$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: 6wAc0+ToB2X2d7UACkFqrA80o8vzKd9RhEt+wJtnIMA= Subject key identifier: AF:E2:8C:D9:FA:3A:FD:56:CA:E8:A0:42:6A:A9:AB:A4:15:27:E9:18 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1A71 Signing time: Fri 18 Jul 2025 16:27:38 +0000 Manifest this update: Fri 18 Jul 2025 16:27:38 +0000 Manifest next update: Fri 25 Jul 2025 16:27:38 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: gb4f3s5QiANfIXXaaw2aj0PB+3U2b8epE55GKBy7Hv0=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6784 (0x1a80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Jul 18 16:27:38 2025 GMT Not After : Jul 25 16:27:38 2025 GMT Subject: CN=687a75fa-a72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:54:10:b5:b3:c1:a3:3f:cd:9c:31:38:13:24: 14:7d:57:ef:34:b2:c2:60:d2:7a:3b:6a:c4:12:e2: 08:28:e4:b9:dc:e6:be:cf:6e:44:65:53:56:6e:2b: 6a:b5:af:a2:27:c7:b3:f5:5c:a0:40:6a:f0:7f:0d: c2:8d:2b:1a:80:dc:34:0b:73:be:c1:00:dd:b3:b9: b0:f4:73:21:30:0e:f4:0f:13:3d:b6:56:de:67:90: 8b:da:75:6a:82:8d:b9:d8:5e:bc:22:15:f7:08:2d: e1:72:ef:96:42:35:87:2d:cd:5c:6a:53:8b:96:e9: f7:67:53:97:9c:47:24:82:bd:5e:63:ad:c5:23:6e: 46:c5:65:69:ae:f0:62:69:db:c8:c5:09:94:18:1f: 5b:c3:b4:1f:b8:72:12:94:81:55:55:fd:41:77:2a: 8a:e9:f7:0c:db:4a:4e:f0:cf:fa:8d:af:bb:ba:bc: a8:f1:18:1b:1a:a0:e3:df:36:e8:22:d1:a7:27:9c: c8:f1:e6:11:e4:b6:dd:20:22:2e:3b:bb:90:11:38: 94:7e:45:45:a3:be:3c:ed:b7:1d:bb:58:56:3b:e1: 55:c1:aa:0e:cd:35:be:9f:e0:ab:a3:af:64:21:87: ee:6e:73:20:08:be:ce:d4:4c:3d:0e:8e:48:23:e8: 42:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E2:8C:D9:FA:3A:FD:56:CA:E8:A0:42:6A:A9:AB:A4:15:27:E9:18 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a9:b5:ac:3f:41:a7:8b:3f:86:c0:e7:b3:bf:f0:58:2e:0f: d5:da:5b:cf:b5:96:b9:f3:60:07:34:df:98:9a:79:a0:93:f2: 8f:3b:12:8f:3f:05:0f:e3:14:d0:7b:65:4a:a2:2b:d1:d6:b1: 42:5f:fe:9a:2e:18:cf:45:0a:7d:00:6b:c3:5b:bd:86:7b:d6: db:52:e2:59:6d:a5:57:3f:0e:b5:11:66:fd:71:66:07:83:f8: 95:42:d5:52:95:f3:e6:d7:af:9e:9d:5b:9b:6f:c9:f6:7a:d3: 54:5c:df:9d:97:6f:11:ab:03:8c:a2:18:a5:46:0d:eb:43:61: 9f:35:aa:c7:72:30:1b:e9:31:b9:65:e0:37:b8:1a:7d:26:73: ac:5b:ce:8f:68:4c:af:83:d6:ec:c4:b2:34:c3:14:b7:f3:c9: 74:5b:05:c8:33:71:a8:1d:ec:3a:7c:dc:33:41:38:fc:8a:56: 7f:f9:12:a7:60:ed:5d:f9:d7:82:e9:cd:c4:f3:6d:bc:22:df: bb:f0:06:dc:6c:a6:ab:bb:22:10:39:e8:26:1b:cd:45:4b:d9: 0e:61:61:f0:42:af:dd:32:cb:23:ba:e0:a6:c5:9b:e1:a2:41: c7:d5:29:ec:4f:ee:30:2d:53:62:cc:56:32:17:f5:87:2f:f0: e9:f6:ae:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwNzE4MTYyNzM4WhcNMjUwNzI1MTYyNzM4WjAYMRYwFAYD VQQDEw02ODdhNzVmYS1hNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFQQtbPBoz/NnDE4EyQUfVfvNLLCYNJ6O2rEEuIIKOS53Oa+z25EZVNWbitq ta+iJ8ez9VygQGrwfw3CjSsagNw0C3O+wQDds7mw9HMhMA70DxM9tlbeZ5CL2nVq go252F68IhX3CC3hcu+WQjWHLc1calOLlun3Z1OXnEckgr1eY63FI25GxWVprvBi advIxQmUGB9bw7QfuHISlIFVVf1BdyqK6fcM20pO8M/6ja+7uryo8RgbGqDj3zbo ItGnJ5zI8eYR5LbdICIuO7uQETiUfkVFo7487bcdu1hWO+FVwaoOzTW+n+Cro69k IYfubnMgCL7O1Ew9Do5II+hCdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/ijNn6 Ov1WyuigQmqpq6QVJ+kYMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFqbWsP0Gniz+GwOezv/BYLg/V2lvPtZa582AHNN+Ymnmgk/KPOxKP PwUP4xTQe2VKoivR1rFCX/6aLhjPRQp9AGvDW72Ge9bbUuJZbaVXPw61EWb9cWYH g/iVQtVSlfPm16+enVubb8n2etNUXN+dl28RqwOMohilRg3rQ2GfNarHcjAb6TG5 ZeA3uBp9JnOsW86PaEyvg9bsxLI0wxS388l0WwXIM3GoHew6fNwzQTj8ilZ/+RKn YO1d+deC6c3E8228It+78AbcbKaruyIQOegmG81FS9kOYWHwQq/dMssjuuCmxZvh okHH1SnsT+4wLVNizFYyF/WHL/Dp9q6F -----END CERTIFICATE-----Generated at Sun Jul 20 07:47:21 2025 by rpki-client