$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: snwvGSwQFiKLoyfA2no+bS+Yfnzgy8TwcO1qsWkVlME= Subject key identifier: 95:3E:17:45:B6:7F:F5:C1:F7:89:90:D8:E6:F8:02:A3:7E:30:08:02 Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 1853 Signing time: Thu 18 Sep 2025 16:38:09 +0000 Manifest this update: Thu 18 Sep 2025 16:38:09 +0000 Manifest next update: Thu 25 Sep 2025 16:38:09 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: sI8R4h8w6H0WH4y3WghDc7SKwiDP8SMNoX37YOiGt1g=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: XNKpRb8/02tHDrrS9S3tLwWbmiJabIsnKyEKhJUYUM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6241 (0x1861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1, serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Sep 18 16:38:09 2025 GMT Not After : Sep 25 16:38:09 2025 GMT Subject: CN=68cc3571-fc57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:4e:02:35:3f:7f:35:d0:e3:5d:f7:ca:6e: 11:6b:06:a3:7e:bb:bc:eb:0b:e4:79:7d:76:e5:f9: fd:99:69:8e:07:2e:18:3a:90:7e:f1:3d:9f:85:4f: 97:76:16:f8:a8:e0:b6:99:8d:9c:ac:d7:f0:97:cc: b0:62:2d:dc:82:57:13:01:91:1e:f7:b2:81:24:d2: bd:da:bc:cd:f6:46:dc:ff:0b:73:3b:0e:fc:df:34: 4e:e7:9c:e9:45:56:00:0a:87:33:aa:c0:56:58:15: f5:5b:71:8d:42:d6:70:0a:a2:f8:1f:e3:69:5a:ed: 4c:70:5e:19:84:39:ab:ca:b7:b8:a0:4e:80:13:44: cb:1d:34:60:85:0a:cd:d1:1f:0c:2d:46:33:2d:76: c5:ac:92:e7:77:65:42:2c:13:ce:23:2d:ba:66:35: c3:bf:cd:92:39:ed:b7:ac:03:2f:bd:df:49:cb:14: 54:a9:b5:68:a5:fe:0f:a1:9d:60:79:0b:1d:f1:49: 32:6b:31:a8:b7:54:5e:38:b6:74:f3:4f:82:81:f4: 4e:34:5f:3c:8b:dc:bc:63:04:32:5b:3f:c3:4e:c6: 4e:4c:f3:9d:c5:77:56:44:d3:02:1e:79:4d:b3:34: a6:37:ce:06:8c:05:bf:3e:ef:77:23:ad:c9:d1:36: 44:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3E:17:45:B6:7F:F5:C1:F7:89:90:D8:E6:F8:02:A3:7E:30:08:02 X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:25:14:7e:86:d5:1d:42:7f:a4:03:5f:2f:01:b7:91:0e:32: e6:47:c8:8b:0c:ce:0a:0d:bc:8e:ea:c1:b2:4f:f6:b1:51:c1: 1b:ca:97:a8:3d:13:fa:e0:20:11:20:42:bf:a0:c6:fb:a7:28: cc:66:c7:eb:d3:75:7f:37:04:a5:54:a6:d0:5d:26:f6:ac:c8: 76:b6:8d:51:a3:74:a2:c7:a3:96:27:26:3b:97:6e:9b:af:85: 65:f2:bd:b3:88:df:ef:30:42:82:9e:e9:d8:9c:ce:9b:71:2e: 83:83:c7:44:d0:6d:cb:af:ee:50:3e:41:a6:7c:cf:b4:ab:2b: ab:4f:59:82:ca:16:6e:a0:d3:bc:05:70:eb:3c:5b:97:e2:d7: 51:5e:d6:be:59:b2:b0:da:4f:f7:47:cb:da:3b:c0:2b:3c:a2: f9:f0:aa:5f:ab:07:c6:4b:cc:73:55:e7:4f:3a:bb:81:52:cc: 2d:60:d1:a0:02:22:13:91:17:ec:57:5f:78:e6:5e:61:cd:83: ef:64:a1:eb:b0:fd:a3:05:78:d5:8c:b1:2c:bb:bf:82:17:7e: c7:27:96:5d:cb:39:7c:4c:97:8d:d7:1e:9f:22:a7:36:40:5a: c5:4c:d8:5b:27:da:ad:a6:6c:30:3a:23:cc:3c:b0:8d:b9:fd: 67:7d:d7:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjUwOTE4MTYzODA5WhcNMjUwOTI1MTYzODA5WjAYMRYwFAYD VQQDEw02OGNjMzU3MS1mYzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAdOAjU/fzXQ4133ym4Rawajfru86wvkeX125fn9mWmOBy4YOpB+8T2fhU+X dhb4qOC2mY2crNfwl8ywYi3cglcTAZEe97KBJNK92rzN9kbc/wtzOw783zRO55zp RVYACoczqsBWWBX1W3GNQtZwCqL4H+NpWu1McF4ZhDmryre4oE6AE0TLHTRghQrN 0R8MLUYzLXbFrJLnd2VCLBPOIy26ZjXDv82SOe23rAMvvd9JyxRUqbVopf4PoZ1g eQsd8UkyazGot1ReOLZ080+CgfRONF88i9y8YwQyWz/DTsZOTPOdxXdWRNMCHnlN szSmN84GjAW/Pu93I63J0TZE3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU+F0W2 f/XB94mQ2Ob4AqN+MAgCMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6JRR+htUdQn+kA18vAbeRDjLmR8iLDM4KDbyO6sGyT/axUcEbypeo PRP64CARIEK/oMb7pyjMZsfr03V/NwSlVKbQXSb2rMh2to1Ro3Six6OWJyY7l26b r4Vl8r2ziN/vMEKCnunYnM6bcS6Dg8dE0G3Lr+5QPkGmfM+0qyurT1mCyhZuoNO8 BXDrPFuX4tdRXta+WbKw2k/3R8vaO8ArPKL58KpfqwfGS8xzVedPOruBUswtYNGg AiITkRfsV1945l5hzYPvZKHrsP2jBXjVjLEsu7+CF37HJ5Zdyzl8TJeN1x6fIqc2 QFrFTNhbJ9qtpmwwOiPMPLCNuf1nfdeW -----END CERTIFICATE-----Generated at Thu Sep 18 20:49:46 2025 by rpki-client