$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: m2xnXBUyzsGsdlewf1R8CTwe8FSkQA0Vpn/s1Nekurg= Subject key identifier: 79:B1:88:54:A3:BE:D5:E5:F8:08:AC:42:A6:69:F3:BE:E9:6C:85:9C Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0A20 Signing time: Mon 18 Aug 2025 20:06:47 +0000 Manifest this update: Mon 18 Aug 2025 20:06:46 +0000 Manifest next update: Mon 25 Aug 2025 20:06:46 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: u1iQVvbdulsZZoj3Iv5zZLyfOKf8qzSlrEyv4PlAKgg=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: WJcxZE//v/qgwM5L8UFDfgSzlZEjCMButWifhGqcTAY=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Aug 18 20:06:46 2025 GMT Not After : Aug 25 20:06:46 2025 GMT Subject: CN=68a387d7-219f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ad:60:26:70:14:08:ee:c4:3c:8b:a0:af:66: 9c:7a:28:96:7e:72:8b:8e:41:01:8b:49:dd:a2:dc: fa:c3:23:c2:4c:49:4f:4b:3c:4f:15:9d:28:bf:36: f4:00:b1:40:66:00:07:3a:90:24:da:92:77:fe:5c: 0a:f2:af:05:c7:66:a1:50:75:30:4b:aa:0f:d8:ce: ea:0a:bd:56:e2:ac:e3:ff:20:a5:bf:96:7f:88:4b: 81:d6:a5:f1:ac:60:ed:19:6a:30:7f:18:31:6f:e4: c5:4b:c8:f7:ab:5c:54:e0:5d:c9:9e:5a:a1:58:bb: c8:9c:c3:7c:bb:11:f8:91:b8:b9:22:23:41:a7:89: 71:2e:f3:ee:6b:17:8a:c9:b7:93:87:da:e0:f0:2f: 00:8f:25:28:21:58:42:fc:8b:57:b9:10:2a:a3:65: c5:a3:97:62:0d:cb:f1:e3:31:8e:c7:f8:b1:6f:1c: 86:1d:9e:10:75:cc:d1:6d:b9:7b:6e:e8:ba:1c:1f: 32:a9:00:2a:93:14:ba:85:f7:20:d8:ce:62:b5:f0: d8:a7:19:47:95:a0:7e:0b:a4:cb:76:b8:78:76:f1: 39:64:7f:bd:7c:6d:96:e6:dc:e2:3e:6f:0a:ba:82: cd:bc:4e:c6:19:ee:3b:6b:0f:6a:6e:23:2c:7e:7c: 94:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B1:88:54:A3:BE:D5:E5:F8:08:AC:42:A6:69:F3:BE:E9:6C:85:9C X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:4c:2d:2d:23:25:8c:d0:4d:30:d8:b4:ad:f8:a5:b8:9d:7b: 37:44:ed:5b:7a:e2:e9:00:e1:b9:e0:2f:53:00:fe:a9:0a:5c: 56:89:45:98:cd:b7:fc:54:e4:31:12:e5:66:b5:64:62:a9:b8: db:a6:80:7b:c7:bb:27:04:d8:39:2f:0e:bf:6e:8d:ae:18:82: 21:26:93:3e:c8:af:15:bb:08:a2:0b:bd:e2:64:21:e0:40:af: a0:9e:84:79:85:7c:c1:9c:67:ab:f0:97:58:15:fe:b3:d2:84: 47:e8:c8:21:9e:76:8e:41:d7:2c:43:99:ff:98:ed:79:0c:0f: 1c:a4:2e:27:ba:11:d9:09:d3:a6:43:b6:c3:c5:b6:33:8e:3e: ef:93:5d:fc:3e:c1:0d:95:96:58:42:0d:33:1d:a2:02:ea:5c: 38:cd:85:27:89:3a:33:b4:1f:d2:bf:86:be:bb:67:cb:b1:83: 5a:85:88:7a:19:9d:44:df:d2:01:00:8b:cc:2a:80:f8:3b:37: 8b:48:7b:27:98:df:2f:d6:6e:47:7d:d0:b9:0c:12:19:a5:62: 50:57:5a:d7:ac:7c:24:a0:ff:87:05:2b:73:77:ba:1a:af:8e: e7:40:0b:00:e3:4d:50:8d:d1:67:93:fa:fb:50:ed:6d:07:01: 17:c1:eb:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwODE4MjAwNjQ2WhcNMjUwODI1MjAwNjQ2WjAYMRYwFAYD VQQDEw02OGEzODdkNy0yMTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3a1gJnAUCO7EPIugr2aceiiWfnKLjkEBi0ndotz6wyPCTElPSzxPFZ0ovzb0 ALFAZgAHOpAk2pJ3/lwK8q8Fx2ahUHUwS6oP2M7qCr1W4qzj/yClv5Z/iEuB1qXx rGDtGWowfxgxb+TFS8j3q1xU4F3JnlqhWLvInMN8uxH4kbi5IiNBp4lxLvPuaxeK ybeTh9rg8C8AjyUoIVhC/ItXuRAqo2XFo5diDcvx4zGOx/ixbxyGHZ4QdczRbbl7 bui6HB8yqQAqkxS6hfcg2M5itfDYpxlHlaB+C6TLdrh4dvE5ZH+9fG2W5tziPm8K uoLNvE7GGe47aw9qbiMsfnyUwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmxiFSj vtXl+AisQqZp877pbIWcMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyTC0tIyWM0E0w2LSt+KW4nXs3RO1beuLpAOG54C9TAP6pClxWiUWY zbf8VOQxEuVmtWRiqbjbpoB7x7snBNg5Lw6/bo2uGIIhJpM+yK8VuwiiC73iZCHg QK+gnoR5hXzBnGer8JdYFf6z0oRH6MghnnaOQdcsQ5n/mO15DA8cpC4nuhHZCdOm Q7bDxbYzjj7vk138PsENlZZYQg0zHaIC6lw4zYUniToztB/Sv4a+u2fLsYNahYh6 GZ1E39IBAIvMKoD4OzeLSHsnmN8v1m5HfdC5DBIZpWJQV1rXrHwkoP+HBStzd7oa r47nQAsA401QjdFnk/r7UO1tBwEXwesU -----END CERTIFICATE-----Generated at Wed Aug 20 15:37:17 2025 by rpki-client