$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json) Hash identifier: i95sXO9eb6X8AEnrWv6C+2iUmfU+DlxmDAUbMNPFIBE= Subject key identifier: 0F:27:D9:4B:F1:EE:BE:90:44:C3:A3:79:48:B1:E6:04:6C:60:24:AC Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft Manifest number: 88 Signing time: Sun 03 Aug 2025 06:55:20 +0000 Manifest this update: Sun 03 Aug 2025 06:55:19 +0000 Manifest next update: Sun 10 Aug 2025 06:55:19 +0000 Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: ZfoSftRq/5lYAEYD3dTPt9yp+Hl0YrxEbv17P0utIGo=) 2: 181772049FD811EF8680B438C4F9AE02.roa (hash: kL8m2A2/eVPCA0J/9/iLQOKzk2RiAB33QgbmFjlKwTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E Validity Not Before: Aug 3 06:55:19 2025 GMT Not After : Aug 10 06:55:19 2025 GMT Subject: CN=688f07d7-1810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a3:86:a6:d7:9a:57:c7:07:30:af:d6:59:40: eb:4b:3b:88:be:39:97:aa:d7:e3:04:75:3e:21:88: 2a:20:bb:aa:c5:82:79:3c:dd:1e:15:9f:8a:c0:5c: 79:53:69:81:ec:c5:6a:81:6d:3c:c3:51:79:53:dd: eb:45:69:91:04:31:74:63:31:38:87:f2:37:a1:ea: 50:13:b0:2d:cd:4f:0a:c5:7f:87:26:39:ce:b7:c1: 93:7a:95:8b:38:f0:35:ee:e6:18:cf:30:ad:e0:f3: 30:e3:ee:93:54:1c:19:62:75:d5:fe:ab:3e:09:e8: 51:bf:87:72:61:a9:9a:8c:39:06:e7:dc:ea:20:e2: 16:94:a7:e2:2b:5d:7d:25:d8:96:e5:f1:24:17:10: b0:47:cc:f2:29:55:e2:a1:e9:86:d7:04:75:49:48: 50:e0:ad:34:ce:7c:5c:a9:a1:8a:26:ae:62:b5:96: 4f:4d:d2:af:94:00:0f:2f:a7:ec:e5:4a:5c:4e:10: e1:8b:75:19:27:6a:df:2c:31:f1:0f:4c:8c:7b:a0: d1:42:05:a5:e3:ff:9b:b9:1a:e2:a1:73:72:d5:df: 59:5f:2e:3a:bb:61:1e:4f:a9:22:c1:90:0f:fb:ec: e5:58:4b:0b:6c:de:4d:12:05:cf:3c:7a:b8:59:87: db:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:27:D9:4B:F1:EE:BE:90:44:C3:A3:79:48:B1:E6:04:6C:60:24:AC X509v3 Authority Key Identifier: keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:8a:6b:05:c3:cb:17:2a:1a:31:ad:b8:e9:56:bb:6f:6c:6b: 58:25:b1:32:3e:87:7c:cc:a7:e7:ab:5a:d4:dd:e7:c3:8f:13: 42:77:a5:56:b1:10:df:fb:04:39:77:17:75:99:0c:a9:b3:7f: b7:02:06:d7:86:a3:7e:2b:e9:12:54:47:0c:c8:1c:10:2c:c6: 90:46:a8:62:38:08:f0:b6:3d:83:6b:84:f9:c6:d9:98:54:e2: 0f:eb:7a:8b:8a:3f:68:f8:f0:de:a6:fe:91:c1:26:45:fd:15: da:33:65:15:4b:08:79:da:21:ec:bd:ae:eb:60:26:e5:01:54: ed:ea:63:be:49:9f:af:f5:00:b4:03:d6:74:35:5d:44:3a:70: dc:55:e2:cc:bc:11:ef:cd:9a:e0:b0:4b:7b:29:e0:f3:9d:25: 99:60:41:68:f4:09:88:18:b1:d5:46:a2:8b:57:6d:5d:43:aa: 31:e1:12:a4:10:f5:a5:d7:7d:36:30:3c:6b:d1:94:c6:13:e8: 3d:3f:64:bc:99:01:3e:18:38:8e:32:7a:3e:a7:a6:d1:c2:a1: f5:4b:02:a1:34:4b:87:21:2f:5e:42:96:b0:cc:9f:33:1f:37: ce:57:24:a8:d5:69:48:e5:e6:41:fa:d3:cd:3d:b3:e1:25:ca: 5a:66:0b:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEM0UxMTAvBgNVBAUTKDYwNkVCMjk1ODI1NEFDOThCNjMzNkVBQTQxQUM4MEIy RENCMTlDNkUwHhcNMjUwODAzMDY1NTE5WhcNMjUwODEwMDY1NTE5WjAYMRYwFAYD VQQDEw02ODhmMDdkNy0xODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKOGpteaV8cHMK/WWUDrSzuIvjmXqtfjBHU+IYgqILuqxYJ5PN0eFZ+KwFx5 U2mB7MVqgW08w1F5U93rRWmRBDF0YzE4h/I3oepQE7AtzU8KxX+HJjnOt8GTepWL OPA17uYYzzCt4PMw4+6TVBwZYnXV/qs+CehRv4dyYamajDkG59zqIOIWlKfiK119 JdiW5fEkFxCwR8zyKVXioemG1wR1SUhQ4K00znxcqaGKJq5itZZPTdKvlAAPL6fs 5UpcThDhi3UZJ2rfLDHxD0yMe6DRQgWl4/+buRrioXNy1d9ZXy46u2EeT6kiwZAP ++zlWEsLbN5NEgXPPHq4WYfbPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8n2Uvx 7r6QRMOjeUix5gRsYCSsMB8GA1UdIwQYMBaAFGBuspWCVKyYtjNuqkGsgLLcsZxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEQzRS9CNURGQzhDMDlG RDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJKaTJNMjZxUWF5QXN0eXhu RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lHNnlsWUpVckppMk0yNnFRYXlBc3R5eG5HNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEQzRS9CNURGQzhDMDlGRDcxMUVGOUUzOEE4MzdDNEY5QUUwMi9ZRzZ5bFlKVXJK aTJNMjZxUWF5QXN0eXhuRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJimsFw8sXKhoxrbjpVrtvbGtYJbEyPod8zKfnq1rU3efDjxNCd6VW sRDf+wQ5dxd1mQyps3+3AgbXhqN+K+kSVEcMyBwQLMaQRqhiOAjwtj2Da4T5xtmY VOIP63qLij9o+PDepv6RwSZF/RXaM2UVSwh52iHsva7rYCblAVTt6mO+SZ+v9QC0 A9Z0NV1EOnDcVeLMvBHvzZrgsEt7KeDznSWZYEFo9AmIGLHVRqKLV21dQ6ox4RKk EPWl1302MDxr0ZTGE+g9P2S8mQE+GDiOMno+p6bRwqH1SwKhNEuHIS9eQpawzJ8z HzfOVySo1WlI5eZB+tPNPbPhJcpaZgsR -----END CERTIFICATE-----Generated at Mon Aug 4 11:16:23 2025 by rpki-client