$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft File: YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json) Hash identifier: IzQ178jw3AWhNIAbREqgGM0rcEjhxBDRp9vtDMC8EM4= Subject key identifier: 3D:5F:B1:B3:75:54:10:04:6A:D4:CA:47:3C:5A:63:E6:EE:A0:B7:53 Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft Manifest number: D8 Signing time: Thu 21 Aug 2025 05:44:11 +0000 Manifest this update: Thu 21 Aug 2025 05:44:11 +0000 Manifest next update: Thu 28 Aug 2025 05:44:11 +0000 Files and hashes: 1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: wIoWzPkWps2vkMe32Mpyy0rN49kfzhRNyZK95GUaHi4=) 2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: zqqFgR8hZJd3tGWwh69g86T2JXS+0860K/pt4Nn27L8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2, serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: Aug 21 05:44:11 2025 GMT Not After : Aug 28 05:44:11 2025 GMT Subject: CN=68a6b22b-0bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:aa:6f:e0:87:6a:4d:3e:bf:9d:06:b1:d8: f9:8e:53:60:f6:cf:bb:25:5b:2a:2a:6c:ea:29:db: ee:60:8b:17:b0:49:6c:d9:c9:4e:da:d2:37:fe:35: e5:89:09:cc:42:25:b6:be:ba:d1:96:1c:7e:f1:2d: 05:16:78:ac:6f:1f:04:d2:ae:f4:11:b3:03:66:e3: b6:89:03:f8:f6:a7:ac:ed:28:2f:94:17:7d:7b:d1: ac:8a:3f:95:34:c5:c4:09:0c:01:87:cd:a6:01:b8: b1:0e:a7:4a:0b:ae:9a:73:97:55:91:54:39:6f:d7: fb:bc:96:53:0c:47:6b:06:ee:f0:08:72:e8:4a:5f: 14:40:82:0d:8a:a8:b8:b8:f7:34:3a:1a:db:13:2b: dc:7c:a7:8d:e7:a6:aa:ac:79:0e:ce:c9:a0:ca:7d: 21:d5:e8:2d:c4:7a:11:78:7e:b1:49:d9:30:af:87: 41:2e:51:0c:cf:ba:1f:f2:95:a1:0b:3a:d0:42:56: 3b:a4:36:9e:b8:3c:c8:2e:38:d7:9a:30:61:73:0c: 21:51:f4:ef:55:88:30:c0:88:a4:ed:3e:77:fe:40: 14:ca:e3:57:e2:d9:58:b6:03:24:da:21:3a:05:4d: 9a:6b:4c:bf:c0:ef:a6:07:b7:c4:18:e7:05:17:c4: 7a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5F:B1:B3:75:54:10:04:6A:D4:CA:47:3C:5A:63:E6:EE:A0:B7:53 X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7c:d8:34:77:ac:f1:27:0b:70:d6:37:a4:82:b3:6b:9d:6e: a3:01:d3:a5:a0:0c:95:2a:63:80:af:a1:6a:dd:41:98:91:7a: 99:93:7b:e6:d1:3a:58:f7:1f:c7:16:28:00:cd:d6:fe:ae:7e: 55:b9:b2:8a:e9:ca:34:40:37:4a:9f:5b:5a:a6:b2:b2:b1:eb: 6d:13:bf:56:fa:fa:f2:e9:fd:0c:01:cf:53:d0:67:68:44:74: 5d:b8:66:01:c3:d1:67:75:82:d5:ab:1c:25:e2:b6:52:39:45: 47:35:76:b9:35:65:cc:49:d8:0f:e5:33:7a:a3:0a:3e:7d:8a: 59:19:75:2b:0e:59:73:33:8a:a4:39:7c:38:9d:c5:6b:d4:4a: 3b:70:20:f6:96:31:46:f9:8b:79:c3:2f:ca:24:67:2c:f8:72: cc:18:c6:db:ae:bb:75:aa:6d:ac:dd:4d:b1:4d:46:38:5a:09: e9:50:9b:43:38:cd:f9:bd:d6:08:55:9e:40:67:f0:eb:29:75: 81:09:88:b9:11:25:d0:b2:80:e2:bc:02:68:15:89:a5:00:da: 47:59:96:21:94:f4:d5:34:4b:91:80:6f:a3:3b:db:da:5e:f0: 9c:62:37:01:c5:c4:09:5a:c5:e3:de:0a:de:41:4f:cb:e1:92: 22:48:c8:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0RTIxMTAvBgNVBAUTKDYwMUFBM0ZENDc3MEJGQzY5QUYyNDA2RjJFODBFRDA4 RTdEQzZCNDMwHhcNMjUwODIxMDU0NDExWhcNMjUwODI4MDU0NDExWjAYMRYwFAYD VQQDEw02OGE2YjIyYi0wYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx6qb+CHak0+v50Gsdj5jlNg9s+7JVsqKmzqKdvuYIsXsEls2clO2tI3/jXl iQnMQiW2vrrRlhx+8S0FFnisbx8E0q70EbMDZuO2iQP49qes7SgvlBd9e9Gsij+V NMXECQwBh82mAbixDqdKC66ac5dVkVQ5b9f7vJZTDEdrBu7wCHLoSl8UQIINiqi4 uPc0OhrbEyvcfKeN56aqrHkOzsmgyn0h1egtxHoReH6xSdkwr4dBLlEMz7of8pWh CzrQQlY7pDaeuDzILjjXmjBhcwwhUfTvVYgwwIik7T53/kAUyuNX4tlYtgMk2iE6 BU2aa0y/wO+mB7fEGOcFF8R6/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1fsbN1 VBAEatTKRzxaY+buoLdTMB8GA1UdIwQYMBaAFGAao/1HcL/GmvJAby6A7Qjn3GtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTRFMi83M0VCRTZBMjM0 NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4YWE4a0J2TG9EdENPZmNh ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2EwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTRFMi83M0VCRTZBMjM0NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4 YWE4a0J2TG9EdENPZmNhME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAfNg0d6zxJwtw1jekgrNrnW6jAdOloAyVKmOAr6Fq3UGYkXqZk3vm 0TpY9x/HFigAzdb+rn5VubKK6co0QDdKn1taprKysettE79W+vry6f0MAc9T0Gdo RHRduGYBw9FndYLVqxwl4rZSOUVHNXa5NWXMSdgP5TN6owo+fYpZGXUrDllzM4qk OXw4ncVr1Eo7cCD2ljFG+Yt5wy/KJGcs+HLMGMbbrrt1qm2s3U2xTUY4WgnpUJtD OM35vdYIVZ5AZ/DrKXWBCYi5ESXQsoDivAJoFYmlANpHWZYhlPTVNEuRgG+jO9va XvCcYjcBxcQJWsXj3greQU/L4ZIiSMht -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:30 2025 by rpki-client