$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: 0gDEkQRTnpR9tb33g5As/aO1vX3LExLFx85Ltfp24Yc= Subject key identifier: 9A:52:DC:B9:11:52:81:E9:F7:A0:35:FF:F6:41:27:B9:12:B0:7E:03 Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01F7 Signing time: Sun 03 Aug 2025 02:51:13 +0000 Manifest this update: Sun 03 Aug 2025 02:51:13 +0000 Manifest next update: Sun 10 Aug 2025 02:51:13 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: 8cL5w0l04Dm0B0pdUxH9R373E2OuoSOmQXiZZIaq/Z4=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Aug 3 02:51:13 2025 GMT Not After : Aug 10 02:51:13 2025 GMT Subject: CN=688ecea1-6db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:06:35:b7:4c:27:0b:47:ff:fc:3c:23:62: 63:ad:d6:0d:05:ad:0f:b4:77:e4:5e:88:e1:f5:57: 19:ad:ff:69:20:22:38:4b:e0:7c:31:89:6f:2b:d9: 74:29:d3:41:3e:2b:88:e4:7b:a0:bb:48:67:79:19: a9:85:c8:cc:d5:da:20:a2:d8:ad:ad:98:d2:39:74: 38:7d:93:53:08:0a:a5:7c:02:fb:f9:1f:81:8c:4b: cf:44:81:f0:f7:d4:81:40:c6:9c:b2:f0:22:07:60: 64:36:f1:39:8b:90:d4:47:99:b1:9a:96:9f:eb:19: 84:56:55:80:12:2c:67:f8:79:b7:6c:18:a9:de:11: 56:a7:c1:ab:6d:18:cb:f1:f6:29:01:80:43:10:56: d0:8e:ee:15:91:6c:d8:e7:8a:e3:f3:de:99:25:ac: 31:d6:32:e4:ba:7e:6e:1f:81:10:a6:22:e4:a1:89: fc:8c:97:b1:9f:43:89:75:5d:ca:9d:a1:39:e5:68: b6:09:0f:42:13:69:ef:a7:14:d9:86:40:6c:92:fa: 9f:2b:95:4b:99:da:eb:50:97:ba:2a:da:a9:ac:57: 2e:79:a9:84:8d:5f:fd:f1:f0:a6:99:dc:2c:f1:02: 53:3d:2a:6d:51:3d:e7:8a:65:e3:c1:31:6a:bd:01: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:52:DC:B9:11:52:81:E9:F7:A0:35:FF:F6:41:27:B9:12:B0:7E:03 X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:08:ec:b7:ee:2a:02:fc:1e:f9:7f:af:04:88:a7:3c:94:9b: f0:bd:eb:dd:8e:03:54:d0:e2:13:44:92:10:6d:16:23:e3:14: 74:94:d5:50:73:a7:ac:1b:3d:99:bd:56:46:d2:c3:81:c3:55: fb:21:02:37:60:24:b4:02:d3:a6:a4:19:b8:55:2e:6d:94:f2: 4f:06:f2:40:a1:e9:c8:8e:be:fa:fc:b3:c3:a8:da:6c:a6:3d: 48:e5:88:e6:07:d3:a7:2e:c9:83:8e:20:b3:ae:c3:46:9e:77: 79:a2:32:7e:ba:81:14:5b:62:35:00:4a:7e:68:5c:2a:6f:58: cb:e3:6c:fd:3f:ab:58:5e:e0:72:71:4a:62:35:5a:a1:4f:f3: 75:e5:23:45:06:af:07:b4:bb:2b:28:5e:45:8a:c6:c6:25:84: de:7c:f9:17:a4:7e:e0:17:6d:24:9e:0b:60:38:ea:24:8a:68: c2:d9:a5:7b:82:8d:e4:9c:2e:b2:3e:ce:e8:f6:37:fb:65:fa: 16:5d:cf:a4:fd:ae:00:a1:15:9c:4a:01:fe:ff:4c:13:cb:74: 94:8d:d0:a1:f6:d8:5d:77:0a:4c:bb:82:a9:af:c3:7f:30:15: d6:d8:4b:90:35:4d:28:6e:a1:86:d7:9e:00:a5:f1:73:e3:6f: b1:78:cc:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwODAzMDI1MTEzWhcNMjUwODEwMDI1MTEzWjAYMRYwFAYD VQQDEw02ODhlY2VhMS02ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEMGNbdMJwtH//w8I2JjrdYNBa0PtHfkXojh9VcZrf9pICI4S+B8MYlvK9l0 KdNBPiuI5Hugu0hneRmphcjM1dogotitrZjSOXQ4fZNTCAqlfAL7+R+BjEvPRIHw 99SBQMacsvAiB2BkNvE5i5DUR5mxmpaf6xmEVlWAEixn+Hm3bBip3hFWp8GrbRjL 8fYpAYBDEFbQju4VkWzY54rj896ZJawx1jLkun5uH4EQpiLkoYn8jJexn0OJdV3K naE55Wi2CQ9CE2nvpxTZhkBskvqfK5VLmdrrUJe6KtqprFcueamEjV/98fCmmdws 8QJTPSptUT3nimXjwTFqvQG9XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpS3LkR UoHp96A1//ZBJ7kSsH4DMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCECOy37ioC/B75f68EiKc8lJvwvevdjgNU0OITRJIQbRYj4xR0lNVQ c6esGz2ZvVZG0sOBw1X7IQI3YCS0AtOmpBm4VS5tlPJPBvJAoenIjr76/LPDqNps pj1I5YjmB9OnLsmDjiCzrsNGnnd5ojJ+uoEUW2I1AEp+aFwqb1jL42z9P6tYXuBy cUpiNVqhT/N15SNFBq8HtLsrKF5FisbGJYTefPkXpH7gF20kngtgOOokimjC2aV7 go3knC6yPs7o9jf7ZfoWXc+k/a4AoRWcSgH+/0wTy3SUjdCh9thddwpMu4Kpr8N/ MBXW2EuQNU0obqGG154ApfFz42+xeMz9 -----END CERTIFICATE-----Generated at Mon Aug 4 19:06:19 2025 by rpki-client