$ rpki-client -vvf rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft File: YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft (raw, json) Hash identifier: krFCpfRhb9fCK8ZfoiOzYA0WY2Kl+J5om3bsU3Utku8= Subject key identifier: 37:EF:60:B1:A1:0E:C1:14:FA:99:E2:3A:5D:10:E4:01:D3:D1:26:21 Authority key identifier: 60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA Certificate issuer: /CN=A913A839/serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Certificate serial: 0A5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft Manifest number: 0A56 Signing time: Sun 10 Aug 2025 19:42:24 +0000 Manifest this update: Sun 10 Aug 2025 19:42:24 +0000 Manifest next update: Sun 17 Aug 2025 19:42:24 +0000 Files and hashes: 1: YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl (hash: AH/bZbeA6U0DJeHyW7BgDuNmZ1rzcuaEaFzZhXYsiFM=) 2: 0DCB1BDC6C3111EA8F4E9B70C4F9AE02.roa (hash: Hp6K1tI8/RrDTW95E3dlGX3/hbhtzZBhD6rGFjZDwK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2652 (0xa5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A839, serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Validity Not Before: Aug 10 19:42:24 2025 GMT Not After : Aug 17 19:42:24 2025 GMT Subject: CN=6898f620-f54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:36:33:a9:53:c3:23:b3:ee:ca:57:ef:a4:f0: 8b:ed:19:4b:3b:09:c9:14:39:2c:9a:e5:8d:ce:33: 6e:39:04:4b:08:ec:31:8c:e8:ab:75:67:a7:d0:de: a1:8d:c2:82:ea:1d:9c:ce:cb:15:ca:ef:20:f8:d5: af:1e:e1:e6:fb:ff:fd:69:cc:aa:dc:68:4d:07:04: 88:0b:c3:60:7f:c9:60:a6:a5:f4:8f:43:5b:69:63: ea:ea:98:d3:ca:c5:63:dc:db:a7:34:a0:8d:ba:a1: 7e:21:61:c0:74:c6:aa:c4:00:31:e0:c4:0f:0b:2a: d4:3c:0c:f1:2b:22:5e:17:33:58:59:24:06:be:3b: 4d:81:e3:e8:a9:5c:ad:e1:af:c2:b3:f1:51:df:0b: e0:98:6a:aa:29:b4:d5:63:15:35:86:2d:f3:a1:6b: 61:f7:76:3d:ec:ae:b1:88:7e:af:5f:8c:49:6c:67: 11:fe:75:ac:5e:8e:e3:4c:9c:59:88:44:51:ed:17: cb:cc:e3:db:d0:98:bb:34:7c:c6:17:ee:5c:36:0f: fa:3a:0a:a6:5e:91:8b:9b:ce:19:e4:29:c7:6f:10: 20:84:42:21:ed:16:89:36:d9:9d:5e:93:49:fe:85: 5c:43:09:42:5e:7e:09:21:8f:37:44:bf:f2:9a:1e: b3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EF:60:B1:A1:0E:C1:14:FA:99:E2:3A:5D:10:E4:01:D3:D1:26:21 X509v3 Authority Key Identifier: keyid:60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:96:42:d1:ee:e9:e2:2e:42:16:33:6b:d3:79:e5:42:e4:2d: 96:47:ee:4f:ee:05:2e:79:7c:2f:af:7b:31:be:1e:eb:af:af: 79:6c:37:71:d5:99:59:49:90:17:b8:02:28:43:ec:0c:9b:f1: 18:c1:bf:3a:6a:c1:25:92:21:9f:d8:60:6d:60:e4:9d:cc:01: fd:7e:c0:a0:21:16:3c:51:1f:c1:7d:17:86:13:08:1a:65:13: 3e:eb:86:fe:4a:bc:2d:b6:14:29:ad:98:e7:73:8c:86:0d:0e: 0f:68:50:c5:0e:1e:d3:92:08:f7:88:6e:22:47:16:de:8c:f6: 96:8f:62:42:82:a2:c7:9d:0b:8b:e3:15:8a:f3:ac:73:70:21: 29:59:16:40:60:06:df:61:ca:00:41:85:df:7b:d0:f1:8e:73: 1d:f1:78:b0:07:ef:9e:66:6c:59:e6:e3:f0:04:56:c9:26:e7: 5a:83:4f:c7:18:45:c4:7c:87:0c:85:e9:69:0d:71:53:16:22: 18:84:7c:05:c6:55:63:4a:07:b5:95:ed:63:b0:59:aa:1a:64: 94:c3:8f:b0:a2:70:21:e5:1d:34:83:19:2a:6a:3a:4d:94:fa: d8:c3:c9:60:38:02:3b:ee:1f:44:b4:1f:d7:8d:41:86:fb:ec: 32:d0:e0:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MzkxMTAvBgNVBAUTKDYwQUIzQ0ZGQUI4OEE1MTM0MkI4MTZGMDU5MDE5RjA3 M0U5NTAwQUEwHhcNMjUwODEwMTk0MjI0WhcNMjUwODE3MTk0MjI0WjAYMRYwFAYD VQQDEw02ODk4ZjYyMC1mNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DYzqVPDI7PuylfvpPCL7RlLOwnJFDksmuWNzjNuOQRLCOwxjOirdWen0N6h jcKC6h2czssVyu8g+NWvHuHm+//9acyq3GhNBwSIC8Ngf8lgpqX0j0NbaWPq6pjT ysVj3NunNKCNuqF+IWHAdMaqxAAx4MQPCyrUPAzxKyJeFzNYWSQGvjtNgePoqVyt 4a/Cs/FR3wvgmGqqKbTVYxU1hi3zoWth93Y97K6xiH6vX4xJbGcR/nWsXo7jTJxZ iERR7RfLzOPb0Ji7NHzGF+5cNg/6OgqmXpGLm84Z5CnHbxAghEIh7RaJNtmdXpNJ /oVcQwlCXn4JIY83RL/ymh6zsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfvYLGh DsEU+pniOl0Q5AHT0SYhMB8GA1UdIwQYMBaAFGCrPP+riKUTQrgW8FkBnwc+lQCq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgzOS9DMEUwM0NGNDZD MkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBSTkN1QmJ3V1FHZkJ6NlZB S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lLczhfNnVJcFJOQ3VCYndXUUdmQno2VkFLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgzOS9DMEUwM0NGNDZDMkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBS TkN1QmJ3V1FHZkJ6NlZBS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAklkLR7uniLkIWM2vTeeVC5C2WR+5P7gUueXwvr3sxvh7rr695bDdx 1ZlZSZAXuAIoQ+wMm/EYwb86asElkiGf2GBtYOSdzAH9fsCgIRY8UR/BfReGEwga ZRM+64b+SrwtthQprZjnc4yGDQ4PaFDFDh7Tkgj3iG4iRxbejPaWj2JCgqLHnQuL 4xWK86xzcCEpWRZAYAbfYcoAQYXfe9DxjnMd8XiwB++eZmxZ5uPwBFbJJudag0/H GEXEfIcMhelpDXFTFiIYhHwFxlVjSge1le1jsFmqGmSUw4+wonAh5R00gxkqajpN lPrYw8lgOAI77h9EtB/XjUGG++wy0OBU -----END CERTIFICATE-----Generated at Mon Aug 11 06:29:57 2025 by rpki-client