$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: c7PCy570AOTz/ki6EWhZ/6Cn2QLUTJR+lpiLdD8/5ts= Subject key identifier: 6A:BB:F2:24:98:3F:25:7A:A4:24:DE:72:D7:A7:09:F0:B4:07:2A:AA Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 1802 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 17F8 Signing time: Sun 20 Jul 2025 16:34:42 +0000 Manifest this update: Sun 20 Jul 2025 16:34:42 +0000 Manifest next update: Sun 27 Jul 2025 16:34:42 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: QC6AGAOr6Nkc/L+JZAJIkirmXFYVS+Riw8acQydyv28=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: FXxg8JbRyxhX/govLjKDj9hLX7J7czh75q9/plpdJE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6146 (0x1802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Jul 20 16:34:42 2025 GMT Not After : Jul 27 16:34:42 2025 GMT Subject: CN=687d1aa2-a096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b1:1c:75:82:be:04:7f:5f:6e:b9:3a:a5:18: 8e:4d:7d:10:b1:da:4d:1a:eb:61:1e:46:91:55:00: 64:10:90:42:ac:ae:66:89:39:fb:46:76:cf:f4:c8: e7:89:cd:a0:65:72:eb:3e:2a:80:82:e8:22:d8:d9: 76:f4:e8:ff:5b:51:21:27:ac:ac:88:15:a3:91:6e: e5:7e:4e:42:46:25:2b:40:d2:55:33:b9:c7:87:12: 50:89:11:6d:74:5e:9c:2c:9c:3f:60:7c:bf:eb:00: 8a:3a:c5:06:0e:5a:a2:de:a2:b0:96:91:55:63:ef: e8:e0:ab:88:07:b1:a6:71:a1:ed:fd:4d:ba:45:81: fe:01:10:2f:b3:8b:bc:37:72:aa:ce:65:a0:0d:74: 44:16:e5:53:60:ac:4c:39:fd:47:50:b4:1a:ce:d8: f0:5f:dc:1f:3b:01:4f:ab:43:4d:72:2a:2b:62:dc: 10:78:ee:97:36:9d:a9:60:c0:63:dd:66:8f:0d:dd: 54:ea:23:0a:3a:2d:66:73:1c:55:5e:60:b8:30:e3: cf:85:b5:07:36:99:25:f7:9a:46:46:35:e0:b9:e3: e1:ba:5e:e4:63:a9:de:00:32:4f:28:fa:2c:ff:44: d1:e2:0a:47:97:91:ee:39:52:46:c7:d8:d2:02:d5: 70:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BB:F2:24:98:3F:25:7A:A4:24:DE:72:D7:A7:09:F0:B4:07:2A:AA X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:f9:9c:08:e3:a9:2f:8f:5c:27:bb:42:f4:27:0a:51:af:8a: df:6d:1e:d8:e8:bd:f7:2c:00:2b:6b:15:39:6e:2a:03:64:41: 5b:cb:19:bd:4b:9a:2c:72:65:a7:28:b7:99:f2:e7:cc:f3:68: 66:c3:61:0a:7c:0d:b0:09:0e:7f:c2:42:8b:db:17:40:a4:53: f2:6c:9b:29:d6:5b:df:95:c8:c9:a0:53:e8:3f:d1:09:c9:dc: 09:45:4f:53:5c:41:df:4a:1c:9d:3c:55:35:65:f7:10:39:eb: 37:24:18:ca:30:cd:43:2a:04:86:5a:7e:ce:78:1b:a8:61:bc: 52:7f:95:4f:f1:a8:5f:30:9d:00:b4:03:86:ca:22:22:51:71: c1:ab:ce:ea:c8:e4:6e:b5:46:8f:c8:3d:02:82:d0:e6:f1:08: 54:72:f4:99:17:18:70:29:2f:c4:4f:b0:9f:8e:d7:68:db:3a: 7e:7e:8c:2c:5f:77:e6:37:f1:a7:7f:7c:63:20:2c:3d:f8:38: d0:9e:d1:c1:95:ae:c2:29:8a:88:d7:ef:c7:6f:c0:5d:78:a4: 89:c4:33:aa:65:a4:a6:9c:ae:67:3b:5b:b5:21:95:a0:39:c2: c7:1d:ed:04:09:e0:c9:3d:8b:36:72:45:7a:c2:3f:7e:c9:e2: 6c:60:04:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwNzIwMTYzNDQyWhcNMjUwNzI3MTYzNDQyWjAYMRYwFAYD VQQDEw02ODdkMWFhMi1hMDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbEcdYK+BH9fbrk6pRiOTX0QsdpNGuthHkaRVQBkEJBCrK5miTn7RnbP9Mjn ic2gZXLrPiqAgugi2Nl29Oj/W1EhJ6ysiBWjkW7lfk5CRiUrQNJVM7nHhxJQiRFt dF6cLJw/YHy/6wCKOsUGDlqi3qKwlpFVY+/o4KuIB7GmcaHt/U26RYH+ARAvs4u8 N3KqzmWgDXREFuVTYKxMOf1HULQaztjwX9wfOwFPq0NNciorYtwQeO6XNp2pYMBj 3WaPDd1U6iMKOi1mcxxVXmC4MOPPhbUHNpkl95pGRjXguePhul7kY6neADJPKPos /0TR4gpHl5HuOVJGx9jSAtVwhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq78iSY PyV6pCTectenCfC0ByqqMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL+ZwI46kvj1wnu0L0JwpRr4rfbR7Y6L33LAAraxU5bioDZEFbyxm9 S5oscmWnKLeZ8ufM82hmw2EKfA2wCQ5/wkKL2xdApFPybJsp1lvflcjJoFPoP9EJ ydwJRU9TXEHfShydPFU1ZfcQOes3JBjKMM1DKgSGWn7OeBuoYbxSf5VP8ahfMJ0A tAOGyiIiUXHBq87qyORutUaPyD0CgtDm8QhUcvSZFxhwKS/ET7Cfjtdo2zp+fows X3fmN/Gnf3xjICw9+DjQntHBla7CKYqI1+/Hb8BdeKSJxDOqZaSmnK5nO1u1IZWg OcLHHe0ECeDJPYs2ckV6wj9+yeJsYARc -----END CERTIFICATE-----Generated at Mon Jul 21 05:59:01 2025 by rpki-client