$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft File: YhuBwQnlqnjYKfMKV9o1MwglT2k.mft (raw, json) Hash identifier: z7+dG+L2GjU9pZZMmygTeHsaCVI1vVGw+SrPWjI72b8= Subject key identifier: 5C:C5:2B:9E:E7:CA:88:A0:F8:C8:0A:92:88:4A:7D:11:48:46:A6:25 Authority key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 Certificate issuer: /CN=A9138D62/serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft Manifest number: 0458 Signing time: Sat 09 Aug 2025 00:43:43 +0000 Manifest this update: Sat 09 Aug 2025 00:43:42 +0000 Manifest next update: Sat 16 Aug 2025 00:43:42 +0000 Files and hashes: 1: YhuBwQnlqnjYKfMKV9o1MwglT2k.crl (hash: fBy8W1ebK8vzYfy5lMV3Hs3I4hNRHozqMtgDEealYQE=) 2: 31E51BB65FD311EC9AA5DA4EC4F9AE02.roa (hash: bAaCSc9TYM7K2UkBDoNWyjDrI2lpV2TgVDZgy3NjGCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D62, serialNumber=621B81C109E5AA78D829F30A57DA353308254F69 Validity Not Before: Aug 9 00:43:42 2025 GMT Not After : Aug 16 00:43:42 2025 GMT Subject: CN=689699be-5ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:21:49:fe:b3:6f:a1:7c:13:f6:33:28:94:c8: c5:25:b4:89:35:20:34:71:67:36:8f:6c:9e:04:8c: 23:29:5a:34:d5:2d:90:19:e5:ee:27:05:b8:b6:cc: f2:d0:12:c1:b8:a5:f9:c5:53:c2:09:cf:96:6c:3b: 84:e1:aa:95:c1:3b:62:44:39:63:16:d6:75:00:34: 7c:b3:44:95:68:3d:91:d3:a2:fd:33:05:39:9f:86: 10:0f:d3:38:f3:af:8a:3d:10:78:a4:bf:a8:ce:fb: c1:00:2c:25:73:3f:db:80:d0:b0:6b:28:2b:50:fa: 8d:4b:c1:27:76:ac:30:17:99:05:ee:14:f6:5b:ca: 77:01:28:49:e8:69:b5:1d:e7:99:0a:5f:b0:fa:78: 50:ef:0d:09:6f:58:65:53:1d:4d:18:de:77:26:1b: 6b:a0:97:b3:10:27:bf:d4:db:8e:ed:18:50:92:12: 48:69:d3:37:a2:89:69:8b:96:e8:5f:c5:25:a3:4c: 13:e5:8d:f5:58:cb:36:38:cf:9b:98:fe:f3:95:d5: 18:a2:4b:1e:11:bf:4c:41:56:43:63:47:1a:07:6d: 77:2e:89:c2:87:39:94:ee:49:87:b5:58:a8:2e:ce: d2:8a:bc:d5:56:39:64:78:80:c3:7e:3e:c6:7e:23: 19:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C5:2B:9E:E7:CA:88:A0:F8:C8:0A:92:88:4A:7D:11:48:46:A6:25 X509v3 Authority Key Identifier: keyid:62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:60:a9:2b:7b:3d:23:53:a2:c4:14:28:63:f2:fa:89:97:93: e0:cb:4c:30:56:64:30:cc:f8:0b:98:90:92:83:4c:4c:e4:1f: 8b:dc:60:a1:cd:32:eb:7e:7f:b7:2b:57:d5:ed:2f:03:7f:c9: fa:26:3b:7f:48:d7:a9:72:ae:92:6f:23:96:ea:b0:93:92:72: c5:a2:5f:e7:97:f1:57:b3:22:76:8d:ed:81:6b:7c:50:4b:55: cb:a9:a4:34:dd:67:1a:3b:9e:b2:af:dd:ce:98:54:b0:99:af: d4:fe:d9:20:e4:c5:63:0e:ed:27:02:8f:46:cd:45:78:12:24: bb:05:79:79:6d:67:c1:cf:e7:5a:58:07:0f:42:b9:09:f0:57: 9f:78:b5:74:27:8e:4e:af:15:8c:d6:4c:a0:8d:55:af:87:19: 8d:d0:bf:7d:c9:4a:9d:97:78:50:3b:68:df:cc:47:c1:1f:ef: 3e:42:7f:df:ed:df:58:c7:0c:19:1c:c0:bc:a4:e9:25:87:10: 57:9e:13:ad:1c:70:e2:f0:e8:e9:2c:a4:5e:dc:15:37:a2:be: 5b:c8:f1:82:dd:a6:1e:e8:70:4b:4f:8f:d0:5d:1d:e4:b2:e4: 66:18:05:5e:9a:32:82:06:ed:32:23:f4:44:48:30:30:0e:39: 44:be:80:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhENjIxMTAvBgNVBAUTKDYyMUI4MUMxMDlFNUFBNzhEODI5RjMwQTU3REEzNTMz MDgyNTRGNjkwHhcNMjUwODA5MDA0MzQyWhcNMjUwODE2MDA0MzQyWjAYMRYwFAYD VQQDEw02ODk2OTliZS01Y2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSFJ/rNvoXwT9jMolMjFJbSJNSA0cWc2j2yeBIwjKVo01S2QGeXuJwW4tszy 0BLBuKX5xVPCCc+WbDuE4aqVwTtiRDljFtZ1ADR8s0SVaD2R06L9MwU5n4YQD9M4 86+KPRB4pL+ozvvBACwlcz/bgNCwaygrUPqNS8EndqwwF5kF7hT2W8p3AShJ6Gm1 HeeZCl+w+nhQ7w0Jb1hlUx1NGN53JhtroJezECe/1NuO7RhQkhJIadM3oolpi5bo X8Ulo0wT5Y31WMs2OM+bmP7zldUYokseEb9MQVZDY0caB213LonChzmU7kmHtVio Ls7SirzVVjlkeIDDfj7GfiMZiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzFK57n yoig+MgKkohKfRFIRqYlMB8GA1UdIwQYMBaAFGIbgcEJ5ap42CnzClfaNTMIJU9p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQ2Mi9CQ0I0MEE1ODVG Q0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFuallLZk1LVjlvMU13Z2xU MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lodUJ3UW5scW5qWUtmTUtWOW8xTXdnbFQyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQ2Mi9CQ0I0MEE1ODVGQ0YxMUVDOENGMUUwN0JDNEY5QUUwMi9ZaHVCd1FubHFu allLZk1LVjlvMU13Z2xUMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlYKkrez0jU6LEFChj8vqJl5Pgy0wwVmQwzPgLmJCSg0xM5B+L3GCh zTLrfn+3K1fV7S8Df8n6Jjt/SNepcq6SbyOW6rCTknLFol/nl/FXsyJ2je2Ba3xQ S1XLqaQ03WcaO56yr93OmFSwma/U/tkg5MVjDu0nAo9GzUV4EiS7BXl5bWfBz+da WAcPQrkJ8FefeLV0J45OrxWM1kygjVWvhxmN0L99yUqdl3hQO2jfzEfBH+8+Qn/f 7d9YxwwZHMC8pOklhxBXnhOtHHDi8OjpLKRe3BU3or5byPGC3aYe6HBLT4/QXR3k suRmGAVemjKCBu0yI/RESDAwDjlEvoDt -----END CERTIFICATE-----Generated at Sat Aug 9 23:19:35 2025 by rpki-client