$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft File: yDkkRRVKIRRXRo3JJnXGsrycRIs.mft (raw, json) Hash identifier: HxN7zbY0f2VIZ5eGzCtqJkgB8NOi+rAN5hIzYTq5tzY= Subject key identifier: 40:DA:F1:27:EE:B7:D2:C7:5E:12:55:1D:62:4E:80:96:D5:7D:E5:8E Authority key identifier: C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B Certificate issuer: /CN=A91A7890/serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft Manifest number: 01AB Signing time: Mon 21 Jul 2025 03:18:27 +0000 Manifest this update: Mon 21 Jul 2025 03:18:27 +0000 Manifest next update: Mon 28 Jul 2025 03:18:27 +0000 Files and hashes: 1: yDkkRRVKIRRXRo3JJnXGsrycRIs.crl (hash: lQCXs91u1292It83zNXCVpwmqJBk00kPT/SPlbBlw78=) 2: EC8CA72CDAE311EDA0A6B03DC4F9AE02.roa (hash: F7qGiUSXmfTHkG4rLsiz9f3fhRuXMOAIShVR1Seg7DE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7890, serialNumber=C8392445154A211457468DC92675C6B2BC9C448B Validity Not Before: Jul 21 03:18:27 2025 GMT Not After : Jul 28 03:18:27 2025 GMT Subject: CN=687db183-33e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:2f:be:e9:13:d8:cc:bb:75:55:50:b3:14: ac:88:3f:b7:e9:e9:6f:e9:2c:af:60:c9:da:2d:86: ed:6b:94:c7:a4:e8:c1:1b:70:01:f0:b6:8f:83:d4: 27:26:81:f3:ad:1b:d8:94:1d:d2:4f:34:e9:ff:31: 37:68:86:0c:13:31:47:6c:d5:b3:c6:b9:85:d0:cf: b5:03:20:cb:95:49:cf:ae:25:9f:07:50:45:6b:c6: 88:7b:29:9a:ca:db:a3:15:26:70:d3:93:bf:c0:a9: c4:52:ba:aa:f6:d6:9a:3f:7a:6b:63:e4:40:61:d7: d3:8d:8b:cf:66:ec:34:9d:0f:9f:3f:f6:38:c7:17: 16:47:b3:35:d6:37:1a:c9:1f:71:6d:46:58:47:5c: bb:3f:74:07:96:92:57:1e:54:be:50:fd:a5:2b:04: 4f:c4:99:37:5d:12:97:4c:7e:f4:85:55:a9:e0:f7: aa:d1:a0:02:c2:f5:d3:15:a9:e8:24:ed:3c:ba:7c: 9f:b1:52:0a:19:7e:7d:11:f5:ed:76:8e:c1:5b:c4: 30:0f:c0:c1:2a:f4:99:84:ff:31:94:67:88:16:05: c0:95:94:a6:24:e7:b3:63:86:9e:b0:f6:ef:73:2c: fc:5c:b4:70:cd:3c:25:eb:e0:6c:19:d0:95:89:72: 62:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DA:F1:27:EE:B7:D2:C7:5E:12:55:1D:62:4E:80:96:D5:7D:E5:8E X509v3 Authority Key Identifier: keyid:C8:39:24:45:15:4A:21:14:57:46:8D:C9:26:75:C6:B2:BC:9C:44:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDkkRRVKIRRXRo3JJnXGsrycRIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7890/ADE13186DADF11EDB1F9D719C4F9AE02/yDkkRRVKIRRXRo3JJnXGsrycRIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:bd:d6:cd:e8:f5:dc:c4:35:13:c0:18:c9:ee:a4:37:de:0a: 12:b0:2a:8d:78:36:62:13:1d:b8:01:40:6f:14:9c:d3:1f:b4: 89:33:20:9e:2e:1e:e8:f6:73:d5:75:d4:98:80:97:d1:9d:3c: 69:20:6c:12:44:09:bf:66:93:21:81:d3:28:92:3d:26:7d:4d: ab:a7:0c:ae:a5:e8:5c:5a:05:6c:14:50:54:f6:a3:8b:ae:55: 5c:f8:9e:a4:09:3e:7a:09:35:30:03:10:92:f7:33:6a:2c:23: 6f:97:df:2b:2f:a5:28:35:3f:2d:58:95:fa:11:9f:86:53:43: d2:0f:e6:28:97:85:80:9a:4f:39:fa:20:da:0b:2d:38:87:e7: d4:47:b5:c0:7c:1e:47:37:45:28:b4:4c:4d:d3:d9:ea:aa:3c: e3:f0:bd:86:f2:3a:eb:1c:42:5e:eb:47:59:02:63:d9:99:41: f9:b0:1d:d9:20:ce:b6:c4:11:06:ae:c1:b5:61:fc:a2:fa:87: 44:4b:e2:c3:d7:a3:06:d9:c3:95:eb:57:0c:a1:1b:31:88:e5: a6:50:a5:03:1f:5f:72:fc:37:87:73:d4:89:8a:0c:79:df:40: c1:de:ea:12:79:3a:28:a7:9c:a7:5d:0d:79:63:57:60:b6:45: e4:a9:0c:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4OTAxMTAvBgNVBAUTKEM4MzkyNDQ1MTU0QTIxMTQ1NzQ2OERDOTI2NzVDNkIy QkM5QzQ0OEIwHhcNMjUwNzIxMDMxODI3WhcNMjUwNzI4MDMxODI3WjAYMRYwFAYD VQQDEw02ODdkYjE4My0zM2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/4vvukT2My7dVVQsxSsiD+36elv6SyvYMnaLYbta5THpOjBG3AB8LaPg9Qn JoHzrRvYlB3STzTp/zE3aIYMEzFHbNWzxrmF0M+1AyDLlUnPriWfB1BFa8aIeyma ytujFSZw05O/wKnEUrqq9taaP3prY+RAYdfTjYvPZuw0nQ+fP/Y4xxcWR7M11jca yR9xbUZYR1y7P3QHlpJXHlS+UP2lKwRPxJk3XRKXTH70hVWp4Peq0aACwvXTFano JO08unyfsVIKGX59EfXtdo7BW8QwD8DBKvSZhP8xlGeIFgXAlZSmJOezY4aesPbv cyz8XLRwzTwl6+BsGdCViXJiswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDa8Sfu t9LHXhJVHWJOgJbVfeWOMB8GA1UdIwQYMBaAFMg5JEUVSiEUV0aNySZ1xrK8nESL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzg5MC9BREUxMzE4NkRB REYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lSUlhSbzNKSm5YR3NyeWNS SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEa2tSUlZLSVJSWFJvM0pKblhHc3J5Y1JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzg5MC9BREUxMzE4NkRBREYxMUVEQjFGOUQ3MTlDNEY5QUUwMi95RGtrUlJWS0lS UlhSbzNKSm5YR3NyeWNSSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVvdbN6PXcxDUTwBjJ7qQ33goSsCqNeDZiEx24AUBvFJzTH7SJMyCe Lh7o9nPVddSYgJfRnTxpIGwSRAm/ZpMhgdMokj0mfU2rpwyupehcWgVsFFBU9qOL rlVc+J6kCT56CTUwAxCS9zNqLCNvl98rL6UoNT8tWJX6EZ+GU0PSD+Yol4WAmk85 +iDaCy04h+fUR7XAfB5HN0UotExN09nqqjzj8L2G8jrrHEJe60dZAmPZmUH5sB3Z IM62xBEGrsG1Yfyi+odES+LD16MG2cOV61cMoRsxiOWmUKUDH19y/DeHc9SJigx5 30DB3uoSeToop5ynXQ15Y1dgtkXkqQye -----END CERTIFICATE-----Generated at Tue Jul 22 20:09:57 2025 by rpki-client