$ rpki-client -vvf rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft File: YfRdxU9H4lL6xlUt27OWWFTGyAE.mft (raw, json) Hash identifier: WbyIxL1iIP7o51RHYFNA1uUAC8x8hjx/6CqeMIPJsfI= Subject key identifier: 75:BC:AD:3B:47:A0:DD:FE:2E:16:E4:1A:26:82:9A:B0:64:7D:FB:A2 Authority key identifier: 61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 Certificate issuer: /CN=A9162CCE/serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Certificate serial: 0604 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft Manifest number: 05FD Signing time: Mon 04 Aug 2025 23:18:51 +0000 Manifest this update: Mon 04 Aug 2025 23:18:50 +0000 Manifest next update: Mon 11 Aug 2025 23:18:50 +0000 Files and hashes: 1: YfRdxU9H4lL6xlUt27OWWFTGyAE.crl (hash: vq8yASiJ/xsKzg+T8RLB7DPitGKqU80YSK6sr7RQOq0=) 2: 6D5F7C74B99611EBB5E9AE5EC4F9AE02.roa (hash: bUC1i6U8bBn9UfWkY4L4fN9q3qdDlIRzcJbNDpJZl6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162CCE, serialNumber=61F45DC54F47E252FAC6552DDBB3965854C6C801 Validity Not Before: Aug 4 23:18:50 2025 GMT Not After : Aug 11 23:18:50 2025 GMT Subject: CN=68913fdb-512f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:27:12:01:74:16:8b:b8:3b:41:4c:21:04: fb:26:dc:c9:5c:5e:86:2b:8a:f6:39:b1:00:11:1e: 70:c8:2d:04:e8:1f:4a:46:a4:6c:b0:65:6e:b6:6c: 2a:52:44:d2:c6:2d:a4:f6:68:d9:86:e7:e5:d2:a3: 48:e9:8d:84:96:6d:66:f4:82:d2:89:9f:b0:2f:c5: ef:e1:cd:34:9a:38:11:e8:97:12:b0:e7:69:ad:19: 7d:dc:b2:4a:b0:d4:fa:01:c8:52:43:71:d7:6a:09: 9a:6a:e7:87:d1:36:92:5b:68:d5:5e:87:97:17:cf: a7:d5:41:9e:42:37:26:6f:45:0d:bf:1d:60:d0:ee: 76:5e:94:9b:11:d4:da:07:a0:85:55:15:6f:2e:54: a2:85:05:5a:d7:84:f2:fa:48:b7:86:20:82:7d:6a: 48:9a:78:72:6b:9f:eb:40:ca:e8:ce:12:47:b6:19: 19:88:a3:18:c3:b3:b2:2a:ea:4e:14:32:1e:ca:be: 91:76:59:de:92:03:de:47:74:f3:d3:20:32:75:0d: b2:e7:6b:4d:2f:f8:f0:1f:1d:d9:bb:5f:6d:a1:4b: 8e:6b:55:fc:4f:ca:66:49:ac:e2:1f:8b:92:6f:ea: 9d:e5:69:1d:79:dd:03:25:eb:d1:e5:54:b3:10:50: 91:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BC:AD:3B:47:A0:DD:FE:2E:16:E4:1A:26:82:9A:B0:64:7D:FB:A2 X509v3 Authority Key Identifier: keyid:61:F4:5D:C5:4F:47:E2:52:FA:C6:55:2D:DB:B3:96:58:54:C6:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfRdxU9H4lL6xlUt27OWWFTGyAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162CCE/B755DA28B99411EB93F8265DC4F9AE02/YfRdxU9H4lL6xlUt27OWWFTGyAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:58:c3:e2:24:d3:ef:38:8f:03:2f:01:e0:ec:53:3d:00:df: 14:17:1a:48:9b:c4:1f:c5:a3:28:69:59:a7:92:5c:ea:20:08: 10:7d:71:f9:ba:6a:80:45:f5:e8:54:09:e9:d3:4c:21:cf:80: 64:44:b0:f3:c8:14:ba:48:1b:ab:c4:2c:6b:5f:ff:ad:63:96: 9a:9e:7d:cf:d2:b4:33:15:3f:33:1c:94:5c:49:de:d0:e7:bb: 4e:6d:34:90:fd:16:0f:91:e4:32:d2:09:23:17:47:f5:e7:74: 99:6e:66:34:64:a8:02:b0:d4:82:66:0e:74:67:99:d6:90:aa: 1f:6b:ec:14:1b:4c:81:ce:f9:3d:e9:8f:98:74:59:18:64:92: 96:1b:61:9c:35:d4:87:a0:9b:b1:1b:68:f7:97:1a:b5:2a:ab: 67:ee:7e:68:21:bd:5b:5d:d2:cd:16:85:2b:5a:c3:78:c8:cf: 8f:5a:90:f9:a1:31:d7:17:02:13:ff:5f:ea:ec:2e:14:c0:22: c6:66:7a:ce:33:b6:76:52:ec:8f:57:dc:bf:80:78:ca:0c:90: ed:d5:19:40:d0:26:34:f5:2b:39:10:f7:72:2e:45:37:7f:aa: 30:d9:c2:9b:49:81:0f:65:61:28:c5:8f:91:6a:ec:de:69:3e: c8:77:0c:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDQ0UxMTAvBgNVBAUTKDYxRjQ1REM1NEY0N0UyNTJGQUM2NTUyRERCQjM5NjU4 NTRDNkM4MDEwHhcNMjUwODA0MjMxODUwWhcNMjUwODExMjMxODUwWjAYMRYwFAYD VQQDEw02ODkxM2ZkYi01MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtacnEgF0Fou4O0FMIQT7JtzJXF6GK4r2ObEAER5wyC0E6B9KRqRssGVutmwq UkTSxi2k9mjZhufl0qNI6Y2Elm1m9ILSiZ+wL8Xv4c00mjgR6JcSsOdprRl93LJK sNT6AchSQ3HXagmaaueH0TaSW2jVXoeXF8+n1UGeQjcmb0UNvx1g0O52XpSbEdTa B6CFVRVvLlSihQVa14Ty+ki3hiCCfWpImnhya5/rQMrozhJHthkZiKMYw7OyKupO FDIeyr6RdlnekgPeR3Tz0yAydQ2y52tNL/jwHx3Zu19toUuOa1X8T8pmSaziH4uS b+qd5Wkded0DJevR5VSzEFCRqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW8rTtH oN3+LhbkGiaCmrBkffuiMB8GA1UdIwQYMBaAFGH0XcVPR+JS+sZVLduzllhUxsgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkNDRS9CNzU1REEyOEI5 OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRsTDZ4bFV0MjdPV1dGVEd5 QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmUmR4VTlINGxMNnhsVXQyN09XV0ZUR3lBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkNDRS9CNzU1REEyOEI5OTQxMUVCOTNGODI2NURDNEY5QUUwMi9ZZlJkeFU5SDRs TDZ4bFV0MjdPV1dGVEd5QUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9WMPiJNPvOI8DLwHg7FM9AN8UFxpIm8QfxaMoaVmnklzqIAgQfXH5 umqARfXoVAnp00whz4BkRLDzyBS6SBurxCxrX/+tY5aann3P0rQzFT8zHJRcSd7Q 57tObTSQ/RYPkeQy0gkjF0f153SZbmY0ZKgCsNSCZg50Z5nWkKofa+wUG0yBzvk9 6Y+YdFkYZJKWG2GcNdSHoJuxG2j3lxq1Kqtn7n5oIb1bXdLNFoUrWsN4yM+PWpD5 oTHXFwIT/1/q7C4UwCLGZnrOM7Z2UuyPV9y/gHjKDJDt1RlA0CY09Ss5EPdyLkU3 f6ow2cKbSYEPZWEoxY+RauzeaT7IdwwN -----END CERTIFICATE-----Generated at Wed Aug 6 13:08:12 2025 by rpki-client