$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: 7aV/4UDRnNlh1+6vv2/qIvtg8UydfnS4WVFvtzl+Xec= Subject key identifier: 1D:C3:2E:4E:2E:F1:B4:CA:83:28:CE:F4:9B:2C:1A:08:85:11:F1:53 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 6B Signing time: Mon 11 Aug 2025 07:15:09 +0000 Manifest this update: Mon 11 Aug 2025 07:15:09 +0000 Manifest next update: Mon 18 Aug 2025 07:15:09 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: 0X1jCwNXx56qH0sOMTFWnyTfgk1B3un3SP0SO+pKmRc=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Aug 11 07:15:09 2025 GMT Not After : Aug 18 07:15:09 2025 GMT Subject: CN=6899987d-2185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:4c:ad:c0:2e:92:b3:30:93:c6:fc:68:9d: 9a:cf:9a:d1:c2:41:95:ce:e9:bd:bd:97:cc:c1:bc: 9b:7c:f9:79:3e:ce:b3:31:41:47:0d:0c:32:95:d2: 46:77:ad:a4:9b:74:e4:ce:87:a6:e2:c4:84:b6:df: cd:f2:d4:8f:e0:ed:15:44:1b:08:f1:5f:04:e2:df: 7e:aa:b4:b0:11:2b:ff:31:67:4f:b2:cc:2c:88:57: 37:19:80:db:18:96:e1:58:86:84:87:5a:ec:54:45: 78:25:8d:3d:2c:de:b3:47:03:cd:4d:c9:81:04:de: f7:dd:86:13:97:53:39:ab:0b:28:63:9b:00:1a:c7: c9:1d:c3:ff:da:b0:22:30:e6:b1:e8:ae:04:95:ed: 25:11:41:86:f9:1a:c3:7c:5c:54:30:66:3b:1c:54: 51:1a:fe:55:a5:8c:79:72:70:4d:86:87:d4:a3:66: 25:fb:7b:3e:7c:7a:5c:2b:15:1f:7b:84:c9:a5:a7: 52:95:92:15:a4:e8:93:7e:60:0b:a5:3c:ee:18:d9: a1:de:5f:64:b3:2d:6a:b9:ac:b5:20:20:62:6f:e1: e7:33:41:d7:c4:35:ec:e6:91:f1:8b:ef:e6:24:86: be:72:43:b4:1e:ae:b1:36:55:aa:a8:cd:24:c2:29: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C3:2E:4E:2E:F1:B4:CA:83:28:CE:F4:9B:2C:1A:08:85:11:F1:53 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:a0:9e:13:8d:ec:88:3d:0e:a1:eb:43:43:1b:7a:bf:26:ff: c4:83:95:1a:7c:3f:d6:e3:07:e5:03:cb:52:cc:c2:95:cf:f5: bd:38:f9:7d:ae:40:ac:c1:06:79:16:b2:7d:86:08:23:2e:8f: 16:d5:1f:40:5e:d2:08:82:c8:72:ff:f2:b8:16:27:69:a3:ca: 73:2d:3c:9a:0d:ca:31:fc:d6:5c:86:7c:c6:b6:e7:4f:d1:f2: cd:c9:55:12:e5:ae:da:e2:66:9d:0c:7e:e9:2a:72:a0:74:c9: 5c:9e:a7:c9:ad:4f:86:57:6a:9f:7d:2a:6a:c2:f5:ff:55:a1: e9:ce:39:83:38:89:d6:c0:96:8c:d2:38:4b:d6:a1:1e:f1:a5: 9e:41:75:fb:bd:36:43:cb:7a:87:2e:66:5b:9a:b6:1f:b8:e7: f6:4a:ce:2a:73:c4:fe:23:f2:d5:80:ef:bd:c6:e1:48:06:b7: 68:15:f4:28:c9:17:47:85:47:ca:24:40:fb:d0:ce:c3:56:5e: 6e:05:a4:89:e2:e2:4c:93:c4:e7:a1:03:48:c0:21:66:4f:43: 99:5d:1b:0c:24:d5:99:ac:40:fa:9a:39:cf:9a:b2:27:90:bd: d9:89:db:92:f0:68:6d:f5:7f:63:11:20:fa:12:3d:16:00:7e: 80:29:f4:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5RDYyMjJGRDI2 NDE5QjdEQjAeFw0yNTA4MTEwNzE1MDlaFw0yNTA4MTgwNzE1MDlaMBgxFjAUBgNV BAMTDTY4OTk5ODdkLTIxODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCLUytwC6SszCTxvxonZrPmtHCQZXO6b29l8zBvJt8+Xk+zrMxQUcNDDKV0kZ3 raSbdOTOh6bixIS2383y1I/g7RVEGwjxXwTi336qtLARK/8xZ0+yzCyIVzcZgNsY luFYhoSHWuxURXgljT0s3rNHA81NyYEE3vfdhhOXUzmrCyhjmwAax8kdw//asCIw 5rHorgSV7SURQYb5GsN8XFQwZjscVFEa/lWljHlycE2Gh9SjZiX7ez58elwrFR97 hMmlp1KVkhWk6JN+YAulPO4Y2aHeX2SzLWq5rLUgIGJv4eczQdfENezmkfGL7+Yk hr5yQ7QerrE2VaqozSTCKQrFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHcMuTi7x tMqDKM70mywaCIUR8VMwHwYDVR0jBBgwFoAUyil3R0MKG+s0C8o51iIv0mQZt9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxN0IwL0UxQUM4MjEwRDg4 MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveWlsM1IwTUtHLXMwQzhvNTFpSXYwbVFadDlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx N0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1LRy1z MEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMygnhON7Ig9DqHrQ0Mber8m/8SDlRp8P9bjB+UDy1LMwpXP9b04+X2u QKzBBnkWsn2GCCMujxbVH0Be0giCyHL/8rgWJ2mjynMtPJoNyjH81lyGfMa250/R 8s3JVRLlrtriZp0MfukqcqB0yVyep8mtT4ZXap99KmrC9f9VoenOOYM4idbAlozS OEvWoR7xpZ5Bdfu9NkPLeocuZluath+45/ZKzipzxP4j8tWA773G4UgGt2gV9CjJ F0eFR8okQPvQzsNWXm4FpIni4kyTxOehA0jAIWZPQ5ldGwwk1ZmsQPqaOc+asieQ vdmJ25LwaG31f2MRIPoSPRYAfoAp9E4= -----END CERTIFICATE-----Generated at Wed Aug 13 05:35:55 2025 by rpki-client