$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: ahXiHD6ijsdkY3PWxaWj1/PSAyscINqvAyvjBWyTKqw= Subject key identifier: EE:6F:91:66:6A:56:9E:9A:D1:FE:5A:5A:9E:DF:9E:D2:C5:8C:95:FF Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 020D Signing time: Tue 09 Sep 2025 02:23:35 +0000 Manifest this update: Tue 09 Sep 2025 02:23:34 +0000 Manifest next update: Tue 16 Sep 2025 02:23:34 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: +WVKlJqS+QUgvAzKdhhmIVLDTIl937+btJNf90pQz9k=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: 7d+9V95blk3EIKh2Ixj3Euh7Ce2kReodQwZ4pY3gbnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Sep 9 02:23:34 2025 GMT Not After : Sep 16 02:23:34 2025 GMT Subject: CN=68bf8fa7-76f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ad:81:be:73:d6:49:f5:5a:f9:b2:d6:b5:ab: e6:9b:05:ea:9a:1e:7c:44:db:06:9c:af:46:26:53: 24:a1:b2:30:c1:c8:9b:f6:30:98:72:31:a1:e8:5e: 3f:19:4c:3a:2c:b3:8b:cd:fe:28:18:41:54:a0:ee: 50:97:d1:15:c6:36:de:05:c4:b9:ba:10:e1:96:35: 32:d4:6e:62:a4:7b:22:57:c5:d0:2d:78:7a:1c:77: 81:d8:29:b8:48:18:36:b3:08:3d:2c:6e:29:87:d6: 7f:86:25:be:53:69:41:9a:66:50:20:f4:57:cd:3c: 34:91:36:1b:37:29:e1:80:62:dd:45:82:8e:f5:20: 4a:33:0d:bb:ef:13:b7:76:b0:84:60:9b:3f:2b:3b: 44:63:9e:45:8f:05:01:d8:08:9a:74:b8:28:fc:d8: 1c:34:81:46:31:65:1b:f6:b8:47:cd:ab:40:74:15: c3:39:30:6c:47:22:b5:d8:92:ff:b8:18:55:68:51: e8:7f:c2:4b:6f:23:40:49:b2:35:d2:7d:f8:83:d3: e7:15:bf:8c:95:5b:de:cc:8f:34:34:c1:0f:97:e1: ea:e1:a5:80:61:d1:78:4f:5c:bb:f4:ae:4b:0f:33: 9d:05:23:d2:f5:37:bc:5e:9b:98:c7:cc:b8:c4:b4: 0f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6F:91:66:6A:56:9E:9A:D1:FE:5A:5A:9E:DF:9E:D2:C5:8C:95:FF X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:66:9e:f7:11:a1:c4:24:db:a2:92:ef:d4:e7:59:9b:dc:7d: ac:64:1c:d7:f0:8b:e6:eb:5a:95:82:e6:a7:db:72:42:5a:a6: c0:52:07:98:c9:72:12:d8:10:3e:9d:e6:b0:cd:39:a1:78:72: d7:7c:25:c5:bb:e3:17:76:c6:1f:5e:c6:82:3f:aa:8f:39:ae: f9:17:d3:2d:75:fa:04:6e:79:3f:b3:7b:df:1d:48:d7:dc:36: 67:65:f4:00:10:93:96:8a:cb:25:61:20:95:1e:c4:09:ea:18: f2:4c:b1:e9:94:8a:fc:e6:04:ef:8a:ea:b9:83:0b:74:82:a6: 1b:15:f4:8a:b4:2b:92:ba:b0:c1:3c:18:5c:76:83:c6:17:72: 17:71:3b:82:0e:ef:f3:90:35:6f:43:dd:17:ec:69:62:68:fd: ab:78:22:78:d3:08:f4:40:bb:2e:ae:a1:f7:7f:01:4f:be:8f: e9:30:fe:c6:9b:55:34:1d:ae:51:47:b5:9b:35:be:27:96:b3: aa:c1:a1:04:4b:23:a5:1c:2a:7a:19:56:6d:11:99:e4:e8:8d: a5:a6:b1:fb:47:a1:6b:a0:58:27:0d:9e:17:0b:6a:f6:e2:8e: ec:9d:6d:49:55:31:4d:3a:fa:84:dc:ab:5b:68:eb:6f:b2:df: eb:11:bc:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwOTA5MDIyMzM0WhcNMjUwOTE2MDIyMzM0WjAYMRYwFAYD VQQDEw02OGJmOGZhNy03NmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy62BvnPWSfVa+bLWtavmmwXqmh58RNsGnK9GJlMkobIwwcib9jCYcjGh6F4/ GUw6LLOLzf4oGEFUoO5Ql9EVxjbeBcS5uhDhljUy1G5ipHsiV8XQLXh6HHeB2Cm4 SBg2swg9LG4ph9Z/hiW+U2lBmmZQIPRXzTw0kTYbNynhgGLdRYKO9SBKMw277xO3 drCEYJs/KztEY55FjwUB2AiadLgo/NgcNIFGMWUb9rhHzatAdBXDOTBsRyK12JL/ uBhVaFHof8JLbyNASbI10n34g9PnFb+MlVvezI80NMEPl+Hq4aWAYdF4T1y79K5L DzOdBSPS9Te8XpuYx8y4xLQPtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5vkWZq Vp6a0f5aWp7fntLFjJX/MB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOZp73EaHEJNuiku/U51mb3H2sZBzX8Ivm61qVguan23JCWqbAUgeY yXIS2BA+neawzTmheHLXfCXFu+MXdsYfXsaCP6qPOa75F9MtdfoEbnk/s3vfHUjX 3DZnZfQAEJOWisslYSCVHsQJ6hjyTLHplIr85gTviuq5gwt0gqYbFfSKtCuSurDB PBhcdoPGF3IXcTuCDu/zkDVvQ90X7GliaP2reCJ40wj0QLsurqH3fwFPvo/pMP7G m1U0Ha5RR7WbNb4nlrOqwaEESyOlHCp6GVZtEZnk6I2lprH7R6FroFgnDZ4XC2r2 4o7snW1JVTFNOvqE3KtbaOtvst/rEbxG -----END CERTIFICATE-----Generated at Tue Sep 9 09:55:46 2025 by rpki-client