$ rpki-client -vvf rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft File: YQPK5q-yXkC6nl2kxULP4JtndCo.mft (raw, json) Hash identifier: N1ociGLoLgAQTYcBBE5dcGChLyDEufvP/w1jQlqHuw0= Subject key identifier: 16:2D:00:57:80:5F:10:D3:C6:5E:46:38:F4:8A:CD:D3:21:4C:F9:E5 Authority key identifier: 61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A Certificate issuer: /CN=A9186193/serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Certificate serial: 09A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft Manifest number: 09A1 Signing time: Fri 08 Aug 2025 20:23:36 +0000 Manifest this update: Fri 08 Aug 2025 20:23:35 +0000 Manifest next update: Fri 15 Aug 2025 20:23:35 +0000 Files and hashes: 1: YQPK5q-yXkC6nl2kxULP4JtndCo.crl (hash: zPaKMr0saZAbLZTwOt/yU1eQFFjUY+D9LVPMBiQbnQA=) 2: B781FD5C8FB411EAA396FB5CC4F9AE02.roa (hash: kppfjOmUGO+tWg93gbF2w14mllXA4v8g2v3smcz3zqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186193, serialNumber=6103CAE6AFB25E40BA9E5DA4C542CFE09B67742A Validity Not Before: Aug 8 20:23:35 2025 GMT Not After : Aug 15 20:23:35 2025 GMT Subject: CN=68965cc8-5b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:bd:8b:99:84:65:01:4c:8b:e2:2f:c6:f1: 07:9c:96:02:25:d7:40:b9:03:6f:71:91:73:88:38: 7a:e0:22:d1:9f:cd:f4:2c:e9:56:35:6e:8f:35:58: ef:80:b8:a4:1a:64:dc:a9:47:86:04:f4:a8:81:09: 3e:bb:51:bd:bd:76:e0:c0:f2:5a:31:bb:f7:c5:d5: a1:40:34:80:f5:ad:5e:8a:94:b6:c4:89:b7:41:93: 9b:e6:14:1e:9e:c6:22:b2:22:1a:e8:b7:ab:7b:a6: cd:a9:56:a8:01:33:98:ba:c5:53:e2:fe:22:39:fa: ed:b6:e7:2b:0d:07:ef:2b:71:56:33:f0:04:a6:e4: fb:4c:77:e9:6a:fd:0d:1e:04:07:af:2f:22:6b:5d: fa:3d:b4:ab:4c:f7:62:76:19:c1:26:ad:97:e2:0d: c7:25:6a:80:f1:98:88:f9:b8:bc:29:b1:68:02:34: 73:dc:33:59:24:47:c3:8f:a6:ae:e5:0d:40:62:80: 2d:34:4c:d4:27:57:81:64:f1:13:76:87:40:39:11: 5f:61:e9:a6:50:ef:4f:98:2a:2b:b9:41:de:49:05: 47:0c:b2:5b:86:93:85:3a:0c:82:e2:37:38:6f:ae: d7:45:e8:ce:0d:a6:95:83:92:7d:ac:c4:e7:ed:1e: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2D:00:57:80:5F:10:D3:C6:5E:46:38:F4:8A:CD:D3:21:4C:F9:E5 X509v3 Authority Key Identifier: keyid:61:03:CA:E6:AF:B2:5E:40:BA:9E:5D:A4:C5:42:CF:E0:9B:67:74:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YQPK5q-yXkC6nl2kxULP4JtndCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186193/1D51405E8FB311EAB7126C57C4F9AE02/YQPK5q-yXkC6nl2kxULP4JtndCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:9c:1f:ed:4d:b6:00:e4:0f:0e:1b:31:31:ed:0e:3c:18:46: 35:27:fb:2c:52:b7:c5:97:84:98:36:e0:90:7a:e1:a7:0e:42: f4:cb:de:de:c5:31:6c:2a:7f:7e:c9:00:64:93:28:08:2b:fe: b0:1c:96:52:80:de:5f:ca:ad:90:15:b8:59:4c:a1:76:83:45: 02:a6:7f:9d:7c:df:61:86:15:d0:2f:46:c1:c4:2f:dc:a2:e8: 8a:74:c6:be:f8:ad:9e:21:10:d2:69:99:94:88:f1:fa:2f:f4: 34:9c:13:99:96:b3:e5:db:3f:51:98:3c:a0:d4:83:89:bc:69: 65:7d:1e:6c:cf:36:9d:c0:88:ba:8c:35:34:63:27:90:db:85: b8:f0:81:3f:11:c8:b1:d2:0b:e0:ba:b9:97:bf:ea:05:bf:44: 95:a7:f6:e6:13:e2:e9:04:25:7f:d1:91:a7:76:a4:9c:27:59: 3d:05:bf:71:7b:fb:bf:6d:97:25:2b:aa:72:f0:22:78:a1:75: fc:ee:f7:76:f9:aa:35:4b:64:80:16:99:63:96:e5:30:38:e6: 0f:b1:17:e4:eb:58:ec:c0:e2:b5:8d:22:86:5d:b2:bd:ab:42: af:4d:3a:16:2d:05:82:51:90:eb:d3:71:a7:53:90:79:15:ff: 13:4a:7f:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYxOTMxMTAvBgNVBAUTKDYxMDNDQUU2QUZCMjVFNDBCQTlFNURBNEM1NDJDRkUw OUI2Nzc0MkEwHhcNMjUwODA4MjAyMzM1WhcNMjUwODE1MjAyMzM1WjAYMRYwFAYD VQQDEw02ODk2NWNjOC01YjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygu9i5mEZQFMi+IvxvEHnJYCJddAuQNvcZFziDh64CLRn830LOlWNW6PNVjv gLikGmTcqUeGBPSogQk+u1G9vXbgwPJaMbv3xdWhQDSA9a1eipS2xIm3QZOb5hQe nsYisiIa6Lere6bNqVaoATOYusVT4v4iOfrttucrDQfvK3FWM/AEpuT7THfpav0N HgQHry8ia136PbSrTPdidhnBJq2X4g3HJWqA8ZiI+bi8KbFoAjRz3DNZJEfDj6au 5Q1AYoAtNEzUJ1eBZPETdodAORFfYemmUO9PmCoruUHeSQVHDLJbhpOFOgyC4jc4 b67XRejODaaVg5J9rMTn7R7YrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYtAFeA XxDTxl5GOPSKzdMhTPnlMB8GA1UdIwQYMBaAFGEDyuavsl5Aup5dpMVCz+CbZ3Qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjE5My8xRDUxNDA1RThG QjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhrQzZubDJreFVMUDRKdG5k Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lRUEs1cS15WGtDNm5sMmt4VUxQNEp0bmRDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjE5My8xRDUxNDA1RThGQjMxMUVBQjcxMjZDNTdDNEY5QUUwMi9ZUVBLNXEteVhr QzZubDJreFVMUDRKdG5kQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQnB/tTbYA5A8OGzEx7Q48GEY1J/ssUrfFl4SYNuCQeuGnDkL0y97e xTFsKn9+yQBkkygIK/6wHJZSgN5fyq2QFbhZTKF2g0UCpn+dfN9hhhXQL0bBxC/c ouiKdMa++K2eIRDSaZmUiPH6L/Q0nBOZlrPl2z9RmDyg1IOJvGllfR5szzadwIi6 jDU0YyeQ24W48IE/Ecix0gvgurmXv+oFv0SVp/bmE+LpBCV/0ZGndqScJ1k9Bb9x e/u/bZclK6py8CJ4oXX87vd2+ao1S2SAFpljluUwOOYPsRfk61jswOK1jSKGXbK9 q0KvTToWLQWCUZDr03GnU5B5Ff8TSn9p -----END CERTIFICATE-----Generated at Sun Aug 10 20:01:04 2025 by rpki-client