$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft (raw, json) Hash identifier: m408E94BUzpl2pNTfVLPStpRW+kNxjAcDG7b2y/mR5o= Subject key identifier: 6D:D8:C2:19:25:F2:E4:FE:4A:43:D8:71:57:D8:99:BC:14:BE:A7:C8 Authority key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 Certificate issuer: /CN=A917E1FA/serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft Manifest number: 2A Signing time: Sat 23 Aug 2025 08:00:12 +0000 Manifest this update: Sat 23 Aug 2025 08:00:11 +0000 Manifest next update: Sat 30 Aug 2025 08:00:11 +0000 Files and hashes: 1: yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl (hash: ILUYnIIaAFboF5xRq8PeJFtkkXSC8Q4u2IR9wkj+0B0=) 2: 7354ACC0472811F0ADE2D44BC4F9AE02.roa (hash: wcclgPl4R6E/Zzr/USbPvSIER4uFng9U6618g1EWkBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Validity Not Before: Aug 23 08:00:11 2025 GMT Not After : Aug 30 08:00:11 2025 GMT Subject: CN=68a9750b-a475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:31:71:73:44:40:54:7f:e2:7a:11:9a:08:70: f4:7a:da:6e:cd:ad:3e:1b:e4:25:4c:e7:b4:31:3b: cc:21:3a:32:1f:cb:56:da:b9:7e:88:0c:b1:62:fe: 2a:52:60:7e:de:97:de:f1:3a:f6:3e:b7:19:00:d2: ea:34:a0:2d:ed:20:89:b6:39:82:ca:08:31:35:3c: 77:ce:30:fe:4a:7f:97:86:a1:76:8e:fb:2a:7c:dc: e9:fc:5a:ad:7a:b2:2b:76:52:4b:12:93:92:b5:13: 0e:e4:67:ba:0a:fe:6b:84:5b:4b:c8:28:95:76:3c: 65:12:f3:f0:ac:7b:e4:7c:46:c8:54:0f:20:d5:dd: ad:91:2f:26:f4:95:ae:a6:0b:9f:f6:fb:f4:8d:5d: 43:95:34:55:ea:c4:17:2f:4c:06:0a:27:79:1b:c6: 5d:ac:fb:f2:84:40:0f:df:2e:c9:1f:73:0d:47:9c: a2:0a:f6:3d:0f:08:07:a8:8e:ff:d5:fd:46:36:22: 45:74:b3:d5:93:eb:88:48:57:86:c8:23:e5:12:1d: c7:f4:90:fb:c5:ea:e6:4c:cc:f5:b0:b4:d0:71:b6: 72:60:44:36:9b:e9:74:f4:71:ad:4b:db:c1:f3:76: 17:6f:b1:e9:24:63:ab:32:bd:60:80:66:e8:b7:da: 3f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D8:C2:19:25:F2:E4:FE:4A:43:D8:71:57:D8:99:BC:14:BE:A7:C8 X509v3 Authority Key Identifier: keyid:C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:44:9f:30:28:29:43:da:c8:51:3b:f8:8b:05:b2:af:f9:cc: 4c:4e:1a:20:c3:99:15:29:36:14:ee:42:b0:b5:72:3f:d6:8b: 54:bc:00:99:66:3c:ca:b8:75:7a:d8:11:5a:7d:65:f1:87:57: 6b:22:a0:c8:4e:b1:68:86:12:c6:64:fb:2f:4b:8a:d2:a5:4d: 29:13:6c:e9:8a:c3:94:fc:cf:67:ff:96:65:46:e1:26:07:c1: 33:40:96:37:9f:82:a1:4f:32:90:f2:6f:d8:04:b1:52:7b:db: dd:fc:23:29:63:ea:6c:8a:2a:12:b9:7a:3a:e1:84:0f:4d:4b: b0:15:87:a9:c1:5e:e5:cc:17:e1:45:36:4b:79:1a:41:c3:80: 97:1b:e5:09:c4:3c:e6:17:86:2b:e9:8d:76:95:e2:69:e8:2b: 01:b8:ca:da:0b:34:f1:7d:86:8e:15:dc:88:09:fe:f8:94:93: 75:22:e7:ae:35:9e:36:2b:27:fa:c9:36:d9:3f:e1:18:9a:6d: f5:63:8d:78:42:48:06:e7:2c:b5:ba:2e:c3:40:59:02:bd:2a: 28:a0:22:1d:60:a8:e6:44:f0:31:87:16:e9:ad:0c:67:36:26: 5d:14:a2:51:ba:60:21:06:bd:34:6d:4e:9b:6f:fe:0d:c0:61: ce:0d:e3:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoQzkxMkIwNTRDQTQzQTkzNEMxNzc1NzMzRDg0QkYxNkU0 ODU2QkVGMDAeFw0yNTA4MjMwODAwMTFaFw0yNTA4MzAwODAwMTFaMBgxFjAUBgNV BAMTDTY4YTk3NTBiLWE0NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxMXFzREBUf+J6EZoIcPR62m7NrT4b5CVM57QxO8whOjIfy1bauX6IDLFi/ipS YH7el97xOvY+txkA0uo0oC3tIIm2OYLKCDE1PHfOMP5Kf5eGoXaO+yp83On8Wq16 sit2UksSk5K1Ew7kZ7oK/muEW0vIKJV2PGUS8/Cse+R8RshUDyDV3a2RLyb0la6m C5/2+/SNXUOVNFXqxBcvTAYKJ3kbxl2s+/KEQA/fLskfcw1HnKIK9j0PCAeojv/V /UY2IkV0s9WT64hIV4bII+USHcf0kPvF6uZMzPWwtNBxtnJgRDab6XT0ca1L28Hz dhdvsekkY6syvWCAZui32j/VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbdjCGSXy 5P5KQ9hxV9iZvBS+p8gwHwYDVR0jBBgwFoAUyRKwVMpDqTTBd1cz2EvxbkhWvvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBL0EyRDVFRTVFNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRUQmQxY3oyRXZ4YmtoV3Z2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJLd1ZNcERxVFRCZDFjejJFdnhia2hXdnZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBL0EyRDVFRTVFNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRU QmQxY3oyRXZ4YmtoV3Z2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAABEnzAoKUPayFE7+IsFsq/5zExOGiDDmRUpNhTuQrC1cj/Wi1S8AJlm PMq4dXrYEVp9ZfGHV2sioMhOsWiGEsZk+y9LitKlTSkTbOmKw5T8z2f/lmVG4SYH wTNAljefgqFPMpDyb9gEsVJ72938Iylj6myKKhK5ejrhhA9NS7AVh6nBXuXMF+FF Nkt5GkHDgJcb5QnEPOYXhivpjXaV4mnoKwG4ytoLNPF9ho4V3IgJ/viUk3Ui5641 njYrJ/rJNtk/4RiabfVjjXhCSAbnLLW6LsNAWQK9KiigIh1gqOZE8DGHFumtDGc2 Jl0UolG6YCEGvTRtTptv/g3AYc4N4xc= -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:09 2025 by rpki-client