$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: 4YFCVq5uCJ8IebVF2Jp+w7kXMo0GdkTzU1qoeAkfFBw= Subject key identifier: E6:31:80:05:5B:97:C8:0E:30:72:E2:37:F8:FA:A1:C2:56:4F:7B:70 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0C6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0C66 Signing time: Fri 08 Aug 2025 18:37:23 +0000 Manifest this update: Fri 08 Aug 2025 18:37:23 +0000 Manifest next update: Fri 15 Aug 2025 18:37:23 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: 5UmPpEvK4r+DkPHmbTLp3s6+NMaEPPBmpf5mJY8Nqxs=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: f31uXjqb4DNcM+Zpb2Aaj4CME0IwegAYYNe/FOHZjWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Aug 8 18:37:23 2025 GMT Not After : Aug 15 18:37:23 2025 GMT Subject: CN=689643e3-f2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:96:43:54:db:4d:d0:62:9c:b5:70:7c:81:7c: a2:da:f5:73:21:bc:67:5d:29:2a:5c:96:12:a1:c5: e8:29:0d:17:da:67:86:a3:0c:68:23:60:d9:42:63: b9:a4:c5:91:45:67:e9:d7:b5:e0:31:f0:6a:15:39: dc:88:c1:96:a4:cb:ab:1d:a7:d7:5d:a2:80:a1:0a: b5:7b:3a:1c:03:b6:a6:18:f6:05:43:2e:5c:e6:61: a8:97:c7:49:ca:e3:f2:3d:68:d1:d1:4b:af:61:fd: 23:f6:ec:0e:e0:25:a2:9a:79:01:7c:53:03:fa:0b: 5a:de:8d:c7:57:56:93:e1:67:af:60:91:54:cd:51: a6:6f:84:33:9b:a5:dc:4d:18:c6:4a:08:d0:20:d6: 90:bd:34:f5:b7:3c:bb:fb:f6:a5:18:26:6b:c7:cb: e1:01:7c:9c:25:03:19:a4:91:d8:bf:91:1f:5d:7f: de:13:a1:83:62:73:e4:b9:de:aa:df:7a:c7:f7:40: 9a:f5:e6:dc:6f:a3:2f:e4:48:51:c8:c7:fd:8a:20: b0:98:1f:83:b0:51:74:da:29:1a:88:2a:78:37:e9: ee:b5:8e:bf:fd:0e:4f:d8:21:f5:fc:b5:0f:a4:2c: eb:d9:db:56:00:f3:85:cc:2c:b7:67:92:e7:d8:ab: 75:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:31:80:05:5B:97:C8:0E:30:72:E2:37:F8:FA:A1:C2:56:4F:7B:70 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f0:93:1a:e6:3e:33:01:b6:59:f3:af:12:9a:94:1a:30:66: 16:d5:75:31:55:88:4c:ad:dd:23:86:7b:38:a4:be:ab:a5:7d: 20:c2:e2:50:d1:0c:07:ce:af:30:33:a6:39:57:88:34:d1:dd: 80:a7:b2:2e:bb:fe:11:63:c8:42:cf:a9:d1:cb:01:97:dd:30: 8a:1d:71:36:e3:05:6d:b9:1c:92:fc:ff:0e:50:d2:b6:26:70: f1:78:b1:96:fc:77:50:87:3d:f2:61:a1:92:9d:f4:cb:05:c3: 62:90:07:ad:5c:df:8a:44:3e:d3:76:0c:cc:26:89:60:e0:04: 21:28:62:ad:4a:ba:2f:bb:86:d1:11:16:01:0c:81:94:4d:8f: 69:db:da:8f:43:97:c0:5f:25:ab:39:7a:40:75:04:ec:1e:90: f7:e0:23:03:af:4b:2f:09:4e:85:ce:89:4d:8d:73:5f:b5:58: fb:e1:17:05:c5:9d:9e:03:0b:e6:dc:c7:8e:a4:3b:aa:48:80: fe:4b:52:68:c5:16:ad:d7:69:97:ad:a4:66:3f:b4:ef:f8:6d: e1:7b:36:7c:38:07:6d:30:7b:2a:05:b7:ed:f9:d2:83:8d:b9: 90:e9:63:45:2b:fc:06:e4:fc:3e:01:36:bc:b6:5a:07:19:be: b6:e2:72:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUwODA4MTgzNzIzWhcNMjUwODE1MTgzNzIzWjAYMRYwFAYD VQQDEw02ODk2NDNlMy1mMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZZDVNtN0GKctXB8gXyi2vVzIbxnXSkqXJYSocXoKQ0X2meGowxoI2DZQmO5 pMWRRWfp17XgMfBqFTnciMGWpMurHafXXaKAoQq1ezocA7amGPYFQy5c5mGol8dJ yuPyPWjR0UuvYf0j9uwO4CWimnkBfFMD+gta3o3HV1aT4WevYJFUzVGmb4Qzm6Xc TRjGSgjQINaQvTT1tzy7+/alGCZrx8vhAXycJQMZpJHYv5EfXX/eE6GDYnPkud6q 33rH90Ca9ebcb6Mv5EhRyMf9iiCwmB+DsFF02ikaiCp4N+nutY6//Q5P2CH1/LUP pCzr2dtWAPOFzCy3Z5Ln2Kt1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYxgAVb l8gOMHLiN/j6ocJWT3twMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW8JMa5j4zAbZZ868SmpQaMGYW1XUxVYhMrd0jhns4pL6rpX0gwuJQ 0QwHzq8wM6Y5V4g00d2Ap7Iuu/4RY8hCz6nRywGX3TCKHXE24wVtuRyS/P8OUNK2 JnDxeLGW/HdQhz3yYaGSnfTLBcNikAetXN+KRD7TdgzMJolg4AQhKGKtSrovu4bR ERYBDIGUTY9p29qPQ5fAXyWrOXpAdQTsHpD34CMDr0svCU6FzolNjXNftVj74RcF xZ2eAwvm3MeOpDuqSID+S1JoxRat12mXraRmP7Tv+G3hezZ8OAdtMHsqBbft+dKD jbmQ6WNFK/wG5Pw+ATa8tloHGb624nJN -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:26 2025 by rpki-client