$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: uCixDin88aGmZOlj537bnQ0ypvDxJsaQHiDAQ668hm8= Subject key identifier: 60:78:C9:A4:41:17:C0:81:76:C7:7A:5E:4F:E5:0D:54:A6:91:35:0E Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 0924 Signing time: Sun 24 Aug 2025 20:17:50 +0000 Manifest this update: Sun 24 Aug 2025 20:17:49 +0000 Manifest next update: Sun 31 Aug 2025 20:17:49 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: kN0RlFi1hd6dJ3deQZevTVe53hc59zEpHGsEPBqDwBg=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Aug 24 20:17:49 2025 GMT Not After : Aug 31 20:17:49 2025 GMT Subject: CN=68ab736e-3f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:a9:ee:0d:71:a0:cd:d8:90:76:86:cf:8b: c6:d8:ae:52:35:e5:16:0c:1f:b2:f2:f1:44:9c:57: 35:99:d3:ce:29:e9:1a:7b:c1:20:36:f2:fa:89:df: 0b:72:20:31:46:60:c8:6d:02:f0:45:70:7e:3a:e8: 1b:be:79:ec:23:0a:73:50:1b:dd:c7:4a:91:7c:a2: f0:9d:3c:49:c1:42:e3:b9:6f:a9:73:97:d2:38:86: 87:8d:ec:96:ca:16:33:4a:1e:4c:ea:dd:75:32:2a: 0c:5e:b2:97:de:d3:de:b5:d0:78:42:7f:89:14:50: 08:d8:8a:ff:3d:77:c5:e7:4f:e1:e4:57:d1:95:a4: 77:02:d0:0d:8b:22:6a:29:28:0d:a6:e7:a1:f3:36: 98:08:07:3c:ae:61:1e:e4:f3:3e:28:7d:45:ed:4b: 67:b6:32:fd:94:3a:bf:c9:68:ca:c9:49:91:b2:50: ba:bc:1d:59:ba:c1:1a:18:4c:8d:d6:69:44:df:f5: 51:3a:76:f5:5b:b9:5a:d9:b2:39:7d:01:9b:2b:4d: e1:ad:9c:41:44:a3:f9:2b:fa:64:a1:a2:c4:43:8b: 91:06:e2:db:af:6d:70:f4:b2:ae:25:23:e1:74:4d: ef:6d:49:a7:2a:8c:45:89:98:c1:fc:33:87:6d:ce: 67:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:78:C9:A4:41:17:C0:81:76:C7:7A:5E:4F:E5:0D:54:A6:91:35:0E X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:69:aa:d3:25:a1:cd:9a:bf:7c:9d:44:7b:11:bf:61:72:f2: f9:fd:4f:a3:84:7f:8c:f0:93:36:44:97:b1:22:7e:90:ea:92: 44:b9:31:3c:28:ef:d1:b1:c9:cf:dd:b5:74:e7:3c:a9:ae:b8: 43:b3:38:91:52:3e:0f:5e:ab:9b:34:14:41:fc:e9:b6:5b:d6: 53:b9:32:b9:fa:fb:9d:4e:fb:f5:3f:1d:24:82:e0:2f:82:73: b3:e3:48:21:b2:19:6a:95:ff:7d:a1:c1:17:e5:95:ff:c9:cd: 91:9e:c4:9a:77:3a:8b:f5:ce:b0:3c:50:f2:7b:08:36:b1:45: 02:9c:4c:eb:85:a6:73:be:ef:29:32:88:c1:d7:db:2c:94:1c: 03:98:50:15:84:3c:37:c7:3d:d8:0b:b9:b2:fa:f4:89:e4:86: e6:55:9a:78:37:38:d0:03:ad:c4:86:d5:fd:06:79:21:e6:70: 4d:1c:64:4f:dc:3a:6a:15:f9:24:49:00:fc:f3:0e:8a:fb:10: 36:9d:d9:c0:1f:fe:15:ff:3d:91:25:b9:9e:50:58:d0:2a:ba: 4b:70:6c:29:c2:53:e6:60:90:c3:c1:d7:06:ce:4a:ca:db:d8: 53:33:f8:66:1d:4a:f5:96:ef:ef:d2:b8:72:0b:42:49:37:df: c7:7f:2d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUwODI0MjAxNzQ5WhcNMjUwODMxMjAxNzQ5WjAYMRYwFAYD VQQDEw02OGFiNzM2ZS0zZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspSp7g1xoM3YkHaGz4vG2K5SNeUWDB+y8vFEnFc1mdPOKekae8EgNvL6id8L ciAxRmDIbQLwRXB+OugbvnnsIwpzUBvdx0qRfKLwnTxJwULjuW+pc5fSOIaHjeyW yhYzSh5M6t11MioMXrKX3tPetdB4Qn+JFFAI2Ir/PXfF50/h5FfRlaR3AtANiyJq KSgNpueh8zaYCAc8rmEe5PM+KH1F7UtntjL9lDq/yWjKyUmRslC6vB1ZusEaGEyN 1mlE3/VROnb1W7la2bI5fQGbK03hrZxBRKP5K/pkoaLEQ4uRBuLbr21w9LKuJSPh dE3vbUmnKoxFiZjB/DOHbc5nKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGB4yaRB F8CBdsd6Xk/lDVSmkTUOMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/aarTJaHNmr98nUR7Eb9hcvL5/U+jhH+M8JM2RJexIn6Q6pJEuTE8 KO/RscnP3bV05zyprrhDsziRUj4PXqubNBRB/Om2W9ZTuTK5+vudTvv1Px0kguAv gnOz40ghshlqlf99ocEX5ZX/yc2RnsSadzqL9c6wPFDyewg2sUUCnEzrhaZzvu8p MojB19sslBwDmFAVhDw3xz3YC7my+vSJ5IbmVZp4NzjQA63EhtX9Bnkh5nBNHGRP 3DpqFfkkSQD88w6K+xA2ndnAH/4V/z2RJbmeUFjQKrpLcGwpwlPmYJDDwdcGzkrK 29hTM/hmHUr1lu/v0rhyC0JJN9/Hfy0+ -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:15 2025 by rpki-client