$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft File: yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json) Hash identifier: pDjOCxCF6mlVFVmko+J6vB9F9p8ibkC7psqZkJHoeOI= Subject key identifier: 21:69:74:93:3F:E9:B8:C9:06:4D:70:4F:A3:55:75:9C:E7:F5:37:9D Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B Certificate issuer: /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft Manifest number: 01AC Signing time: Wed 23 Jul 2025 03:28:06 +0000 Manifest this update: Wed 23 Jul 2025 03:28:06 +0000 Manifest next update: Wed 30 Jul 2025 03:28:06 +0000 Files and hashes: 1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: ffdu1M0O/nGPI5pIN7BrhR9ExpwHOYxXZfpSHa+UvsI=) 2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Validity Not Before: Jul 23 03:28:06 2025 GMT Not After : Jul 30 03:28:06 2025 GMT Subject: CN=688056c6-6ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:08:71:4a:1c:d4:3f:d6:72:30:00:e5:49:c3: 97:9b:29:57:2a:11:ce:61:22:30:a0:57:56:50:bd: 90:5c:05:5e:5a:de:e3:95:8b:ab:2a:43:46:7a:11: ac:46:79:7a:08:c2:36:05:f6:d3:2c:6c:d2:84:8d: 22:35:5f:8b:62:99:dc:e1:e9:46:41:d7:d5:27:cf: e4:d1:49:d8:2c:4b:ad:e1:ba:ec:77:27:4c:f8:12: 77:28:18:03:29:02:8e:d1:cf:86:43:04:a5:49:b6: fa:33:cd:56:35:72:b1:34:02:29:15:1e:28:46:86: 06:94:a3:75:54:9b:04:10:f1:59:b1:a8:6f:aa:79: ee:ea:dc:06:76:e4:2e:41:8e:d6:e4:cf:f5:6d:1b: aa:4a:35:03:ed:92:14:2e:72:f6:18:74:89:6d:00: 30:57:8f:6a:61:06:c3:5b:22:a2:a3:c7:ae:4a:49: f0:ec:b8:ca:dd:13:83:4e:d2:38:9a:59:6e:05:ec: 42:c7:1b:5a:8f:9d:cf:ef:96:4d:84:01:00:75:3b: 67:c5:d4:3e:aa:9c:28:87:7e:45:cd:8a:4e:3e:25: da:5f:3f:12:1b:4e:d3:06:bd:b9:37:34:42:4b:97: 22:e6:4d:5c:7f:66:a6:44:f6:6b:af:48:48:5a:b1: bd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:69:74:93:3F:E9:B8:C9:06:4D:70:4F:A3:55:75:9C:E7:F5:37:9D X509v3 Authority Key Identifier: keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b3:41:15:4f:c8:5a:ce:24:16:bb:c0:94:26:ec:10:08:43: e3:ec:87:9d:2a:78:3b:15:a8:3e:39:e2:6c:c2:e3:4b:f6:2e: 50:d0:bc:d9:cb:18:d2:a7:3a:1f:66:b2:ae:4c:17:23:03:a3: dc:d8:63:80:e9:14:a0:26:0e:4b:50:0d:fc:54:a7:c5:90:3d: 45:6b:9c:62:42:05:90:95:81:ed:0a:ea:5a:54:c3:8c:46:b1: 66:01:00:03:3b:0e:b9:ce:cf:57:dd:fb:6a:5d:f1:38:d6:fc: 3f:f5:23:01:16:39:ec:18:c5:63:3a:42:27:7e:1c:76:07:0a: 39:3a:8b:eb:af:d1:18:ca:89:e0:14:38:e9:63:6a:bc:f1:a2: d8:af:50:65:df:ec:dd:5f:f0:39:b6:a2:ed:27:6a:e9:2d:c9: c0:ef:a2:14:73:3f:ab:37:88:60:4d:84:37:8f:d3:8d:bb:95: 18:b0:f6:96:63:78:1c:0b:38:28:4c:e3:74:cb:26:ad:ac:14: b6:da:da:65:5e:17:35:7e:9c:4e:61:92:f6:02:db:82:56:4e: a3:51:4a:8c:5d:e4:74:8d:96:5e:0a:be:b9:b7:1c:cc:dc:84: 3a:0f:ac:ad:c1:e5:10:c8:23:5b:7c:b3:41:d7:02:cf:2c:af: 54:0d:f6:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4OTAxMTAvBgNVBAUTKEM4MzkyNDQ1MTU0QTIxMTQ1NzQ2OERDOTI2NzVDNkIy QkM5QzQ0OEIwHhcNMjUwNzIzMDMyODA2WhcNMjUwNzMwMDMyODA2WjAYMRYwFAYD VQQDEw02ODgwNTZjNi02ZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAhxShzUP9ZyMADlScOXmylXKhHOYSIwoFdWUL2QXAVeWt7jlYurKkNGehGs Rnl6CMI2BfbTLGzShI0iNV+LYpnc4elGQdfVJ8/k0UnYLEut4brsdydM+BJ3KBgD KQKO0c+GQwSlSbb6M81WNXKxNAIpFR4oRoYGlKN1VJsEEPFZsahvqnnu6twGduQu QY7W5M/1bRuqSjUD7ZIULnL2GHSJbQAwV49qYQbDWyKio8euSknw7LjK3RODTtI4 mlluBexCxxtaj53P75ZNhAEAdTtnxdQ+qpwoh35FzYpOPiXaXz8SG07TBr25NzRC S5ci5k1cf2amRPZrr0hIWrG95wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFpdJM/ 6bjJBk1wT6NVdZzn9TedMB8GA1UdIwQYMBaAFMg5JEUVSiEUV0aNySZ1xrK8nESL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzg5MC9BREUxMzE4NkRB REYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lSUlhSbzNKSm5YR3NyeWNS SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEa2tSUlZLSVJSWFJvM0pKblhHc3J5Y1JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzg5MC9BREUxMzE4NkRBREYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lS UlhSbzNKSm5YR3NyeWNSSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASs0EVT8haziQWu8CUJuwQCEPj7IedKng7Fag+OeJswuNL9i5Q0LzZ yxjSpzofZrKuTBcjA6Pc2GOA6RSgJg5LUA38VKfFkD1Fa5xiQgWQlYHtCupaVMOM RrFmAQADOw65zs9X3ftqXfE41vw/9SMBFjnsGMVjOkInfhx2Bwo5Oovrr9EYyong FDjpY2q88aLYr1Bl3+zdX/A5tqLtJ2rpLcnA76IUcz+rN4hgTYQ3j9ONu5UYsPaW Y3gcCzgoTON0yyatrBS22tplXhc1fpxOYZL2AtuCVk6jUUqMXeR0jZZeCr65txzM 3IQ6D6ytweUQyCNbfLNB1wLPLK9UDfa5 -----END CERTIFICATE-----Generated at Thu Jul 24 08:21:35 2025 by rpki-client