$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft File: YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft (raw, json) Hash identifier: hSGWDrvhWsW7kak2E0NZzs6TTOoO6hXg41Osj6ARoyE= Subject key identifier: 94:44:15:A8:7D:72:16:2C:13:68:70:AA:96:C5:DF:8E:FA:3F:00:47 Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 09E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft Manifest number: 09DB Signing time: Sun 10 Aug 2025 19:56:19 +0000 Manifest this update: Sun 10 Aug 2025 19:56:19 +0000 Manifest next update: Sun 17 Aug 2025 19:56:19 +0000 Files and hashes: 1: YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl (hash: 8e+6amZGxaUnP8EdMFJwPVTtQSoGV2SzB2V1AmfVt+Y=) 2: 5C8929C8839011EAB5B82263C4F9AE02.roa (hash: Jr5A5EFDHOtjVbEZUPlRHjoDRI+w8P0c18JoA/Eyebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Aug 10 19:56:19 2025 GMT Not After : Aug 17 19:56:19 2025 GMT Subject: CN=6898f963-f467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:80:36:a8:f4:2e:79:05:6d:d9:05:9a:59:c5: b6:18:97:0d:89:27:02:06:df:bf:09:13:15:b1:c8: 83:22:5a:ae:6f:a4:19:a8:bd:33:27:50:a6:6b:fc: b7:86:32:99:45:d0:31:cd:14:f9:ac:53:18:b8:2d: 28:e7:9a:61:12:1a:98:cb:ff:d0:ff:e0:82:5f:16: c3:66:cb:dd:58:4a:89:ef:6e:6d:68:09:e6:a1:f3: df:b9:2b:d7:a7:e4:49:6b:c4:5e:53:d6:f9:61:5b: f5:6f:44:46:90:c7:1b:11:bd:78:92:f4:60:52:93: 45:a4:21:6f:44:7b:f4:c1:94:0f:19:d4:85:cf:80: d1:7a:88:60:b3:96:1a:7b:1b:d2:26:84:9a:d0:c1: d4:f5:52:4d:77:48:99:e6:6a:8f:7f:d9:9f:7e:8e: e9:43:c0:28:27:e8:30:c0:ff:c5:68:99:17:aa:79: af:f3:c3:d1:0f:8a:a2:70:e0:cb:18:5a:39:6f:3f: 78:a5:9d:8b:99:10:94:6d:bf:08:52:0c:ad:6a:e3: 6b:3f:5b:ed:66:3d:5a:15:d9:01:b5:90:20:4f:fe: 73:18:34:f8:37:55:8d:47:9c:ea:5b:f9:8a:85:3f: 21:bb:5b:f2:b2:02:0b:b4:f3:ed:eb:1f:1d:84:37: c8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:44:15:A8:7D:72:16:2C:13:68:70:AA:96:C5:DF:8E:FA:3F:00:47 X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d7:ec:05:1b:86:fb:4e:46:80:c9:57:6f:02:3d:d6:27:9f: f0:d1:8d:f4:88:cc:60:31:39:70:a9:1c:2d:74:1e:68:2e:66: a6:de:19:87:e2:fb:c0:56:69:ca:cc:0f:c8:61:94:0f:c0:b6: 2b:82:80:31:f0:5c:91:2a:1d:67:c3:45:81:b1:0a:5f:3a:05: 48:80:ee:53:f5:9d:67:26:b8:6c:9f:75:e1:da:8f:53:f1:a5: 31:25:51:aa:3f:75:f8:f3:34:3e:42:31:87:df:ea:40:15:71: 20:27:59:1d:75:4f:1d:78:e0:14:dc:78:23:d9:0c:86:d4:e5: af:23:80:1b:ba:0b:ad:2c:b6:dc:b9:1b:24:ab:7f:b0:7e:ce: 1a:ab:51:ef:c4:8d:fd:e1:44:40:87:2e:86:e4:69:5e:87:95: e0:b6:0c:8d:68:7b:eb:fc:95:58:82:b4:c0:c5:9f:ca:ee:36: 8d:45:17:c3:12:92:ef:ba:b4:7f:28:4a:af:64:5c:c9:f4:bd: 83:94:68:a1:9e:01:8a:89:b0:f9:d6:14:1c:12:91:7d:e3:c5: 04:fc:48:27:41:a8:77:0f:90:73:2d:65:0e:d8:03:b2:fa:e4: a5:89:f7:cc:e2:56:e2:6c:83:96:9f:35:37:c2:82:b7:9c:ec: 9a:0c:39:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjUwODEwMTk1NjE5WhcNMjUwODE3MTk1NjE5WjAYMRYwFAYD VQQDEw02ODk4Zjk2My1mNDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYA2qPQueQVt2QWaWcW2GJcNiScCBt+/CRMVsciDIlqub6QZqL0zJ1Cma/y3 hjKZRdAxzRT5rFMYuC0o55phEhqYy//Q/+CCXxbDZsvdWEqJ725taAnmofPfuSvX p+RJa8ReU9b5YVv1b0RGkMcbEb14kvRgUpNFpCFvRHv0wZQPGdSFz4DReohgs5Ya exvSJoSa0MHU9VJNd0iZ5mqPf9mffo7pQ8AoJ+gwwP/FaJkXqnmv88PRD4qicODL GFo5bz94pZ2LmRCUbb8IUgytauNrP1vtZj1aFdkBtZAgT/5zGDT4N1WNR5zqW/mK hT8hu1vysgILtPPt6x8dhDfIfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJREFah9 chYsE2hwqpbF3476PwBHMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ4OC81RDI2ODM0QTgzOEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5 NjhwRW9VdmJjeGFJajZZMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc1+wFG4b7TkaAyVdvAj3WJ5/w0Y30iMxgMTlwqRwtdB5oLmam3hmH 4vvAVmnKzA/IYZQPwLYrgoAx8FyRKh1nw0WBsQpfOgVIgO5T9Z1nJrhsn3Xh2o9T 8aUxJVGqP3X48zQ+QjGH3+pAFXEgJ1kddU8deOAU3Hgj2QyG1OWvI4AbugutLLbc uRskq3+wfs4aq1HvxI394URAhy6G5Gleh5XgtgyNaHvr/JVYgrTAxZ/K7jaNRRfD EpLvurR/KEqvZFzJ9L2DlGihngGKibD51hQcEpF948UE/EgnQah3D5BzLWUO2AOy +uSliffM4lbibIOWnzU3woK3nOyaDDnf -----END CERTIFICATE-----Generated at Mon Aug 11 07:46:08 2025 by rpki-client