$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: GY4qOfD2tsBjZe9qLp8FQhlNs4+CjHPFiFo1mzX9uec= Subject key identifier: DF:94:56:7D:B3:9B:F8:BE:63:D0:49:FE:97:4D:0A:9D:BE:86:B1:A5 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0A1B Signing time: Fri 08 Aug 2025 20:06:09 +0000 Manifest this update: Fri 08 Aug 2025 20:06:08 +0000 Manifest next update: Fri 15 Aug 2025 20:06:08 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: jqA5PRccXcRl1S/4xzYz+ZYoOVJ5oZBKeiH+V1cdlK8=) 2: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: WJcxZE//v/qgwM5L8UFDfgSzlZEjCMButWifhGqcTAY=) 3: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2603 (0xa2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Aug 8 20:06:08 2025 GMT Not After : Aug 15 20:06:08 2025 GMT Subject: CN=689658b1-52e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:44:d7:8f:c0:a9:ae:3b:73:b0:17:85:b6:e6: 9d:88:d4:f4:ea:b0:35:46:aa:a1:db:b3:e9:a7:a5: 3a:7b:cd:89:bd:88:30:23:76:82:7f:6d:54:dc:40: 1e:87:73:4d:8d:cb:bc:0b:c2:62:96:c6:eb:e7:9d: 43:df:9c:97:7b:67:5c:76:f6:fb:d6:ad:d9:71:28: 2a:97:c9:0c:f6:bc:0d:03:28:e6:d9:a0:d1:fa:9d: 27:1d:d5:68:eb:28:88:e8:ca:77:02:41:5d:54:1c: c4:df:8a:b3:13:ee:f1:a9:fc:af:9f:9f:b2:c4:ec: de:12:c3:b2:ff:8e:72:13:d4:6b:1d:9e:fd:23:fe: 9f:5f:70:d4:51:59:37:b7:6b:7a:ce:6b:c1:4e:8d: d9:71:47:0b:8f:4a:fb:31:85:36:af:c0:b4:9a:5b: f1:a7:73:32:23:13:c4:2f:7d:ea:34:cd:cd:0d:e4: fe:ba:50:23:0e:aa:08:69:4c:a0:ec:34:94:e6:40: fb:fb:de:5f:62:4e:ec:d5:08:e4:f5:0c:1e:86:cd: be:a5:48:9f:88:fa:a5:35:ef:59:42:15:d7:48:2c: 36:e2:63:2d:32:06:6e:42:c4:89:d0:b5:73:03:8a: 3f:3d:97:ce:ba:49:48:fa:19:e4:84:32:3f:a5:2e: 53:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:94:56:7D:B3:9B:F8:BE:63:D0:49:FE:97:4D:0A:9D:BE:86:B1:A5 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a4:68:94:f8:5b:22:54:e2:29:7d:30:d6:c3:28:09:12:b6: b0:8d:04:ac:c0:1a:a3:3b:46:b7:eb:7f:65:f9:8e:6b:90:0f: 53:e3:52:43:70:10:e2:40:54:eb:ba:9c:91:3c:bd:65:71:37: ff:a2:a0:37:1f:34:03:59:43:ed:5e:cd:98:a8:d0:29:8f:6f: 19:83:68:e2:0f:35:56:53:71:67:3b:c2:fb:65:de:73:7e:18: 1d:4c:90:af:ce:4b:1d:d0:e3:e6:e4:ca:55:59:a9:4c:2b:55: 6b:0d:5f:6a:51:66:82:d2:25:0e:a0:cd:5e:9e:19:a6:29:92: ca:c6:77:80:a9:84:d5:7b:8e:07:00:66:4c:44:ee:34:6f:0e: db:6d:2e:eb:3b:be:b3:ec:95:84:43:44:3b:36:31:91:1b:71: 10:61:ab:02:e8:2a:05:fe:c1:09:b9:3d:c2:74:3f:d0:a4:17: 3b:7a:d1:96:31:2b:c8:11:96:50:22:1b:da:37:ef:5d:fe:d7: 53:72:13:01:57:a7:a6:73:ef:98:1b:10:3f:8b:b0:ca:27:2b: 52:4f:6e:f8:0c:57:c0:49:d6:ed:a2:2b:80:64:bf:92:4a:00: 7e:f0:13:71:a6:e3:f8:8d:c5:77:8b:3b:8d:d7:f2:b3:28:c3: 5e:f9:16:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwODA4MjAwNjA4WhcNMjUwODE1MjAwNjA4WjAYMRYwFAYD VQQDEw02ODk2NThiMS01MmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUTXj8CprjtzsBeFtuadiNT06rA1Rqqh27Ppp6U6e82JvYgwI3aCf21U3EAe h3NNjcu8C8Jilsbr551D35yXe2dcdvb71q3ZcSgql8kM9rwNAyjm2aDR+p0nHdVo 6yiI6Mp3AkFdVBzE34qzE+7xqfyvn5+yxOzeEsOy/45yE9RrHZ79I/6fX3DUUVk3 t2t6zmvBTo3ZcUcLj0r7MYU2r8C0mlvxp3MyIxPEL33qNM3NDeT+ulAjDqoIaUyg 7DSU5kD7+95fYk7s1Qjk9Qwehs2+pUifiPqlNe9ZQhXXSCw24mMtMgZuQsSJ0LVz A4o/PZfOuklI+hnkhDI/pS5T1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+UVn2z m/i+Y9BJ/pdNCp2+hrGlMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjpGiU+FsiVOIpfTDWwygJErawjQSswBqjO0a3639l+Y5rkA9T41JD cBDiQFTrupyRPL1lcTf/oqA3HzQDWUPtXs2YqNApj28Zg2jiDzVWU3FnO8L7Zd5z fhgdTJCvzksd0OPm5MpVWalMK1VrDV9qUWaC0iUOoM1enhmmKZLKxneAqYTVe44H AGZMRO40bw7bbS7rO76z7JWEQ0Q7NjGRG3EQYasC6CoF/sEJuT3CdD/QpBc7etGW MSvIEZZQIhvaN+9d/tdTchMBV6emc++YGxA/i7DKJytST274DFfASdbtoiuAZL+S SgB+8BNxpuP4jcV3izuN1/KzKMNe+Ra/ -----END CERTIFICATE-----Generated at Sun Aug 10 16:12:07 2025 by rpki-client