$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: J01AdsrSNYoCay2ePtpRiAJdq2mSb7hP3lG/oCunA0E= Subject key identifier: 4A:3F:65:2D:CE:A5:24:D6:A6:58:00:7F:88:82:10:46:BD:9B:13:03 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 0189 Signing time: Sat 09 Aug 2025 03:54:45 +0000 Manifest this update: Sat 09 Aug 2025 03:54:45 +0000 Manifest next update: Sat 16 Aug 2025 03:54:45 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: O8FkA4gLYvlBKbNoe477OprOMdv5D7uy4dUP3mMPjoY=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: 1HSPz5fptSUhMZGOqCo4GWHbK/jQcYLJDQgsd3l//0k=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: qxrX+Z3cG6vZ3aS4ZRQYNGD9CmXUX4wxNipZHWRT9gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Aug 9 03:54:45 2025 GMT Not After : Aug 16 03:54:45 2025 GMT Subject: CN=6896c685-52df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fa:c6:98:24:4d:68:2a:13:6b:87:2d:c5:06: 18:f5:62:71:59:82:96:d0:95:a5:2c:df:e7:6c:4e: 3a:95:33:d2:9d:3b:69:df:39:07:de:08:84:4f:21: 6f:74:b6:93:d3:dd:4d:c9:e6:d0:69:5b:8a:a7:eb: 82:8d:df:24:d2:21:ae:0a:b0:ea:f8:c7:a9:3d:ab: 01:1b:36:50:88:2d:4a:73:33:23:91:c1:6a:41:f2: c3:b0:65:7e:b8:33:4e:e0:6d:f8:5f:57:8a:1a:02: 06:eb:a8:fa:8b:e2:77:d1:95:59:22:25:72:97:3c: ae:dc:9c:42:c1:25:7e:79:23:e7:bc:ca:9f:d9:ab: aa:99:ae:9e:5b:e6:36:e4:38:af:99:d9:d9:f5:8e: 45:16:2b:7d:68:b9:7c:b2:e2:b8:bb:b7:77:37:6b: 19:8b:d5:7c:83:03:25:3c:4c:33:13:36:d3:97:53: 12:d8:e5:d0:ec:15:e1:5a:de:29:f9:c8:36:d4:ae: 1a:5a:01:b2:ff:e1:a9:37:89:4c:e8:6d:16:79:a9: 53:90:ad:0b:dd:d8:85:8b:ae:1b:2b:a8:d6:ef:75: 96:28:6b:c9:c9:96:01:22:a9:a2:60:cf:02:81:75: 08:8c:a5:11:13:5b:f4:f7:7e:b0:46:93:4e:ee:51: 1f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:65:2D:CE:A5:24:D6:A6:58:00:7F:88:82:10:46:BD:9B:13:03 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a5:3c:e2:bf:91:e6:04:3c:5a:b2:91:02:87:72:85:56:4b: 16:a6:4f:67:15:8f:95:8f:b9:4a:df:b4:45:35:b9:52:93:7d: cc:2b:52:82:53:fb:bf:00:35:99:14:57:da:68:e6:45:3f:f5: c7:ca:b7:84:72:58:c9:1b:46:04:b8:ac:02:e7:14:14:f0:a7: ea:b4:c4:89:e5:54:d5:9d:51:e3:fb:42:68:22:1c:af:12:aa: 2d:0e:65:fb:9a:b3:68:53:fc:5d:c1:4c:6a:c6:5a:63:8c:f9: 0a:c6:31:c3:52:22:b5:cd:de:51:e0:74:84:51:6b:43:8d:2b: cc:bd:53:98:ec:d3:1e:27:53:9a:04:4d:08:ab:18:8f:84:e1: 71:8e:57:1e:3d:33:c9:45:b4:bd:86:6c:f0:12:11:d0:f2:23: 51:43:4c:06:af:49:29:ab:18:87:01:e4:54:55:06:70:2d:35: d5:69:d0:92:77:c5:93:89:52:77:1b:db:d2:a4:a1:d1:17:f4: 95:89:c6:3b:a5:51:8d:3f:50:ab:91:3b:e9:99:e1:f3:a0:cf: 3c:a6:4d:2c:d3:95:3d:16:a2:2b:80:5a:bd:0e:e1:af:12:49: e8:a6:26:d5:f2:4f:6c:0c:4b:43:ce:58:a1:fb:1c:5c:d3:76: 13:b1:3d:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUwODA5MDM1NDQ1WhcNMjUwODE2MDM1NDQ1WjAYMRYwFAYD VQQDEw02ODk2YzY4NS01MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvrGmCRNaCoTa4ctxQYY9WJxWYKW0JWlLN/nbE46lTPSnTtp3zkH3giETyFv dLaT091NyebQaVuKp+uCjd8k0iGuCrDq+MepPasBGzZQiC1KczMjkcFqQfLDsGV+ uDNO4G34X1eKGgIG66j6i+J30ZVZIiVylzyu3JxCwSV+eSPnvMqf2auqma6eW+Y2 5DivmdnZ9Y5FFit9aLl8suK4u7d3N2sZi9V8gwMlPEwzEzbTl1MS2OXQ7BXhWt4p +cg21K4aWgGy/+GpN4lM6G0WealTkK0L3diFi64bK6jW73WWKGvJyZYBIqmiYM8C gXUIjKURE1v0936wRpNO7lEfAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo/ZS3O pSTWplgAf4iCEEa9mxMDMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpTziv5HmBDxaspECh3KFVksWpk9nFY+Vj7lK37RFNblSk33MK1KC U/u/ADWZFFfaaOZFP/XHyreEcljJG0YEuKwC5xQU8KfqtMSJ5VTVnVHj+0JoIhyv EqotDmX7mrNoU/xdwUxqxlpjjPkKxjHDUiK1zd5R4HSEUWtDjSvMvVOY7NMeJ1Oa BE0IqxiPhOFxjlcePTPJRbS9hmzwEhHQ8iNRQ0wGr0kpqxiHAeRUVQZwLTXVadCS d8WTiVJ3G9vSpKHRF/SVicY7pVGNP1CrkTvpmeHzoM88pk0s05U9FqIrgFq9DuGv EknopibV8k9sDEtDzlih+xxc03YTsT3f -----END CERTIFICATE-----Generated at Sat Aug 9 05:40:18 2025 by rpki-client