$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: 6mKkCIxeV1h9f/VehfKuqM4EC7FaIfmSk41PgO8r2rw= Subject key identifier: 16:90:44:16:49:52:95:A1:E7:FB:14:5A:B6:2C:53:A5:55:AB:0A:A0 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0209 Signing time: Sun 07 Sep 2025 02:38:10 +0000 Manifest this update: Sun 07 Sep 2025 02:38:10 +0000 Manifest next update: Sun 14 Sep 2025 02:38:09 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: UYp3XDwmSkGiiUJfQp17yFVWAztvcK9D80dL5BbK2q8=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Sep 7 02:38:10 2025 GMT Not After : Sep 14 02:38:09 2025 GMT Subject: CN=68bcf012-7057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:95:d8:ee:64:4f:55:20:0b:04:75:5a:05:c8: 3f:41:8d:0e:c8:9d:22:36:1f:f9:b8:33:ed:26:ac: 7f:2e:73:f9:ed:62:33:6a:75:62:05:1d:a9:ca:19: 8b:47:8e:cf:8b:c9:5d:4e:e6:e9:54:ee:18:83:08: b6:f5:91:3d:b6:06:c9:eb:f4:46:6c:30:87:d9:d7: ad:9a:37:a6:ca:34:8a:d5:d5:71:0b:94:25:1c:1e: c3:44:7e:86:a7:2a:43:2f:40:3c:f2:f2:8c:38:30: dc:33:0f:e2:71:55:ea:4a:24:d8:d5:63:e3:c0:13: 8f:e6:79:4a:da:af:32:c6:71:78:c4:d1:b0:b5:ac: e3:f3:a6:a0:e8:10:09:0b:9f:e8:80:09:ec:63:b6: 28:e1:6a:fa:d3:19:89:1c:73:da:4d:92:ed:30:78: df:56:a7:8a:c3:3c:13:3d:09:8a:88:a1:70:89:5b: 82:cf:32:99:83:c1:1c:5c:94:ea:0d:4d:c4:d9:43: 7a:45:14:11:d7:5c:7b:4c:6f:b6:0c:0d:e3:61:7b: 52:4b:eb:89:c5:bd:b3:d7:70:06:26:2c:6b:d4:37: 08:f2:3c:75:e0:38:65:17:5a:b1:74:e1:2c:e0:e5: 2d:e5:ce:69:5c:4f:f5:9d:a5:8c:bb:d8:2f:dd:a4: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:90:44:16:49:52:95:A1:E7:FB:14:5A:B6:2C:53:A5:55:AB:0A:A0 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:24:96:7b:b2:ed:a0:f0:0c:34:c2:34:26:10:72:06:f7:a3: 95:e2:14:b2:78:1b:04:7b:29:77:e6:dd:a8:b7:09:3a:1d:2a: 99:d5:76:06:15:5a:7b:63:6e:da:59:cf:ec:de:53:09:bd:a2: 11:da:b5:49:d8:fa:62:8b:48:f5:74:c5:72:92:fd:67:2d:e0: c9:e3:31:a2:94:0e:0b:65:6d:a2:e1:73:23:43:8c:0b:1a:70: 98:02:8f:04:40:97:ec:d7:e2:9c:0c:d1:b7:bd:91:44:6b:57: 61:7e:f7:ba:13:17:42:96:9b:6c:8c:6b:43:5d:30:36:12:73: ff:07:65:ba:05:bf:66:ac:b6:88:78:a2:32:13:34:fc:bf:b5: b0:a1:a5:bc:00:7f:39:e4:80:f2:d8:bf:ad:45:d5:06:ae:b6: 11:97:d5:9c:96:11:fc:79:86:80:b6:3d:2f:6b:c6:fb:9f:bf: 93:78:12:df:37:b4:c3:03:bf:35:a6:0e:9b:8c:1e:1a:95:30: 18:19:6d:d2:0b:d0:da:a7:27:ac:cb:c0:a2:e6:60:e3:f6:3b: ea:9c:60:13:73:7e:08:1b:22:49:9d:f1:3c:17:7a:a0:26:7d: 19:5f:27:27:c6:a5:c7:7e:6f:31:68:92:c2:30:a1:4f:72:db: 45:06:54:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwOTA3MDIzODEwWhcNMjUwOTE0MDIzODA5WjAYMRYwFAYD VQQDEw02OGJjZjAxMi03MDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJXY7mRPVSALBHVaBcg/QY0OyJ0iNh/5uDPtJqx/LnP57WIzanViBR2pyhmL R47Pi8ldTubpVO4Ygwi29ZE9tgbJ6/RGbDCH2detmjemyjSK1dVxC5QlHB7DRH6G pypDL0A88vKMODDcMw/icVXqSiTY1WPjwBOP5nlK2q8yxnF4xNGwtazj86ag6BAJ C5/ogAnsY7Yo4Wr60xmJHHPaTZLtMHjfVqeKwzwTPQmKiKFwiVuCzzKZg8EcXJTq DU3E2UN6RRQR11x7TG+2DA3jYXtSS+uJxb2z13AGJixr1DcI8jx14DhlF1qxdOEs 4OUt5c5pXE/1naWMu9gv3aTPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaQRBZJ UpWh5/sUWrYsU6VVqwqgMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEJJZ7su2g8Aw0wjQmEHIG96OV4hSyeBsEeyl35t2otwk6HSqZ1XYG FVp7Y27aWc/s3lMJvaIR2rVJ2Ppii0j1dMVykv1nLeDJ4zGilA4LZW2i4XMjQ4wL GnCYAo8EQJfs1+KcDNG3vZFEa1dhfve6ExdClptsjGtDXTA2EnP/B2W6Bb9mrLaI eKIyEzT8v7WwoaW8AH855IDy2L+tRdUGrrYRl9WclhH8eYaAtj0va8b7n7+TeBLf N7TDA781pg6bjB4alTAYGW3SC9Dapyesy8Ci5mDj9jvqnGATc34IGyJJnfE8F3qg Jn0ZXycnxqXHfm8xaJLCMKFPcttFBlRI -----END CERTIFICATE-----Generated at Mon Sep 8 12:45:48 2025 by rpki-client