$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: Ux4SgMtNy0Aw3noFAl9s3xrJgbbwqoKJeA0VdhWU3Fg= Subject key identifier: 45:77:C4:F4:4B:89:EE:41:9C:A5:D6:EA:66:90:86:75:C6:D0:01:22 Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 0153 Signing time: Thu 07 Aug 2025 04:39:38 +0000 Manifest this update: Thu 07 Aug 2025 04:39:37 +0000 Manifest next update: Thu 14 Aug 2025 04:39:37 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: f4kerLUwHqCCgsJ/VrnVyZ9nmqtLMK7qpv4B6EV7hIY=) 2: 045A4C2A6E4A11EEBADBDC4AC4F9AE02.roa (hash: FlD/q0JbSZGoP+GmyJYdclxWBTvflYZJ2XaDZhQ/500=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Aug 7 04:39:37 2025 GMT Not After : Aug 14 04:39:37 2025 GMT Subject: CN=68942e09-55a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f9:03:5e:13:fe:3c:3d:46:34:37:df:6e:e6: 29:36:99:65:0a:1e:c0:9f:dc:7d:2b:75:01:73:ea: 43:50:21:6a:96:64:ef:da:a9:2e:42:04:1b:ec:b3: 90:e1:80:31:0a:45:49:2f:22:4c:3a:0a:fe:9f:cd: 6d:a9:14:b3:f0:45:e1:42:27:96:74:9a:98:ef:8c: d1:7b:d2:4f:cc:9c:10:f2:50:30:9c:c8:a3:f4:30: c1:19:47:0c:1e:de:aa:77:0b:65:e9:ac:fe:c5:ed: e7:3f:33:03:06:a2:51:69:8b:06:1e:ac:2b:12:54: 4a:5d:87:8d:4c:be:6a:d1:03:6c:a0:e2:11:4a:ea: 60:3b:88:60:3d:1a:42:12:1e:e9:e2:6d:dd:6d:4e: 29:19:d4:3d:68:49:82:11:d4:c3:22:fa:46:b5:1a: 44:eb:e8:d7:1f:da:92:91:11:e3:5e:6e:b0:c2:3f: 92:19:8f:dc:b1:a1:f9:e0:9b:b0:98:66:c2:49:5b: 1e:69:1c:bd:ef:78:43:75:ef:60:cf:b9:54:1e:81: 35:ad:91:ed:1f:b3:e0:6d:70:5d:48:99:fc:a5:50: 71:c4:b5:71:03:70:ad:79:a5:d9:23:67:c2:ee:21: e0:f0:2b:0f:f5:6f:bd:66:86:d7:2c:7d:20:b2:93: 51:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:77:C4:F4:4B:89:EE:41:9C:A5:D6:EA:66:90:86:75:C6:D0:01:22 X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:97:40:7b:8c:97:26:27:42:ce:cd:63:6f:a5:73:c3:30:d0: 87:a8:21:46:c4:6c:38:b4:0a:7f:e4:cb:16:ec:db:1a:40:d5: c4:72:bd:8e:b7:fe:6c:09:ca:de:b9:6c:22:d9:03:ba:a5:d2: 0c:c2:08:8a:ae:7a:ba:2a:c8:a4:31:33:73:b6:2a:37:bf:ff: 20:3a:31:ed:1b:32:ed:d0:4a:d0:b2:0d:91:ed:6c:5f:73:d5: aa:26:cf:5e:c8:8e:15:a2:be:f5:3f:d9:b9:f4:42:07:c6:34: d3:c7:a8:df:80:9f:30:f6:fa:9c:37:d9:cf:0d:eb:3f:1f:9b: 1f:2c:35:c7:94:e4:25:35:b7:ad:9b:34:6a:36:95:cd:30:8c: b9:fd:c4:df:37:a1:0c:6e:19:4b:f1:4c:4a:98:df:48:ce:7f: 85:58:9c:ef:8d:53:b4:0d:37:57:37:b7:49:d5:85:75:d3:5b: 57:58:9b:01:7a:58:36:95:92:cd:5a:10:fa:09:a3:c5:1c:18: 7c:d3:83:59:4a:20:c2:a3:5a:ed:fa:2c:e7:82:b8:14:b1:50: 14:11:99:c8:da:d1:ab:1f:9f:ae:59:7f:c7:dc:58:95:73:b6: 7b:ff:76:1a:55:57:14:51:3e:71:61:31:57:a7:25:66:4f:2f: 12:53:d5:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjUwODA3MDQzOTM3WhcNMjUwODE0MDQzOTM3WjAYMRYwFAYD VQQDEw02ODk0MmUwOS01NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/kDXhP+PD1GNDffbuYpNpllCh7An9x9K3UBc+pDUCFqlmTv2qkuQgQb7LOQ 4YAxCkVJLyJMOgr+n81tqRSz8EXhQieWdJqY74zRe9JPzJwQ8lAwnMij9DDBGUcM Ht6qdwtl6az+xe3nPzMDBqJRaYsGHqwrElRKXYeNTL5q0QNsoOIRSupgO4hgPRpC Eh7p4m3dbU4pGdQ9aEmCEdTDIvpGtRpE6+jXH9qSkRHjXm6wwj+SGY/csaH54Juw mGbCSVseaRy973hDde9gz7lUHoE1rZHtH7PgbXBdSJn8pVBxxLVxA3CteaXZI2fC 7iHg8CsP9W+9ZobXLH0gspNRuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEV3xPRL ie5BnKXW6maQhnXG0AEiMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCol0B7jJcmJ0LOzWNvpXPDMNCHqCFGxGw4tAp/5MsW7NsaQNXEcr2O t/5sCcreuWwi2QO6pdIMwgiKrnq6KsikMTNztio3v/8gOjHtGzLt0ErQsg2R7Wxf c9WqJs9eyI4Vor71P9m59EIHxjTTx6jfgJ8w9vqcN9nPDes/H5sfLDXHlOQlNbet mzRqNpXNMIy5/cTfN6EMbhlL8UxKmN9Izn+FWJzvjVO0DTdXN7dJ1YV101tXWJsB elg2lZLNWhD6CaPFHBh804NZSiDCo1rt+izngrgUsVAUEZnI2tGrH5+uWX/H3FiV c7Z7/3YaVVcUUT5xYTFXpyVmTy8SU9WG -----END CERTIFICATE-----Generated at Fri Aug 8 10:18:14 2025 by rpki-client