$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: eJ3xMMa+kU1qxG5/F+WfA3w9tbvV+HU9LSSp0MqgbYQ= Subject key identifier: 5F:3E:FF:A8:0D:9C:BB:B6:D7:BD:AB:66:24:A0:29:C8:E0:B8:77:A8 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0CBC Signing time: Sun 10 Aug 2025 18:08:26 +0000 Manifest this update: Sun 10 Aug 2025 18:08:26 +0000 Manifest next update: Sun 17 Aug 2025 18:08:26 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: rZtysoZDlqqcI+mkWtwXYPQWhOhUfoA1xluFpqTHs60=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: hSO23qhSJreuhOLk9R8p+4DtFYxsss4sjYdKljRJK2k=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: 7iLE2NbcVEE13k7k5xb5wiFVYhBSAES33qNPZQmTZqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 18:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Aug 10 18:08:26 2025 GMT Not After : Aug 17 18:08:26 2025 GMT Subject: CN=6898e01a-e895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3c:1e:e4:a1:b4:b7:d6:16:69:2d:b8:8f:8f: fc:d3:df:d3:8f:17:d7:ba:4c:7b:45:a9:7c:58:29: 33:1b:fd:56:17:a0:dc:c4:fb:c0:33:dc:73:84:67: e8:e0:41:6a:68:35:96:76:06:32:43:5b:8e:95:43: 0b:cf:3a:4e:77:73:39:3e:da:85:12:6e:0e:db:f0: b5:a6:8a:4b:c5:95:c2:b3:86:eb:33:c8:45:6e:a3: 5e:21:02:2c:58:df:fb:c5:18:ec:c6:54:a6:63:04: 1b:70:d9:2b:cc:9e:e9:aa:cb:34:0d:fe:d1:a7:da: 9d:fe:66:ba:d6:97:65:74:d3:cd:04:9b:24:bf:c7: 63:c0:d3:e0:5f:b3:5d:27:b5:dd:9b:b4:e8:d3:9a: d2:9a:8d:27:1a:d1:74:8b:94:24:3f:17:4f:a0:56: 77:b1:25:a6:1b:d0:ae:b6:62:8e:eb:06:bd:37:41: 55:12:24:a8:75:35:0d:c7:84:44:dd:07:e8:72:c9: a0:73:27:63:66:bd:26:9a:cf:7c:96:34:1e:26:73: 70:bc:c2:07:bf:d4:7c:1e:8a:74:f2:a2:e4:ca:cf: 87:57:39:dd:b1:d4:51:c9:d5:73:b0:24:9d:dd:dd: d3:25:40:27:ac:8b:84:20:fb:7d:76:eb:d5:79:66: fe:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3E:FF:A8:0D:9C:BB:B6:D7:BD:AB:66:24:A0:29:C8:E0:B8:77:A8 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:04:38:e3:b3:30:2f:d7:50:b5:a7:78:3d:53:4e:ba:95:6f: 7a:df:0f:4c:20:ad:03:aa:d1:d1:76:99:a0:e2:be:53:ab:40: cd:af:30:92:1d:61:af:42:68:57:76:cf:e8:6c:e6:de:3b:24: ec:0a:3e:da:ac:3e:78:44:44:0d:d2:e2:32:1d:2e:08:21:68: 10:c3:9d:59:66:52:b6:3e:38:5a:bc:71:b9:20:33:70:c7:de: 39:3f:a8:a1:0e:da:40:35:bb:7f:9a:9c:1c:10:4f:07:44:ec: 4b:77:03:44:ba:c5:1b:de:70:95:94:7e:9c:16:2c:f7:a5:ef: c9:9a:3d:c6:bc:f1:1f:db:fb:d2:cb:da:f3:1c:cf:10:3d:2e: 26:85:f0:40:53:42:b0:e9:39:0e:9d:db:3b:bb:a8:46:dd:d2: 35:dc:14:ea:3f:d4:c2:7e:1c:8c:ed:d4:39:78:57:71:60:21: 69:7b:49:98:23:94:d3:a9:e5:65:64:49:81:ad:ed:2a:cc:14: 80:ed:a2:ae:c3:82:b9:17:11:b6:c7:47:f9:32:77:e0:e0:42: aa:45:da:1e:07:25:03:99:58:08:fa:3f:20:ca:6e:a1:f4:9c: f9:fc:7e:48:b1:23:c4:6b:5e:f9:09:64:ab:7c:ca:10:a3:41: b4:ff:1e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUwODEwMTgwODI2WhcNMjUwODE3MTgwODI2WjAYMRYwFAYD VQQDEw02ODk4ZTAxYS1lODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjwe5KG0t9YWaS24j4/809/TjxfXukx7Ral8WCkzG/1WF6DcxPvAM9xzhGfo 4EFqaDWWdgYyQ1uOlUMLzzpOd3M5PtqFEm4O2/C1popLxZXCs4brM8hFbqNeIQIs WN/7xRjsxlSmYwQbcNkrzJ7pqss0Df7Rp9qd/ma61pdldNPNBJskv8djwNPgX7Nd J7Xdm7To05rSmo0nGtF0i5QkPxdPoFZ3sSWmG9CutmKO6wa9N0FVEiSodTUNx4RE 3QfocsmgcydjZr0mms98ljQeJnNwvMIHv9R8Hop08qLkys+HVzndsdRRydVzsCSd 3d3TJUAnrIuEIPt9duvVeWb+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8+/6gN nLu2172rZiSgKcjguHeoMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzBDjjszAv11C1p3g9U066lW963w9MIK0DqtHRdpmg4r5Tq0DNrzCS HWGvQmhXds/obObeOyTsCj7arD54REQN0uIyHS4IIWgQw51ZZlK2PjhavHG5IDNw x945P6ihDtpANbt/mpwcEE8HROxLdwNEusUb3nCVlH6cFiz3pe/Jmj3GvPEf2/vS y9rzHM8QPS4mhfBAU0Kw6TkOnds7u6hG3dI13BTqP9TCfhyM7dQ5eFdxYCFpe0mY I5TTqeVlZEmBre0qzBSA7aKuw4K5FxG2x0f5Mnfg4EKqRdoeByUDmVgI+j8gym6h 9Jz5/H5IsSPEa175CWSrfMoQo0G0/x70 -----END CERTIFICATE-----Generated at Tue Aug 12 14:46:04 2025 by rpki-client