$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: ekSCHazPz66+TG0NX+ibYuNbjej9pLRFq4Gmp8ddCBw= Subject key identifier: 92:47:5A:43:B9:47:78:F8:3B:A1:A2:79:38:F2:B8:27:E9:BD:EA:B5 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01D1 Signing time: Mon 21 Jul 2025 02:53:31 +0000 Manifest this update: Mon 21 Jul 2025 02:53:30 +0000 Manifest next update: Mon 28 Jul 2025 02:53:30 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: VyDM0d8lBctHyz9Oyp5DrfWKC4alMhQpTCg9LLBCjKc=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Jul 21 02:53:30 2025 GMT Not After : Jul 28 02:53:30 2025 GMT Subject: CN=687dabab-2267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6e:6f:2d:ad:83:a9:5e:b7:ec:64:70:db:8d: fb:03:08:57:f3:9c:42:75:4a:24:40:56:ea:1f:28: 14:94:2d:b1:61:58:94:e6:95:44:60:72:47:6e:6a: 88:81:5a:99:12:21:f1:e8:9a:15:e4:8d:d0:db:7a: b9:de:68:4b:fd:71:71:fe:9c:eb:c2:a9:c5:ac:de: 44:2f:54:19:8b:0a:ea:bc:0b:28:26:fb:f5:e7:ad: 4c:1f:f6:73:04:d0:13:e1:1e:8b:7c:06:28:4e:e9: 40:bf:52:78:2f:6e:6f:6d:5f:bf:b2:7c:da:de:da: 50:12:3f:20:9f:03:cf:44:90:05:60:b0:12:0a:35: 2c:c5:12:a3:e6:7f:75:7d:6e:09:9b:fe:9e:d3:20: fc:0a:d1:d4:c1:7b:58:ce:e6:7b:4e:ea:7f:f2:97: 32:b4:65:b4:3f:2f:d3:4e:bf:aa:8b:1c:07:41:89: 31:5b:74:54:ea:7a:17:26:a9:65:77:6e:bf:64:b7: 2b:00:e3:d0:cc:60:29:51:ff:84:18:5e:28:bc:78: 7d:46:cb:98:f0:82:cd:92:e2:dc:e2:1f:67:bc:c4: 66:f5:0d:f1:76:08:44:50:e1:f9:44:5e:7e:05:b1: b8:91:1e:73:20:51:30:2f:17:c4:66:78:78:85:ba: f8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:47:5A:43:B9:47:78:F8:3B:A1:A2:79:38:F2:B8:27:E9:BD:EA:B5 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:dd:71:9e:d7:d8:04:db:8f:66:01:71:31:28:a1:f7:15:8b: 15:36:ba:12:7a:46:67:b7:f2:56:b8:fd:ab:a2:58:8d:47:6b: a7:0a:41:85:63:07:55:74:7a:5c:60:de:81:2a:b1:e4:4e:2f: 78:a5:df:10:ee:09:5b:23:6b:cd:f5:58:70:2e:67:d1:a7:42: 1b:ff:16:65:f7:f5:73:71:18:74:92:53:d5:ef:41:8e:98:06: 14:b4:f2:6d:56:f5:ae:e4:d0:c4:ea:2b:93:f2:b9:31:28:d4: 9f:c3:7b:70:93:65:fb:75:9a:64:2d:1e:10:60:ac:a5:2d:0f: d3:e2:da:ca:f0:c0:c6:7c:4f:a5:3c:52:79:8f:27:73:1f:d3: 7e:73:84:4e:18:45:7b:54:a8:99:84:74:43:be:f6:c7:1c:98: 9b:67:dd:f8:64:2b:2b:f3:c2:12:20:72:2f:4a:05:cc:d3:88: e1:38:85:2b:63:72:ca:cc:d3:94:45:ff:84:05:9e:d9:c2:bb: ca:be:2b:c9:d2:a3:ce:f7:89:41:25:5f:75:32:e6:76:73:cb: e8:dd:7b:f2:61:85:7c:48:fd:3e:32:19:ae:30:53:55:06:c8: 3d:e0:68:37:ea:ef:17:60:37:9e:c7:aa:9a:72:0e:f0:e3:ac: 9f:2f:cb:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwNzIxMDI1MzMwWhcNMjUwNzI4MDI1MzMwWjAYMRYwFAYD VQQDEw02ODdkYWJhYi0yMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm5vLa2DqV637GRw2437AwhX85xCdUokQFbqHygUlC2xYViU5pVEYHJHbmqI gVqZEiHx6JoV5I3Q23q53mhL/XFx/pzrwqnFrN5EL1QZiwrqvAsoJvv1561MH/Zz BNAT4R6LfAYoTulAv1J4L25vbV+/snza3tpQEj8gnwPPRJAFYLASCjUsxRKj5n91 fW4Jm/6e0yD8CtHUwXtYzuZ7Tup/8pcytGW0Py/TTr+qixwHQYkxW3RU6noXJqll d26/ZLcrAOPQzGApUf+EGF4ovHh9RsuY8ILNkuLc4h9nvMRm9Q3xdghEUOH5RF5+ BbG4kR5zIFEwLxfEZnh4hbr4lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJHWkO5 R3j4O6GieTjyuCfpveq1MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI3XGe19gE249mAXExKKH3FYsVNroSekZnt/JWuP2roliNR2unCkGF YwdVdHpcYN6BKrHkTi94pd8Q7glbI2vN9VhwLmfRp0Ib/xZl9/VzcRh0klPV70GO mAYUtPJtVvWu5NDE6iuT8rkxKNSfw3twk2X7dZpkLR4QYKylLQ/T4trK8MDGfE+l PFJ5jydzH9N+c4ROGEV7VKiZhHRDvvbHHJibZ934ZCsr88ISIHIvSgXM04jhOIUr Y3LKzNOURf+EBZ7ZwrvKvivJ0qPO94lBJV91MuZ2c8vo3XvyYYV8SP0+MhmuMFNV Bsg94Gg36u8XYDeex6qacg7w46yfL8uZ -----END CERTIFICATE-----Generated at Mon Jul 21 06:03:18 2025 by rpki-client