$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft File: YC_0-oCgAKxh5tSrL3L72Wph-II.mft (raw, json) Hash identifier: UhxNqJI9Bp80lJpaWYvRpiOaM47SmHEWZYU79k0BHfA= Subject key identifier: 6C:EE:CA:02:D4:7C:5D:5C:33:38:16:22:AC:B9:D8:D0:45:7C:6A:53 Authority key identifier: 60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 Certificate issuer: /CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft Manifest number: 028C Signing time: Mon 11 Aug 2025 01:53:22 +0000 Manifest this update: Mon 11 Aug 2025 01:53:21 +0000 Manifest next update: Mon 18 Aug 2025 01:53:21 +0000 Files and hashes: 1: YC_0-oCgAKxh5tSrL3L72Wph-II.crl (hash: Pp3ZUl/QTUFBygfLiguL4SAZs2YmHJrs69mpGhHs4ww=) 2: 008C0876148311ED856EF438C4F9AE02.roa (hash: TaT1WGLobUSkn2V8H3yXdWE7g83qq/C9PlZR3+C38jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9293, serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Validity Not Before: Aug 11 01:53:21 2025 GMT Not After : Aug 18 01:53:21 2025 GMT Subject: CN=68994d11-efe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:47:15:23:99:d3:4b:a8:b6:80:34:cf:46:b4: c3:9a:37:99:a8:e9:7f:08:b8:4f:61:9e:eb:a1:10: bd:73:77:d6:7a:c6:78:ca:a4:da:10:9f:bc:76:ff: b4:d6:c5:cd:5b:a2:3a:3a:80:a5:8a:c8:5e:45:4f: f7:97:7a:5c:2f:3e:88:be:de:85:24:f0:2d:10:bb: 0f:8b:d8:0c:46:1b:1b:7d:df:d8:cf:54:6f:2d:85: 10:56:96:9a:74:dd:80:a2:28:58:6d:7e:90:36:e6: bf:11:b2:75:56:3b:2c:92:22:6d:b7:85:6d:91:f6: b5:2b:4f:2c:44:11:81:db:e2:e9:7a:b6:74:50:b6: 5e:87:f1:13:91:28:26:2b:15:00:89:c0:5a:3b:da: 6f:b5:44:45:ed:0c:bc:eb:38:7a:ca:9e:9b:dd:47: 61:77:78:00:cc:0e:39:be:e3:3e:df:fa:3b:d0:07: b1:54:73:f8:79:c7:02:7d:47:7d:1c:4e:91:16:74: 8d:9a:4f:b4:9e:42:6a:ac:4e:3f:c4:ee:f3:b4:dd: 64:a4:be:37:ac:76:88:73:05:4e:ec:c6:19:21:e8: e2:f9:01:2e:c1:a3:b1:27:ae:d5:c1:fd:35:6a:f3: 41:aa:bd:a9:a3:60:ec:41:41:2b:bc:07:f0:a6:2a: c6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EE:CA:02:D4:7C:5D:5C:33:38:16:22:AC:B9:D8:D0:45:7C:6A:53 X509v3 Authority Key Identifier: keyid:60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:33:df:21:35:da:b1:49:0f:04:76:a6:dc:e5:50:85:d9:93: ad:32:ee:c4:33:2f:f1:71:1b:3d:7e:26:ba:20:a5:64:55:98: c8:f6:b0:d7:86:33:09:43:34:83:3a:73:2b:b2:76:6f:20:dd: ed:55:8b:c7:5f:ab:a5:88:31:4c:e3:10:e3:6e:7c:8c:d3:3e: 65:97:07:df:5b:1c:c4:15:ef:72:f5:d5:cc:ac:3a:7a:a7:72: 3c:c4:f0:91:89:ae:76:d8:0b:93:10:1f:7e:08:83:5d:35:f8: 2f:74:ea:c6:57:1e:74:05:f9:27:a1:81:6d:75:f3:f9:a3:2a: dc:7c:a1:93:26:4a:05:3b:90:71:96:60:20:58:62:c8:99:4e: 8d:68:2f:d2:6c:d7:70:a4:05:1f:64:c6:b9:1b:bb:af:89:85: 2b:32:78:b5:87:2d:37:ce:cb:f5:63:06:91:f1:33:d5:6e:cb: 86:9b:ac:eb:36:c2:32:60:17:88:df:2f:1c:78:bb:77:c1:2a: e6:1d:65:8f:10:03:25:51:59:79:7a:20:27:c8:b0:8c:57:ab: 7c:a7:1b:de:ba:d1:eb:5e:6f:44:f3:81:ea:f5:ce:18:ba:54: 7f:be:52:82:18:a5:d7:5b:8e:31:f4:9a:a1:d7:cf:a1:54:90: df:1e:27:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOTMxMTAvBgNVBAUTKDYwMkZGNEZBODBBMDAwQUM2MUU2RDRBQjJGNzJGQkQ5 NkE2MUY4ODIwHhcNMjUwODExMDE1MzIxWhcNMjUwODE4MDE1MzIxWjAYMRYwFAYD VQQDEw02ODk5NGQxMS1lZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0cVI5nTS6i2gDTPRrTDmjeZqOl/CLhPYZ7roRC9c3fWesZ4yqTaEJ+8dv+0 1sXNW6I6OoClisheRU/3l3pcLz6Ivt6FJPAtELsPi9gMRhsbfd/Yz1RvLYUQVpaa dN2AoihYbX6QNua/EbJ1VjsskiJtt4Vtkfa1K08sRBGB2+LperZ0ULZeh/ETkSgm KxUAicBaO9pvtURF7Qy86zh6yp6b3Udhd3gAzA45vuM+3/o70AexVHP4eccCfUd9 HE6RFnSNmk+0nkJqrE4/xO7ztN1kpL43rHaIcwVO7MYZIeji+QEuwaOxJ67Vwf01 avNBqr2po2DsQUErvAfwpirGMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzuygLU fF1cMzgWIqy52NBFfGpTMB8GA1UdIwQYMBaAFGAv9PqAoACsYebUqy9y+9lqYfiC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5My9BOUEzOEJCRTE0 N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FLeGg1dFNyTDNMNzJXcGgt SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDXzAtb0NnQUt4aDV0U3JMM0w3MldwaC1JSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5My9BOUEzOEJCRTE0N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FL eGg1dFNyTDNMNzJXcGgtSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdM98hNdqxSQ8Edqbc5VCF2ZOtMu7EMy/xcRs9fia6IKVkVZjI9rDX hjMJQzSDOnMrsnZvIN3tVYvHX6uliDFM4xDjbnyM0z5llwffWxzEFe9y9dXMrDp6 p3I8xPCRia522AuTEB9+CINdNfgvdOrGVx50BfknoYFtdfP5oyrcfKGTJkoFO5Bx lmAgWGLImU6NaC/SbNdwpAUfZMa5G7uviYUrMni1hy03zsv1YwaR8TPVbsuGm6zr NsIyYBeI3y8ceLt3wSrmHWWPEAMlUVl5eiAnyLCMV6t8pxveutHrXm9E84Hq9c4Y ulR/vlKCGKXXW44x9Jqh18+hVJDfHifa -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:05 2025 by rpki-client