$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft File: ygziy6mc3g2QJ_zkhk8myRPUGeM.mft (raw, json) Hash identifier: BH1q93CNNNdGzN0Otz2fPkKycQ22Z50ic/Pi9VvqGVY= Subject key identifier: 74:35:40:7E:2B:06:AF:D0:D9:2E:C5:1F:7B:F9:6E:9E:21:93:D1:D9 Authority key identifier: CA:0C:E2:CB:A9:9C:DE:0D:90:27:FC:E4:86:4F:26:C9:13:D4:19:E3 Certificate issuer: /CN=A91B2C43/serialNumber=CA0CE2CBA99CDE0D9027FCE4864F26C913D419E3 Certificate serial: 0B7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft Manifest number: 0B65 Signing time: Tue 22 Jul 2025 19:22:07 +0000 Manifest this update: Tue 22 Jul 2025 19:22:06 +0000 Manifest next update: Tue 29 Jul 2025 19:22:06 +0000 Files and hashes: 1: ygziy6mc3g2QJ_zkhk8myRPUGeM.crl (hash: v5ydLCug+CknTaXrGBzBa/Sj9W6oMw7twB4LLOWLIN4=) 2: AD989788E05511EEADC7D67EC4F9AE02.roa (hash: gKXy2g22Zjp1Hqmn7Qc1nw8xcDNaJidEhFHTK4F7AJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.crl rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2941 (0xb7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C43, serialNumber=CA0CE2CBA99CDE0D9027FCE4864F26C913D419E3 Validity Not Before: Jul 22 19:22:06 2025 GMT Not After : Jul 29 19:22:06 2025 GMT Subject: CN=687fe4de-acc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fd:65:f8:c0:a9:94:df:48:75:3a:3e:59:88: 0e:0e:21:f5:44:15:53:fc:74:66:45:f1:fe:5b:f8: 8c:1b:ce:44:62:74:c9:a8:d0:64:9f:84:4f:6e:6e: 5d:14:35:9e:1d:b3:9b:dd:93:a1:a3:5d:ec:1f:cc: 89:e2:0f:53:b7:87:65:7c:12:08:01:5b:58:5b:87: b7:b3:22:f9:20:7f:57:7b:64:1f:70:d8:44:59:08: aa:13:3a:34:80:6c:b3:97:84:c4:ad:c2:1a:82:17: b3:33:74:a8:84:ec:ad:23:ce:f9:e7:ee:37:2e:05: 42:93:be:75:a9:d3:c9:07:8c:a0:ae:13:2c:ec:01: 2b:d7:92:f5:5a:3d:17:8b:c1:d4:6f:06:f1:91:45: 36:1b:44:e9:5e:a4:0a:dc:cb:e7:5a:49:df:78:52: 3a:09:6f:1e:e8:92:76:a5:c8:b2:54:73:19:36:f8: 94:87:92:6b:cd:a5:f2:e3:35:96:77:46:b8:1e:45: ed:26:af:43:13:a6:6c:06:af:d0:e8:0c:0e:6a:de: 18:68:21:09:94:c3:29:8e:fc:1d:14:70:30:b3:b8: d3:e4:35:c9:ac:17:4c:6a:53:34:81:94:29:8a:f8: 43:ac:a0:59:96:96:23:52:b7:7c:34:bd:08:2a:9e: 86:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:35:40:7E:2B:06:AF:D0:D9:2E:C5:1F:7B:F9:6E:9E:21:93:D1:D9 X509v3 Authority Key Identifier: keyid:CA:0C:E2:CB:A9:9C:DE:0D:90:27:FC:E4:86:4F:26:C9:13:D4:19:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygziy6mc3g2QJ_zkhk8myRPUGeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C43/DC2F546839E411EA96173374C4F9AE02/ygziy6mc3g2QJ_zkhk8myRPUGeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:65:3d:82:e4:25:71:26:dc:53:8e:19:20:35:6e:4b:dc:73: e7:da:61:e1:8a:e9:f0:d0:10:7b:ec:2e:8a:c9:0c:fb:68:6a: 61:c0:1d:df:f0:2d:34:9a:11:a5:20:98:4c:ca:64:48:7c:d8: 4e:c5:d6:bd:c7:3d:37:53:83:1f:16:b2:09:56:dc:59:56:60: 86:75:46:8d:b6:71:f2:91:32:6e:66:c8:44:43:18:ab:1f:7d: 6e:a8:44:d3:07:08:bc:cd:42:7e:b7:e5:f7:b5:5d:3a:b6:b3: 0e:33:16:2d:89:ce:30:0c:f7:d5:3b:56:5b:b2:73:c6:ad:c2: 20:53:31:f4:9a:e8:f2:e0:72:4b:c1:72:6b:8e:c2:95:9b:78: 19:9d:ed:b4:48:12:d9:fa:a0:5f:04:d9:12:00:bd:4e:99:f9: 4d:e9:0f:16:bc:df:62:3e:6c:95:99:30:e9:80:2d:bc:c1:37: 55:8d:82:09:f4:d8:d4:54:f8:e5:7f:ff:1c:56:ec:1a:a8:11: de:63:24:d2:4c:71:bb:b2:55:48:0b:0d:d8:27:3c:6a:bb:73: 40:9e:b8:2b:e4:a4:d7:19:89:dc:89:b9:56:a6:3a:ca:69:da: b1:43:c8:6f:22:50:9b:a0:da:71:92:0b:81:70:6b:94:f0:71: e3:6c:8e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDNDMxMTAvBgNVBAUTKENBMENFMkNCQTk5Q0RFMEQ5MDI3RkNFNDg2NEYyNkM5 MTNENDE5RTMwHhcNMjUwNzIyMTkyMjA2WhcNMjUwNzI5MTkyMjA2WjAYMRYwFAYD VQQDEw02ODdmZTRkZS1hY2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5f1l+MCplN9IdTo+WYgODiH1RBVT/HRmRfH+W/iMG85EYnTJqNBkn4RPbm5d FDWeHbOb3ZOho13sH8yJ4g9Tt4dlfBIIAVtYW4e3syL5IH9Xe2QfcNhEWQiqEzo0 gGyzl4TErcIaghezM3SohOytI8755+43LgVCk751qdPJB4ygrhMs7AEr15L1Wj0X i8HUbwbxkUU2G0TpXqQK3MvnWknfeFI6CW8e6JJ2pciyVHMZNviUh5JrzaXy4zWW d0a4HkXtJq9DE6ZsBq/Q6AwOat4YaCEJlMMpjvwdFHAws7jT5DXJrBdMalM0gZQp ivhDrKBZlpYjUrd8NL0IKp6GhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ1QH4r Bq/Q2S7FH3v5bp4hk9HZMB8GA1UdIwQYMBaAFMoM4supnN4NkCf85IZPJskT1Bnj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM0My9EQzJGNTQ2ODM5 RTQxMUVBOTYxNzMzNzRDNEY5QUUwMi95Z3ppeTZtYzNnMlFKX3praGs4bXlSUFVH ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lneml5Nm1jM2cyUUpfemtoazhteVJQVUdlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM0My9EQzJGNTQ2ODM5RTQxMUVBOTYxNzMzNzRDNEY5QUUwMi95Z3ppeTZtYzNn MlFKX3praGs4bXlSUFVHZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZT2C5CVxJtxTjhkgNW5L3HPn2mHhiunw0BB77C6KyQz7aGphwB3f 8C00mhGlIJhMymRIfNhOxda9xz03U4MfFrIJVtxZVmCGdUaNtnHykTJuZshEQxir H31uqETTBwi8zUJ+t+X3tV06trMOMxYtic4wDPfVO1ZbsnPGrcIgUzH0mujy4HJL wXJrjsKVm3gZne20SBLZ+qBfBNkSAL1OmflN6Q8WvN9iPmyVmTDpgC28wTdVjYIJ 9NjUVPjlf/8cVuwaqBHeYyTSTHG7slVICw3YJzxqu3NAnrgr5KTXGYnciblWpjrK adqxQ8hvIlCboNpxkguBcGuU8HHjbI7P -----END CERTIFICATE-----Generated at Wed Jul 23 02:37:54 2025 by rpki-client