$ rpki-client -vvf rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft File: YeQBev9HdnE8_cggXML7IXhGK6E.mft (raw, json) Hash identifier: eT3j0Iy+TFQpAJRJobGywJ+KLNWOVP9lEvr8pk2y0VY= Subject key identifier: 59:D2:B0:88:27:57:CB:AC:C8:74:F3:B9:8B:B2:B3:D3:2A:A2:52:AE Authority key identifier: 61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 Certificate issuer: /CN=A919A824/serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Certificate serial: 0A5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft Manifest number: 0A4E Signing time: Mon 04 Aug 2025 19:59:01 +0000 Manifest this update: Mon 04 Aug 2025 19:59:00 +0000 Manifest next update: Mon 11 Aug 2025 19:59:00 +0000 Files and hashes: 1: YeQBev9HdnE8_cggXML7IXhGK6E.crl (hash: 6hwo70bLktTckQaxzL82Dn+3n8riTb8C5ObSqvY0P1A=) 2: E3DD6362787A11ED89732760C4F9AE02.roa (hash: VMcYRd+8siR3JswMEyznU2Fdgu69nUJbPEZeRjRvvQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 19:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A824, serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Validity Not Before: Aug 4 19:59:00 2025 GMT Not After : Aug 11 19:59:00 2025 GMT Subject: CN=68911104-901a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:80:db:a1:48:30:8b:8d:a0:8a:53:3d:d3:46: 5b:97:a9:3f:e8:ff:23:72:f3:26:61:07:75:56:91: a1:21:42:c1:b2:04:ce:47:32:2b:a9:be:b8:b4:82: 48:25:9f:e0:d4:fb:dc:d5:58:c3:ae:33:34:d0:d0: 92:73:55:e7:58:c1:3f:c2:c6:4e:ae:4a:e8:cc:a0: d9:6e:9b:d1:cb:2e:7a:31:53:ba:44:51:b2:87:53: d6:28:81:ba:c1:65:ff:7f:a8:13:8f:a5:c5:32:c7: bb:70:4c:20:39:61:fb:a2:f1:bc:df:86:88:45:b7: 46:24:de:50:58:d7:14:f1:2e:08:0d:e4:4c:8d:b3: c7:b8:68:d1:f9:0c:aa:f2:b7:cd:8d:fe:9e:4b:1e: e1:3b:a4:ac:c6:19:c8:91:ac:40:80:50:d5:21:4c: 1a:35:f1:eb:b4:6f:60:a7:0c:44:5c:3a:e4:2c:dd: 03:96:13:dc:ee:2b:22:15:21:01:52:c1:c8:ee:bd: 6d:70:e8:21:58:10:86:cb:d3:a2:b5:aa:c5:81:a2: 67:ba:87:68:b1:4a:53:e5:bc:27:99:eb:e3:39:8f: be:cd:54:71:13:f4:c6:ff:72:58:e1:ae:1f:14:e9: 51:83:0d:b9:18:f7:2b:38:01:50:9e:2e:37:84:0b: de:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D2:B0:88:27:57:CB:AC:C8:74:F3:B9:8B:B2:B3:D3:2A:A2:52:AE X509v3 Authority Key Identifier: keyid:61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:29:8a:67:01:63:10:9e:71:07:59:c2:0e:69:d7:8c:7d:c0: 7a:11:fd:68:47:97:52:1a:d9:1a:cb:1a:99:f7:cc:79:0f:5e: 6b:46:96:59:6f:24:02:11:5f:95:32:f1:35:b5:48:03:71:ab: ec:92:69:e1:6f:7f:66:23:24:44:d4:d5:1b:2c:52:aa:bf:e5: 7c:ea:5b:17:f2:dc:fb:57:9e:2f:93:8a:eb:fb:d9:1c:ea:33: 4e:53:8a:ac:b3:43:28:6f:5a:17:c2:1b:78:65:b9:57:e4:1d: 48:fa:dc:05:74:7f:e3:24:b9:14:ea:af:90:45:42:e5:e8:9a: 0f:c9:9e:22:39:8f:f6:db:83:38:3f:77:a1:c2:65:04:5d:36: ba:81:c2:2a:3d:34:e8:58:74:41:b1:cf:9d:33:54:54:b1:42: e5:91:6e:dc:f6:98:f9:b8:04:2a:42:72:7a:c7:fb:f4:86:69: c8:4f:a8:d2:2c:4c:44:e9:45:7e:56:e1:a6:d8:28:cc:91:f5: 95:71:62:30:fd:2e:e2:f8:f3:93:42:d6:a7:fe:2b:7d:67:fd: 96:1f:de:51:c9:74:df:1d:a4:7c:f8:95:fe:30:9e:0a:d4:88: ca:4a:94:3f:de:26:88:d1:3c:e6:f7:3a:98:e5:2e:af:d4:e6: d6:d4:95:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4MjQxMTAvBgNVBAUTKDYxRTQwMTdBRkY0Nzc2NzEzQ0ZEQzgyMDVDQzJGQjIx Nzg0NjJCQTEwHhcNMjUwODA0MTk1OTAwWhcNMjUwODExMTk1OTAwWjAYMRYwFAYD VQQDEw02ODkxMTEwNC05MDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIDboUgwi42gilM900Zbl6k/6P8jcvMmYQd1VpGhIULBsgTORzIrqb64tIJI JZ/g1Pvc1VjDrjM00NCSc1XnWME/wsZOrkrozKDZbpvRyy56MVO6RFGyh1PWKIG6 wWX/f6gTj6XFMse7cEwgOWH7ovG834aIRbdGJN5QWNcU8S4IDeRMjbPHuGjR+Qyq 8rfNjf6eSx7hO6SsxhnIkaxAgFDVIUwaNfHrtG9gpwxEXDrkLN0DlhPc7isiFSEB UsHI7r1tcOghWBCGy9OitarFgaJnuodosUpT5bwnmevjOY++zVRxE/TG/3JY4a4f FOlRgw25GPcrOAFQni43hAveoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnSsIgn V8usyHTzuYuys9MqolKuMB8GA1UdIwQYMBaAFGHkAXr/R3ZxPP3IIFzC+yF4Riuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTgyNC84QkZGM0JCNDZF N0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRuRThfY2dnWE1MN0lYaEdL NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llUUJldjlIZG5FOF9jZ2dYTUw3SVhoR0s2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTgyNC84QkZGM0JCNDZFN0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRu RThfY2dnWE1MN0lYaEdLNkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoKYpnAWMQnnEHWcIOadeMfcB6Ef1oR5dSGtkayxqZ98x5D15rRpZZ byQCEV+VMvE1tUgDcavskmnhb39mIyRE1NUbLFKqv+V86lsX8tz7V54vk4rr+9kc 6jNOU4qss0Mob1oXwht4ZblX5B1I+twFdH/jJLkU6q+QRULl6JoPyZ4iOY/224M4 P3ehwmUEXTa6gcIqPTToWHRBsc+dM1RUsULlkW7c9pj5uAQqQnJ6x/v0hmnIT6jS LExE6UV+VuGm2CjMkfWVcWIw/S7i+POTQtan/it9Z/2WH95RyXTfHaR8+JX+MJ4K 1IjKSpQ/3iaI0Tzm9zqY5S6v1ObW1JVV -----END CERTIFICATE-----Generated at Wed Aug 6 09:38:04 2025 by rpki-client