$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft File: yhlef9JZjYWjbJnsSBs1dMBuOxc.mft (raw, json) Hash identifier: VC2LvGldVl2tkNg0esye3EhR1wnV1JhIBgbq2efJcvg= Subject key identifier: 54:DD:FF:6A:86:50:B1:79:F5:E9:A3:31:0E:51:D6:A4:9B:48:08:B4 Authority key identifier: CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 Certificate issuer: /CN=A919DA63/serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft Manifest number: 0824 Signing time: Wed 20 Aug 2025 20:52:14 +0000 Manifest this update: Wed 20 Aug 2025 20:52:14 +0000 Manifest next update: Wed 27 Aug 2025 20:52:14 +0000 Files and hashes: 1: yhlef9JZjYWjbJnsSBs1dMBuOxc.crl (hash: TnMz8O9A7CdE7Eg9isGy6pXs+T+dhWrjhrHcRR2NijQ=) 2: B65C355AE1E411EAAD5D8545C4F9AE02.roa (hash: EHew2Al89yfLEVdXGaRbj1T8KtGh2w0PUC3MBSskoUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA63, serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Validity Not Before: Aug 20 20:52:14 2025 GMT Not After : Aug 27 20:52:14 2025 GMT Subject: CN=68a6357e-2c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c6:fa:7c:60:e0:a2:c1:cb:51:e2:39:42:27: d1:06:88:56:2b:a5:f3:84:af:93:91:82:65:3b:91: 58:cc:fe:af:f2:86:be:ba:43:b6:e0:ce:e4:aa:7d: 5e:a8:83:2a:1f:77:92:3b:a7:2a:f3:6c:2f:80:82: 48:7d:58:d5:70:4d:33:07:3a:0e:3d:cc:92:4c:c8: 6d:11:26:6b:63:99:04:d3:e4:2a:c6:bd:61:ae:1d: 50:e1:59:af:65:87:43:25:80:e3:e0:3f:09:2e:46: 75:7e:f8:54:fc:3e:5c:df:60:65:3d:2b:6c:c9:d6: a2:06:e1:18:6b:f2:c4:21:71:15:8b:c1:0a:b3:d1: 28:aa:e7:b9:e6:84:16:01:6a:77:24:23:01:89:5d: e4:5b:b9:9e:0a:01:10:e5:35:0b:61:eb:ee:31:88: 75:04:4e:1c:b5:80:11:ab:42:1e:72:c3:1f:f2:7f: af:85:fb:6e:b4:fd:ca:e0:08:9d:6d:c2:03:24:f8: 29:55:39:1d:7c:1a:55:0d:65:29:c2:4c:ea:e1:a4: bc:9e:bd:0b:d3:45:66:bc:eb:c5:30:68:ce:f7:13: 3e:5e:f7:a1:36:b8:84:32:71:ab:52:5e:75:18:ab: f0:9f:5d:59:35:f3:2e:df:ed:25:1f:42:8b:a5:f4: ca:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DD:FF:6A:86:50:B1:79:F5:E9:A3:31:0E:51:D6:A4:9B:48:08:B4 X509v3 Authority Key Identifier: keyid:CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:0e:b2:13:46:7a:5f:db:dd:bd:56:9e:a9:f5:f9:65:54:7d: 72:a9:08:6b:29:08:c7:87:7a:a3:4c:4a:90:6a:06:a3:57:69: c7:10:8a:69:de:0a:60:58:e6:5e:f2:5b:f6:a7:8c:db:5e:4e: 97:57:aa:fa:3a:68:17:15:df:d6:ed:7e:36:07:3d:2a:ee:73: ea:b8:64:3c:27:23:27:93:d4:d6:84:40:fc:ae:9b:32:26:75: 15:f4:21:ee:23:ac:37:d2:68:e6:f7:3b:36:05:3e:96:36:c5: ff:12:7f:e5:e5:8e:3d:12:03:76:82:5a:3b:45:ff:93:af:17: 6c:9e:89:77:21:95:36:05:c2:5a:65:59:48:43:20:ad:51:af: 6e:4c:a6:0c:eb:f5:b8:ed:36:e9:6c:69:49:50:a8:24:d4:a2: 8a:28:b1:b4:1e:a3:ce:da:7a:a8:1b:b7:07:da:b8:93:31:63: 2a:9f:62:53:71:e1:1c:26:d0:df:6c:5f:b9:c1:cf:31:a1:a4: e4:46:04:23:2b:97:0f:ea:81:1e:77:86:ab:f3:63:c5:78:96: 1b:75:19:73:d9:77:52:2b:4b:cc:97:90:1c:d3:a9:03:f9:91: a9:60:d7:91:87:14:ea:0f:57:fd:52:e7:82:00:13:13:25:58: e0:e1:07:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBNjMxMTAvBgNVBAUTKENBMTk1RTdGRDI1OThEODVBMzZDOTlFQzQ4MUIzNTc0 QzA2RTNCMTcwHhcNMjUwODIwMjA1MjE0WhcNMjUwODI3MjA1MjE0WjAYMRYwFAYD VQQDEw02OGE2MzU3ZS0yYzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8cb6fGDgosHLUeI5QifRBohWK6XzhK+TkYJlO5FYzP6v8oa+ukO24M7kqn1e qIMqH3eSO6cq82wvgIJIfVjVcE0zBzoOPcySTMhtESZrY5kE0+Qqxr1hrh1Q4Vmv ZYdDJYDj4D8JLkZ1fvhU/D5c32BlPStsydaiBuEYa/LEIXEVi8EKs9Eoque55oQW AWp3JCMBiV3kW7meCgEQ5TULYevuMYh1BE4ctYARq0IecsMf8n+vhftutP3K4Aid bcIDJPgpVTkdfBpVDWUpwkzq4aS8nr0L00VmvOvFMGjO9xM+XvehNriEMnGrUl51 GKvwn11ZNfMu3+0lH0KLpfTKMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTd/2qG ULF59emjMQ5R1qSbSAi0MB8GA1UdIwQYMBaAFMoZXn/SWY2Fo2yZ7EgbNXTAbjsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REE2My8wMUJGN0JFRUUx RTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZV2piSm5zU0JzMWRNQnVP eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lobGVmOUpaallXamJKbnNTQnMxZE1CdU94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REE2My8wMUJGN0JFRUUxRTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZ V2piSm5zU0JzMWRNQnVPeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnDrITRnpf2929Vp6p9fllVH1yqQhrKQjHh3qjTEqQagajV2nHEIpp 3gpgWOZe8lv2p4zbXk6XV6r6OmgXFd/W7X42Bz0q7nPquGQ8JyMnk9TWhED8rpsy JnUV9CHuI6w30mjm9zs2BT6WNsX/En/l5Y49EgN2glo7Rf+Trxdsnol3IZU2BcJa ZVlIQyCtUa9uTKYM6/W47TbpbGlJUKgk1KKKKLG0HqPO2nqoG7cH2riTMWMqn2JT ceEcJtDfbF+5wc8xoaTkRgQjK5cP6oEed4ar82PFeJYbdRlz2XdSK0vMl5Ac06kD +ZGpYNeRhxTqD1f9UueCABMTJVjg4QdJ -----END CERTIFICATE-----Generated at Fri Aug 22 16:17:02 2025 by rpki-client