$ rpki-client -vvf rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft File: yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft (raw, json) Hash identifier: JbF0IkniuKDeQijrKIfrsBndJwBQWepMfwl2Xh82R0g= Subject key identifier: B4:5E:82:6D:86:5D:69:CD:B6:C7:50:FC:C6:43:6A:22:40:2C:47:2C Authority key identifier: CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF Certificate issuer: /CN=A9153675/serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft Manifest number: EE Signing time: Wed 13 Aug 2025 05:56:06 +0000 Manifest this update: Wed 13 Aug 2025 05:56:04 +0000 Manifest next update: Wed 20 Aug 2025 05:56:04 +0000 Files and hashes: 1: yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl (hash: 3PPKy0qOd0rkz1AnJcwXzvNuec4+fhNTdDpfOBN0hr0=) 2: F8636CC60F9D11EFA1E14343C4F9AE02.roa (hash: tBki4iy/q8HliVYsXbIzEJgcPuIm2NjXgIYSPz8ugw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 05:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153675, serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Validity Not Before: Aug 13 05:56:04 2025 GMT Not After : Aug 20 05:56:04 2025 GMT Subject: CN=689c28f5-a307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ed:2b:3c:b1:8d:4e:6d:77:a4:96:0e:67:3e: de:91:f3:ae:71:22:df:e8:fc:80:f0:57:ad:7a:92: d9:e7:b3:20:1a:94:b3:8b:61:cd:75:af:1a:c7:bd: 9c:d3:3a:e8:35:61:a9:84:65:80:36:55:83:14:75: 50:bd:cf:87:37:a3:ce:26:ba:1c:54:c6:0f:8b:4f: d1:eb:1b:8b:cc:a1:13:fe:95:3f:32:b9:48:36:6a: d0:ca:d9:f0:08:3e:d6:06:a5:d7:df:00:7d:bb:37: d1:85:3c:a1:7a:80:69:f5:ba:15:12:9c:db:05:54: 2b:97:ff:0f:eb:09:b1:a0:b7:6a:1e:98:11:d2:19: 63:1b:e2:71:63:4b:3e:66:05:9b:a4:b0:a3:99:17: 9e:ec:66:26:4c:5c:28:f4:ad:ca:8b:97:44:50:48: 40:20:1a:84:f0:c3:f9:82:5b:7f:9e:27:f4:35:fb: 68:9e:cb:b6:37:16:f2:ea:1d:10:65:d3:89:95:a6: d7:f1:8a:fc:c8:aa:e4:e5:57:3e:e3:fb:95:09:67: e1:ed:3c:dc:8d:eb:32:61:3e:74:4a:88:2b:bf:0d: df:f7:e2:fe:49:f6:69:ca:68:89:de:eb:06:07:51: 0b:50:2b:8b:bd:cd:4a:d0:ae:38:ad:61:a3:c7:c9: fa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5E:82:6D:86:5D:69:CD:B6:C7:50:FC:C6:43:6A:22:40:2C:47:2C X509v3 Authority Key Identifier: keyid:CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e1:5e:9d:b7:e4:f7:9f:a2:cb:2c:0b:0f:58:47:fd:5d:08: c4:7a:64:4f:89:09:ae:28:27:bc:b7:1b:0d:b5:dd:da:f4:3a: 66:44:2f:e9:c1:26:f9:ce:2e:82:0b:64:f3:3d:52:2f:96:45: ec:e9:16:93:f2:aa:6b:ec:d5:e3:17:61:3c:86:b5:6e:50:c9: 47:25:1d:38:ce:66:1a:ed:cb:0a:57:22:c5:a9:41:36:8c:26: 1a:e9:80:65:87:98:d2:f1:46:cf:4c:e2:69:f1:8c:01:96:db: c1:b4:66:f4:cb:ab:0e:d2:dc:c3:42:9f:ad:d1:d5:f2:81:b2: 43:2f:16:f2:8f:74:98:05:56:15:73:52:9b:02:8c:13:56:3d: 50:3a:62:49:9e:80:9b:ec:a8:0e:65:83:17:3e:68:e6:0b:46: ab:fb:83:0a:36:74:1f:cf:83:69:b1:48:54:6a:b8:b0:86:53: 23:1e:50:cd:5e:35:64:69:af:5b:a7:f3:c0:e4:63:02:1d:a9: 89:d9:be:8e:61:e0:c5:c4:bd:dc:ec:da:df:44:fa:c1:e7:8b: 77:2a:46:a6:d1:7a:35:9c:99:62:01:47:5d:a8:dc:59:32:cf: 2e:53:59:46:fc:39:9b:32:6f:17:5b:f7:09:e5:45:4c:1d:e9: 3e:35:5d:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NzUxMTAvBgNVBAUTKENBMjQ1ODMxMDZGQjU0OTg0Qzc4MTU4OTVFM0UxOUVE Rjc5Qzk4QkYwHhcNMjUwODEzMDU1NjA0WhcNMjUwODIwMDU1NjA0WjAYMRYwFAYD VQQDEw02ODljMjhmNS1hMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve0rPLGNTm13pJYOZz7ekfOucSLf6PyA8FetepLZ57MgGpSzi2HNda8ax72c 0zroNWGphGWANlWDFHVQvc+HN6POJrocVMYPi0/R6xuLzKET/pU/MrlINmrQytnw CD7WBqXX3wB9uzfRhTyheoBp9boVEpzbBVQrl/8P6wmxoLdqHpgR0hljG+JxY0s+ ZgWbpLCjmRee7GYmTFwo9K3Ki5dEUEhAIBqE8MP5glt/nif0Nftonsu2Nxby6h0Q ZdOJlabX8Yr8yKrk5Vc+4/uVCWfh7TzcjesyYT50Sogrvw3f9+L+SfZpymiJ3usG B1ELUCuLvc1K0K44rWGjx8n6kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRegm2G XWnNtsdQ/MZDaiJALEcsMB8GA1UdIwQYMBaAFMokWDEG+1SYTHgViV4+Ge33nJi/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY3NS85MTVBMjg2NjBF QjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZKaE1lQldKWGo0WjdmZWNt TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpUllNUWI3VkpoTWVCV0pYajRaN2ZlY21MOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzY3NS85MTVBMjg2NjBFQjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZK aE1lQldKWGo0WjdmZWNtTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT4V6dt+T3n6LLLAsPWEf9XQjEemRPiQmuKCe8txsNtd3a9DpmRC/p wSb5zi6CC2TzPVIvlkXs6RaT8qpr7NXjF2E8hrVuUMlHJR04zmYa7csKVyLFqUE2 jCYa6YBlh5jS8UbPTOJp8YwBltvBtGb0y6sO0tzDQp+t0dXygbJDLxbyj3SYBVYV c1KbAowTVj1QOmJJnoCb7KgOZYMXPmjmC0ar+4MKNnQfz4NpsUhUariwhlMjHlDN XjVkaa9bp/PA5GMCHamJ2b6OYeDFxL3c7NrfRPrB54t3Kkam0Xo1nJliAUddqNxZ Ms8uU1lG/DmbMm8XW/cJ5UVMHek+NV0O -----END CERTIFICATE-----Generated at Thu Aug 14 11:05:56 2025 by rpki-client