$ rpki-client -vvf rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft File: YptQlj68agIuJ67LYTQg5A5020o.mft (raw, json) Hash identifier: s4PTKeQgnLREDxmQhM5iXaRyXV1Uu7Cefs+5stl9vwQ= Subject key identifier: CB:CD:94:4C:B3:7A:97:9D:DD:35:47:8D:23:69:4C:FE:ED:55:3F:75 Authority key identifier: 62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A Certificate issuer: /CN=A911392E/serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft Manifest number: C5 Signing time: Mon 11 Aug 2025 06:01:14 +0000 Manifest this update: Mon 11 Aug 2025 06:01:14 +0000 Manifest next update: Mon 18 Aug 2025 06:01:14 +0000 Files and hashes: 1: YptQlj68agIuJ67LYTQg5A5020o.crl (hash: T90RW4R3LY+nXkl8fv1j+iv6naQ6DGtqqP07YA79kPU=) 2: 8E9B074050E311EF8624AC36C4F9AE02.roa (hash: pSCYQ3uLsCLOJxTrAoE8Q2pLkXLNKvUAYP3brjTHhbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911392E, serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Validity Not Before: Aug 11 06:01:14 2025 GMT Not After : Aug 18 06:01:14 2025 GMT Subject: CN=6899872a-594d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:f8:a6:61:37:0e:d4:d2:59:79:31:3b:5f: 35:77:1c:5c:61:d4:4d:75:d9:f0:19:1b:47:57:56: d1:4a:91:33:d7:1a:16:e1:d2:65:3c:c9:69:ba:7a: f6:15:c9:0b:e2:ed:14:05:a1:b1:05:5e:ab:90:db: 80:cf:59:60:ea:3b:ac:7c:0b:85:a6:37:31:bc:e1: 3e:e5:c9:5b:f6:ac:49:03:95:cb:90:66:bf:7a:a3: ea:30:8c:77:4a:03:4d:73:b6:ce:fa:79:44:9a:57: a4:57:39:7a:97:ee:da:2a:c9:f0:63:45:67:e4:6c: 22:54:b8:4e:a9:00:42:27:d8:22:22:3d:72:a4:95: 2b:8d:62:7c:3e:c5:ea:e6:68:43:26:b6:42:d9:90: ba:6e:78:f9:5b:a0:8e:1b:3a:be:89:67:0f:a0:44: eb:60:ab:e9:6b:77:6c:ab:77:c3:5e:0e:c0:af:3c: bc:ee:05:a8:21:1c:f6:72:d8:de:3e:d4:a5:7b:04: 5d:03:6b:f9:84:a4:85:c8:8e:b4:18:25:a4:6b:ad: 93:d6:94:b8:99:df:b9:e7:eb:09:ee:ad:cf:b0:a1: 85:90:2c:7a:20:7b:d0:65:e1:bb:e8:cd:1a:24:71: 99:94:0b:4e:4e:60:fd:a2:4f:de:5b:20:5d:10:f0: 18:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CD:94:4C:B3:7A:97:9D:DD:35:47:8D:23:69:4C:FE:ED:55:3F:75 X509v3 Authority Key Identifier: keyid:62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:77:5a:48:a9:5b:33:14:bd:ef:e6:79:e6:a2:32:b7:0f:b6: 2f:75:80:f5:7c:16:3e:cb:b4:d4:6b:8d:13:f2:b2:b6:2c:de: f1:32:ad:d8:be:b1:2a:22:2a:5f:e2:ac:24:39:df:49:23:3e: ba:75:20:ff:d1:19:1a:4f:cb:14:61:ae:fe:bf:7e:0d:73:b2: 08:71:8f:a5:ca:d0:60:81:c2:e5:5d:6a:9c:5e:be:9e:51:81: 47:01:1f:44:f9:65:f3:cf:19:6e:46:f8:51:d7:66:ee:83:db: 1f:43:dd:af:50:d8:ea:5e:78:59:f4:fc:66:79:5f:61:d5:e5: 14:49:c2:f3:55:40:3d:94:01:00:4e:22:0c:aa:30:09:82:45: 14:45:4a:c0:55:78:61:3c:83:cd:c0:08:fe:7a:74:60:de:47: be:28:05:e7:d1:29:5d:7f:3f:76:18:12:24:9b:83:7e:29:5b: 5a:45:f6:4c:d1:1a:98:48:fc:f2:78:48:cb:15:0e:57:de:58: 50:17:ae:74:d4:50:95:9a:64:bd:21:cc:1e:89:c1:5d:cd:4f: 15:9b:21:78:a3:70:f3:33:c6:59:0a:b5:0f:7d:92:2c:52:11: 91:1d:aa:36:88:c0:f4:cd:f1:d0:30:c7:65:f8:23:33:98:25: 5d:bb:0d:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5MkUxMTAvBgNVBAUTKDYyOUI1MDk2M0VCQzZBMDIyRTI3QUVDQjYxMzQyMEU0 MEU3NERCNEEwHhcNMjUwODExMDYwMTE0WhcNMjUwODE4MDYwMTE0WjAYMRYwFAYD VQQDEw02ODk5ODcyYS01OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuin4pmE3DtTSWXkxO181dxxcYdRNddnwGRtHV1bRSpEz1xoW4dJlPMlpunr2 FckL4u0UBaGxBV6rkNuAz1lg6jusfAuFpjcxvOE+5clb9qxJA5XLkGa/eqPqMIx3 SgNNc7bO+nlEmlekVzl6l+7aKsnwY0Vn5GwiVLhOqQBCJ9giIj1ypJUrjWJ8PsXq 5mhDJrZC2ZC6bnj5W6COGzq+iWcPoETrYKvpa3dsq3fDXg7Arzy87gWoIRz2ctje PtSlewRdA2v5hKSFyI60GCWka62T1pS4md+55+sJ7q3PsKGFkCx6IHvQZeG76M0a JHGZlAtOTmD9ok/eWyBdEPAY4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvNlEyz eped3TVHjSNpTP7tVT91MB8GA1UdIwQYMBaAFGKbUJY+vGoCLieuy2E0IOQOdNtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkyRS8zMkUxRjM1ODUw RTAxMUVGQTcwOTQxNjhDNEY5QUUwMi9ZcHRRbGo2OGFnSXVKNjdMWVRRZzVBNTAy MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lwdFFsajY4YWdJdUo2N0xZVFFnNUE1MDIwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkyRS8zMkUxRjM1ODUwRTAxMUVGQTcwOTQxNjhDNEY5QUUwMi9ZcHRRbGo2OGFn SXVKNjdMWVRRZzVBNTAyMG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUd1pIqVszFL3v5nnmojK3D7YvdYD1fBY+y7TUa40T8rK2LN7xMq3Y vrEqIipf4qwkOd9JIz66dSD/0RkaT8sUYa7+v34Nc7IIcY+lytBggcLlXWqcXr6e UYFHAR9E+WXzzxluRvhR12bug9sfQ92vUNjqXnhZ9PxmeV9h1eUUScLzVUA9lAEA TiIMqjAJgkUURUrAVXhhPIPNwAj+enRg3ke+KAXn0Sldfz92GBIkm4N+KVtaRfZM 0RqYSPzyeEjLFQ5X3lhQF6501FCVmmS9IcweicFdzU8VmyF4o3DzM8ZZCrUPfZIs UhGRHao2iMD0zfHQMMdl+CMzmCVduw1G -----END CERTIFICATE-----Generated at Tue Aug 12 22:55:14 2025 by rpki-client