: 38:78:05:fd:23:f6:fa:67:34:6b:04:f2:70:af:b2: f9:7a:99:70:d0:7d:17:cc:11:93:ed:01:4c:c5:76: 33:c3:07:59:44:ce:82:9d:30:07:88:8e:2a:27:18: 60:b9:1e:ac:ec:da:6b:b0:b6:5e:64:0d:e2:92:ab: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B8:25:55:26:B7:27:28:B6:4C:3E:D7:8B:74:7A:91:2B:1B:B9:48 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:e6:e3:82:5a:d2:38:21:2b:10:0f:73:7e:c2:8c:ea:be:6d: 6b:97:d3:87:e6:d9:4e:00:55:b1:3c:24:77:d5:6c:1c:75:9d: 41:df:a3:68:ad:ec:99:11:f8:0b:e7:e8:01:a1:12:6b:de:ed: 90:82:4a:05:b4:f6:fa:48:7a:12:c5:7b:cc:d3:ef:b6:0a:44: fc:0f:4a:2f:22:a6:91:ed:5f:e0:9d:54:60:26:0b:a6:a5:b7: 4d:d4:7d:5e:d1:cc:aa:00:36:f0:b0:dd:15:6e:a6:3f:a8:e0: d4:d5:17:15:fe:7a:96:be:e1:22:9e:de:01:67:4b:d0:85:2b: 7e:c1:94:d1:2e:28:b0:22:6b:58:7d:11:a5:57:a7:60:96:ed: 4b:e5:40:47:7f:d8:13:1e:b2:df:2b:c7:0c:f9:fb:d0:3f:66: 9e:71:e9:79:ce:0f:34:09:19:ae:93:4d:88:39:02:1c:d3:8b: 8b:e0:b4:c1:da:8b:69:3e:d4:a6:1f:87:1c:86:75:fa:53:16: 3c:a0:ac:a8:e1:cc:f1:b9:93:ff:a5:0f:c1:bf:8f:29:8c:60: 65:fa:90:93:ed:c5:01:3c:69:53:a7:9e:63:d2:c8:53:72:d7: 6a:76:38:94:7f:eb:f1:fb:58:d4:e1:14:5f:c6:d9:53:b9:cc: ad:9d:73:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwOTA4MTgzNjU5WhcNMjUwOTE1MTgzNjU5WjAYMRYwFAYD VQQDEw02OGJmMjI0Yi02ZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMNcYp47FJmPIy5zIEPxkwHvYAkBiwC9LOFK0CDui6b/T1iVEjtB7U6WrA47 vPxsKXKGLPE4VG8Np4rIJ2h8oS5ovqRa9pXU3279g+mMNfnNyb0Tjc3mZ4/z7MC1 DktXEHYZSIuzb+b1bbXyyIIYDvJHdO1FhaY9htkTs2nXdvcimK+CjE+RWKUam2Is aJHFisYDU0NUt7VVX8+sA38lk6lp0VjDW+3wLwgLHAki4Ht4aIoYImQPTwG8f64M mSt+i5c4eAX9I/b6ZzRrBPJwr7L5eplw0H0XzBGT7QFMxXYzwwdZRM6CnTAHiI4q JxhguR6s7NprsLZeZA3ikqvUmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS4JVUm tycotkw+14t0epErG7lIMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE5uOCWtI4ISsQD3N+wozqvm1rl9OH5tlOAFWxPCR31WwcdZ1B36No reyZEfgL5+gBoRJr3u2QgkoFtPb6SHoSxXvM0++2CkT8D0ovIqaR7V/gnVRgJgum pbdN1H1e0cyqADbwsN0VbqY/qODU1RcV/nqWvuEint4BZ0vQhSt+wZTRLiiwImtY fRGlV6dglu1L5UBHf9gTHrLfK8cM+fvQP2aecel5zg80CRmuk02IOQIc04uL4LTB 2otpPtSmH4cchnX6UxY8oKyo4czxuZP/pQ/Bv48pjGBl+pCT7cUBPGlTp55j0shT ctdqdjiUf+vx+1jU4RRfxtlTucytnXMT -----END CERTIFICATE-----Generated at Tue Sep 9 06:00:44 2025 by rpki-client