$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: zo7ZrQpAXLT+ml8jMAlLv1OCBef5NK9CuBdddbz2W+s= Subject key identifier: 66:0D:2A:73:2E:39:76:4E:6B:46:69:3C:EB:4C:17:76:76:FC:CA:8A Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0CC4 Signing time: Sun 10 Aug 2025 18:10:29 +0000 Manifest this update: Sun 10 Aug 2025 18:10:29 +0000 Manifest next update: Sun 17 Aug 2025 18:10:29 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: 482FcmnCtIJJaDI1lRaRAmlbsoQnM6P3dBDX2nqPNv8=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: X3uR7nkHEkJDs/4UDZXjCbVpYlI7ETxizWrqRmPT3Rg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Aug 10 18:10:29 2025 GMT Not After : Aug 17 18:10:29 2025 GMT Subject: CN=6898e095-2d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:04:71:9c:5e:3f:08:b0:f2:21:d2:2c:4c: 8e:7a:2f:f9:4d:c1:b4:c8:f3:84:34:47:5e:83:7e: a9:9d:6d:08:63:65:90:9e:b1:61:21:10:ab:5c:f1: 35:2f:76:6c:fc:77:37:79:b8:e4:1f:0a:aa:42:8b: 05:b0:5d:2f:c4:92:45:61:f9:ca:62:f8:e6:10:bc: 72:76:4a:ce:31:1a:ed:2f:f2:2b:1a:73:64:c6:b4: dd:f8:7c:b4:14:4f:69:15:32:7c:35:c8:87:41:8e: 73:aa:1e:47:28:a2:85:a7:fc:0b:2c:b0:19:be:9c: 66:f4:8c:9c:ff:de:59:60:18:df:1a:b8:a5:ba:5b: 3d:a6:b9:c2:02:4b:ac:f2:85:70:91:ad:01:25:fe: cf:2b:12:8d:41:f6:0c:c1:26:e7:a2:ed:fd:63:05: cd:18:d3:1f:d2:fc:d1:6e:ec:92:5b:00:90:0e:7a: a7:ce:09:2f:84:e4:87:4d:3b:2f:76:59:9a:b6:8c: 41:62:75:43:af:c4:45:26:1c:e2:22:67:58:b7:1d: c1:1d:59:21:be:d8:bf:96:6e:e5:a5:29:6e:5a:7f: d5:b3:e8:66:5f:9e:b8:35:94:ea:e1:66:64:f6:4f: 87:4a:d1:3a:03:9d:88:76:df:1c:9f:0a:5d:4a:0f: 75:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0D:2A:73:2E:39:76:4E:6B:46:69:3C:EB:4C:17:76:76:FC:CA:8A X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:d8:59:4a:c7:e6:5d:ee:a0:82:47:5d:fb:c9:a2:f7:4a:ad: 32:48:2b:75:30:f6:bf:2f:c1:d2:95:cc:03:30:da:48:17:90: 80:f2:04:76:89:7e:d0:7d:c8:09:cc:53:b9:cc:3e:93:0c:ce: 54:72:49:b1:59:30:f5:c9:6a:4d:0d:a6:dc:31:39:fb:d8:0f: 1b:1b:26:09:a3:ab:ed:a3:86:5c:15:13:19:ac:6c:1d:d6:c0: 4f:e0:de:70:f8:44:8c:e5:59:ae:97:4a:ec:d5:52:3e:a6:81: f8:f1:a0:a4:6d:8d:98:e2:63:8e:97:95:34:b0:46:15:60:66: 91:3a:d9:ec:3e:dc:5c:f1:00:b2:66:81:07:f1:56:28:e5:92: 9a:82:d5:40:7b:b7:ac:59:a1:58:c3:c8:51:db:f4:df:32:41: 20:5d:ef:99:eb:11:50:9a:b5:1b:d0:57:3c:fb:19:85:d7:e3: f5:14:7b:2c:ca:dc:5f:db:dc:a2:7d:b4:be:f5:c4:0d:ce:be: 39:a8:bf:d5:9c:3b:2b:cd:77:75:18:ff:8f:21:8c:ef:0d:2e: 72:f4:ab:ce:58:38:67:32:54:e3:11:63:38:b3:bf:8c:7c:08: 1f:8e:72:b3:82:46:8d:04:48:92:a9:2d:c3:c9:e3:f1:97:6c: 32:42:eb:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjUwODEwMTgxMDI5WhcNMjUwODE3MTgxMDI5WjAYMRYwFAYD VQQDEw02ODk4ZTA5NS0yZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i0EcZxePwiw8iHSLEyOei/5TcG0yPOENEdeg36pnW0IY2WQnrFhIRCrXPE1 L3Zs/Hc3ebjkHwqqQosFsF0vxJJFYfnKYvjmELxydkrOMRrtL/IrGnNkxrTd+Hy0 FE9pFTJ8NciHQY5zqh5HKKKFp/wLLLAZvpxm9Iyc/95ZYBjfGriluls9prnCAkus 8oVwka0BJf7PKxKNQfYMwSbnou39YwXNGNMf0vzRbuySWwCQDnqnzgkvhOSHTTsv dlmatoxBYnVDr8RFJhziImdYtx3BHVkhvti/lm7lpSluWn/Vs+hmX564NZTq4WZk 9k+HStE6A52Idt8cnwpdSg91jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYNKnMu OXZOa0ZpPOtMF3Z2/MqKMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV2FlKx+Zd7qCCR137yaL3Sq0ySCt1MPa/L8HSlcwDMNpIF5CA8gR2 iX7QfcgJzFO5zD6TDM5UckmxWTD1yWpNDabcMTn72A8bGyYJo6vto4ZcFRMZrGwd 1sBP4N5w+ESM5Vmul0rs1VI+poH48aCkbY2Y4mOOl5U0sEYVYGaROtnsPtxc8QCy ZoEH8VYo5ZKagtVAe7esWaFYw8hR2/TfMkEgXe+Z6xFQmrUb0Fc8+xmF1+P1FHss ytxf29yifbS+9cQNzr45qL/VnDsrzXd1GP+PIYzvDS5y9KvOWDhnMlTjEWM4s7+M fAgfjnKzgkaNBEiSqS3DyePxl2wyQuuD -----END CERTIFICATE-----Generated at Mon Aug 11 10:06:54 2025 by rpki-client