$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft File: vY9TgeGI5FgPskcsJxoFQp4tXCI.mft (raw, json) Hash identifier: aI2aAXt5LVhRdZO0JV9zjm0SUTHWxkor6mArKimYHhA= Subject key identifier: 19:E6:A3:49:6C:D7:7E:1B:BA:E5:78:99:EC:F7:3C:C5:60:82:7E:5D Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1B22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft Manifest number: 1B17 Signing time: Fri 08 Aug 2025 16:26:57 +0000 Manifest this update: Fri 08 Aug 2025 16:26:57 +0000 Manifest next update: Fri 15 Aug 2025 16:26:57 +0000 Files and hashes: 1: vY9TgeGI5FgPskcsJxoFQp4tXCI.crl (hash: aPrGKfctPnbu+PGAnvXekPjg77qnHnLaIQSveOcTFBY=) 2: 59029A32233A11E78D48837AC4F9AE02.roa (hash: XfYeKxfatX6id5bBv2XHc88RkA9A8XtPbM07HmC0bY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6946 (0x1b22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: Aug 8 16:26:57 2025 GMT Not After : Aug 15 16:26:57 2025 GMT Subject: CN=68962551-0a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9b:5e:c1:4e:29:bd:63:f3:7b:77:60:9e:b8: d0:c0:ce:e0:7a:5a:ce:c2:ba:6a:d2:a6:ba:21:7e: 20:5c:c6:7b:6d:2d:51:0b:da:22:12:9c:d5:b8:8b: b8:65:c2:c6:10:3c:8a:1b:96:53:6b:42:d1:95:45: cd:8a:ec:59:46:b1:53:1f:9b:50:aa:24:24:f5:23: d3:d4:de:41:54:be:1f:b9:39:06:6e:7f:c1:b4:fa: 61:5a:f0:c4:b7:1b:a2:10:40:ab:01:d0:b7:12:ba: f6:59:bb:78:46:cb:49:90:4d:97:31:5d:db:9f:fa: 3f:82:0a:e2:04:b8:98:c7:0b:c1:30:92:7b:a9:c2: 5e:b7:ec:7b:e4:e9:a6:66:98:9c:72:26:5b:b7:2d: 74:83:4c:68:c0:fb:c7:fe:99:d0:51:9a:ef:bd:e7: b5:8a:b7:14:fe:e8:f7:d1:92:07:ce:7a:0b:2d:4c: c5:f7:0c:c9:e9:ff:89:29:6f:92:6b:57:11:a2:c0: f8:66:1c:96:b7:52:5e:a0:ea:87:0c:cb:cf:06:36: 7f:3d:d8:b4:63:2d:2e:c5:c8:35:d6:ba:98:32:ad: d7:47:48:b2:a4:65:25:3a:03:41:d6:21:d4:8e:eb: 24:68:5f:9b:29:e9:ab:66:f9:e1:fe:b4:2d:cb:8b: 89:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E6:A3:49:6C:D7:7E:1B:BA:E5:78:99:EC:F7:3C:C5:60:82:7E:5D X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:cd:9a:20:f3:ab:9a:7d:39:e6:23:79:47:67:22:e3:07:79: 63:ab:32:62:7d:14:73:45:35:e5:84:80:71:82:cf:49:5a:5c: bd:fe:4d:bc:a4:6a:63:31:6b:9a:5d:b2:c1:4d:a1:1c:63:d8: 27:35:9b:e5:b2:00:40:e3:ec:71:20:76:7e:39:6e:22:38:5b: 78:d3:5d:fa:3b:2e:7a:06:4d:1f:80:21:d9:8c:90:2d:31:43: fe:8b:2c:a9:40:c2:fd:d9:97:16:f3:f3:c9:c5:4a:3c:d1:22: e7:dc:a4:5d:18:00:51:9f:b0:ef:0c:4c:78:44:79:b0:64:37: f7:d2:16:8f:bc:88:e9:89:b6:e2:55:ba:30:e2:be:a6:ac:ed: 1f:13:e3:45:c8:45:7b:54:c6:c5:29:e6:ab:5d:06:03:10:e0: 07:00:6b:f7:b1:7a:83:fb:7a:5c:20:06:00:41:29:fe:8b:60: ef:fd:63:a6:da:d6:ad:8b:4b:4a:3b:d4:d4:21:f9:84:df:cc: 1a:90:ce:b8:83:b2:9b:61:0a:6d:10:b4:04:05:b6:29:bf:26: b9:9d:62:bf:14:7c:90:c1:ac:2a:ec:0f:6a:89:94:80:39:f1: dd:da:bc:2c:74:d5:e1:b5:81:79:ba:36:bc:e6:56:a6:39:f7: 41:66:85:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwODA4MTYyNjU3WhcNMjUwODE1MTYyNjU3WjAYMRYwFAYD VQQDEw02ODk2MjU1MS0wYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JtewU4pvWPze3dgnrjQwM7gelrOwrpq0qa6IX4gXMZ7bS1RC9oiEpzVuIu4 ZcLGEDyKG5ZTa0LRlUXNiuxZRrFTH5tQqiQk9SPT1N5BVL4fuTkGbn/BtPphWvDE txuiEECrAdC3Err2Wbt4RstJkE2XMV3bn/o/ggriBLiYxwvBMJJ7qcJet+x75Omm ZpicciZbty10g0xowPvH/pnQUZrvvee1ircU/uj30ZIHznoLLUzF9wzJ6f+JKW+S a1cRosD4ZhyWt1JeoOqHDMvPBjZ/Pdi0Yy0uxcg11rqYMq3XR0iypGUlOgNB1iHU juskaF+bKemrZvnh/rQty4uJDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnmo0ls 134buuV4mez3PMVggn5dMB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDY2RC8xRUIwOTI1NDIzMzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVG Z1Bza2NzSnhvRlFwNHRYQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwzZog86uafTnmI3lHZyLjB3ljqzJifRRzRTXlhIBxgs9JWly9/k28 pGpjMWuaXbLBTaEcY9gnNZvlsgBA4+xxIHZ+OW4iOFt40136Oy56Bk0fgCHZjJAt MUP+iyypQML92ZcW8/PJxUo80SLn3KRdGABRn7DvDEx4RHmwZDf30haPvIjpibbi Vbow4r6mrO0fE+NFyEV7VMbFKearXQYDEOAHAGv3sXqD+3pcIAYAQSn+i2Dv/WOm 2tati0tKO9TUIfmE38wakM64g7KbYQptELQEBbYpvya5nWK/FHyQwawq7A9qiZSA OfHd2rwsdNXhtYF5uja85lamOfdBZoVZ -----END CERTIFICATE-----Generated at Fri Aug 8 20:53:55 2025 by rpki-client