$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: cLc9CG8mnAla9D+F00S+WBMUabOafxdfsz8pTc0QILU= Subject key identifier: B9:82:7D:8E:12:68:18:1C:8F:C2:5E:34:5C:AE:E3:ED:0E:9A:5A:42 Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 34B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34B4 Signing time: Sun 10 Aug 2025 14:43:30 +0000 Manifest this update: Sun 10 Aug 2025 14:43:30 +0000 Manifest next update: Sun 17 Aug 2025 14:43:30 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: qnWVyzkHLmYTBcoD0qc/NwcOeotuu7eo5rzEwSE49JI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13492 (0x34b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Aug 10 14:43:30 2025 GMT Not After : Aug 17 14:43:30 2025 GMT Subject: CN=6898b012-9ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c4:dd:39:4b:fd:e3:f8:7f:5d:a1:cb:bf:c8: a9:c5:65:f5:92:6b:86:ce:5a:38:34:15:75:09:59: a3:a3:8d:72:9f:8d:e7:2b:45:ba:3b:4e:79:03:e4: 8c:ff:4f:67:15:18:ea:e2:21:a1:51:f1:b4:bc:6a: c4:74:ec:fe:c5:5c:25:c0:ff:21:a5:97:d8:72:98: 07:6c:36:26:e8:9c:04:85:48:94:a5:28:4a:ec:81: 14:89:b4:32:20:ba:76:4c:7a:97:b4:f2:3b:54:d8: d8:da:98:35:eb:7a:e5:c6:8d:a8:41:86:96:82:3f: 8f:d3:96:8b:7e:91:41:d4:33:1b:17:08:be:ec:aa: d3:7d:9f:dc:c0:39:a9:78:91:6d:b3:80:e1:45:d5: e6:2c:72:f1:26:87:29:da:f2:0a:66:7c:40:fe:c8: 4a:56:53:e5:9d:31:35:25:2e:fd:96:de:74:ae:37: 2d:2b:f0:be:c6:a5:44:8c:7a:d6:66:11:64:95:65: c3:7a:20:e2:b9:7c:a5:dd:e9:1f:ad:47:27:b4:42: 4b:45:6c:59:02:71:33:3e:27:e5:e4:4b:88:7f:d6: 13:c4:8a:46:74:b1:3d:7c:b6:e7:ab:50:37:2c:74: 11:56:03:e3:49:39:ba:c0:19:e3:cf:c2:e3:e3:fd: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:82:7D:8E:12:68:18:1C:8F:C2:5E:34:5C:AE:E3:ED:0E:9A:5A:42 X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:cd:3c:98:74:c8:77:cf:b5:59:34:1a:3e:e9:40:f5:c8:57: c2:3e:ef:8c:f2:da:d2:2f:12:f4:c2:f9:c7:ab:fd:51:b5:e0: 30:ef:68:c9:43:d7:da:01:5d:7e:42:50:fd:29:93:66:e1:18: 07:b2:5b:93:c9:08:36:63:5a:f4:db:d5:da:b5:69:a9:c0:b8: db:61:b7:5e:86:9b:87:3a:8b:c6:a1:ed:32:79:e9:7b:4f:e0: ff:6d:90:bf:89:37:b3:4b:52:0b:98:f5:c6:5e:95:ba:a8:e1: a8:ab:f9:88:e8:db:6d:2d:28:7d:b7:dc:b1:9a:bf:15:dd:f4: d6:14:ff:94:82:c1:f2:33:77:8e:11:3c:ee:4d:cd:4a:c0:89: 81:da:8f:fc:81:0b:a6:99:0e:7a:d5:f9:20:5c:f3:fe:db:3b: dc:30:42:1c:d0:19:84:17:d1:12:aa:e0:e0:d4:26:9b:d9:77: 62:20:2b:dd:3c:d9:78:68:e6:cf:39:68:0e:fb:6c:8f:4b:68: 22:f3:3f:f4:b7:36:f8:a4:9e:ee:0a:6f:c5:a0:aa:e8:de:c1: 11:34:79:fc:12:20:1a:d5:df:76:c5:ef:5e:cf:c8:cb:12:2d: 78:66:c8:d4:ab:e8:f6:df:c8:c9:a4:dd:10:10:b2:6f:1f:61: f8:ec:8a:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUwODEwMTQ0MzMwWhcNMjUwODE3MTQ0MzMwWjAYMRYwFAYD VQQDEw02ODk4YjAxMi05Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MTdOUv94/h/XaHLv8ipxWX1kmuGzlo4NBV1CVmjo41yn43nK0W6O055A+SM /09nFRjq4iGhUfG0vGrEdOz+xVwlwP8hpZfYcpgHbDYm6JwEhUiUpShK7IEUibQy ILp2THqXtPI7VNjY2pg163rlxo2oQYaWgj+P05aLfpFB1DMbFwi+7KrTfZ/cwDmp eJFts4DhRdXmLHLxJocp2vIKZnxA/shKVlPlnTE1JS79lt50rjctK/C+xqVEjHrW ZhFklWXDeiDiuXyl3ekfrUcntEJLRWxZAnEzPifl5EuIf9YTxIpGdLE9fLbnq1A3 LHQRVgPjSTm6wBnjz8Lj4/2C4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmCfY4S aBgcj8JeNFyu4+0OmlpCMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbzTyYdMh3z7VZNBo+6UD1yFfCPu+M8trSLxL0wvnHq/1RteAw72jJ Q9faAV1+QlD9KZNm4RgHsluTyQg2Y1r029XatWmpwLjbYbdehpuHOovGoe0yeel7 T+D/bZC/iTezS1ILmPXGXpW6qOGoq/mI6NttLSh9t9yxmr8V3fTWFP+UgsHyM3eO ETzuTc1KwImB2o/8gQummQ561fkgXPP+2zvcMEIc0BmEF9ESquDg1Cab2XdiICvd PNl4aObPOWgO+2yPS2gi8z/0tzb4pJ7uCm/FoKro3sERNHn8EiAa1d92xe9ez8jL Ei14ZsjUq+j238jJpN0QELJvH2H47Iqa -----END CERTIFICATE-----Generated at Mon Aug 11 04:08:15 2025 by rpki-client