$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: G+4eUXYAv+xdsfeoh3I17FnJQVLugHXnJY8vhsopbms= Subject key identifier: 68:B2:2B:B8:8A:02:36:1C:F7:7F:34:05:63:21:43:96:68:07:56:65 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 056E Signing time: Fri 18 Jul 2025 23:56:57 +0000 Manifest this update: Fri 18 Jul 2025 23:56:57 +0000 Manifest next update: Fri 25 Jul 2025 23:56:57 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: qiqzeKZESccZFYuWnpYSVRZbTpaJfis2vCPBmd2oPSw=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: Jul 18 23:56:57 2025 GMT Not After : Jul 25 23:56:57 2025 GMT Subject: CN=687adf49-20b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:13:eb:80:e6:e4:ab:bd:69:89:ea:b6:8e: 6e:a1:60:82:b7:2f:78:62:4b:e9:d2:09:55:20:18: e5:c8:b9:37:87:92:91:3f:b2:4e:aa:4b:bf:70:1e: d1:21:b8:d2:84:c0:f2:d1:32:93:9e:ff:39:bc:28: 06:b8:31:27:13:89:11:f9:fa:5b:74:4a:f0:2d:98: 7d:14:7d:fd:0e:09:c5:bc:3e:b0:ec:66:9f:1f:19: 93:7b:ca:ff:21:45:ba:a6:df:dc:5b:57:ff:e2:bb: 2a:d9:20:e9:cc:8a:9f:20:00:be:59:05:ef:00:d2: d0:a1:b3:10:14:b4:e1:58:8f:7a:cc:9d:f0:8a:d1: 56:eb:83:7f:04:6a:0b:b1:de:df:e2:fa:35:c9:4e: 2d:1c:31:2e:84:b2:19:70:5c:10:2f:f9:81:c2:12: 29:5a:15:e2:2e:87:c4:45:bc:60:57:d9:f8:84:8e: 5e:29:13:68:8f:3a:27:7e:c5:c1:f5:b2:f0:f6:17: 61:cb:19:d6:f3:1b:26:71:4d:c9:bb:c9:30:62:fd: e7:2e:66:be:de:b7:71:ed:d9:a3:c8:1c:c9:f3:ab: fc:28:dd:de:2f:ba:71:9e:70:4f:83:7e:5f:55:ca: e7:85:53:cc:86:f7:51:34:33:94:12:39:55:06:5c: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B2:2B:B8:8A:02:36:1C:F7:7F:34:05:63:21:43:96:68:07:56:65 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:96:c3:ce:9e:e2:22:b4:dc:6e:5c:db:1b:f6:68:1a:b3:95: 8c:0c:fe:0b:d3:31:cb:86:df:85:dd:60:e1:11:f2:28:20:9a: 4a:08:30:da:5a:ac:f8:7e:46:6a:29:a1:43:a1:2f:7d:b6:77: 36:fb:b2:f4:8a:1b:04:a2:a7:f4:f0:9a:b1:06:03:b1:80:b1: f1:53:dd:8f:aa:0a:23:5c:6c:72:e5:0a:0f:52:bc:79:cc:cf: 83:c0:ed:b2:e3:48:fc:33:2c:58:41:bb:ec:01:0c:54:c4:86: c7:22:6d:7f:55:e6:14:96:d7:4b:3b:ec:4e:52:16:2d:be:10: 97:11:d3:fd:7c:70:26:dd:ce:cd:a3:26:b1:4c:a4:37:bc:96: 9a:aa:c9:aa:d0:63:0b:1c:18:3f:e1:85:18:9a:46:ee:e3:e4: 37:a8:fe:e5:45:51:d4:d1:e2:30:dd:f8:1e:91:4f:0c:a8:82: dc:72:4e:99:68:43:1a:f2:21:6c:f4:04:e1:44:5a:42:a8:c6: dc:e5:f1:fb:c4:60:c4:63:82:14:48:2f:02:5b:8d:7a:9c:38: 7f:12:46:79:22:ed:99:37:7e:31:66:8d:49:99:0b:1f:fb:47: 68:4e:36:c5:65:d9:53:83:53:ac:fd:81:69:53:f0:5a:60:0d: f3:2e:15:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA3MTgyMzU2NTdaFw0yNTA3MjUyMzU2NTdaMBgxFjAUBgNV BAMTDTY4N2FkZjQ5LTIwYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ1BPrgObkq71pieq2jm6hYIK3L3hiS+nSCVUgGOXIuTeHkpE/sk6qS79wHtEh uNKEwPLRMpOe/zm8KAa4MScTiRH5+lt0SvAtmH0Uff0OCcW8PrDsZp8fGZN7yv8h Rbqm39xbV//iuyrZIOnMip8gAL5ZBe8A0tChsxAUtOFYj3rMnfCK0Vbrg38Eagux 3t/i+jXJTi0cMS6EshlwXBAv+YHCEilaFeIuh8RFvGBX2fiEjl4pE2iPOid+xcH1 svD2F2HLGdbzGyZxTcm7yTBi/ecuZr7et3Ht2aPIHMnzq/wo3d4vunGecE+Dfl9V yueFU8yG91E0M5QSOVUGXCWHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaLIruIoC Nhz3fzQFYyFDlmgHVmUwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADWWw86e4iK03G5c2xv2aBqzlYwM/gvTMcuG34XdYOER8iggmkoIMNpa rPh+RmopoUOhL322dzb7svSKGwSip/TwmrEGA7GAsfFT3Y+qCiNcbHLlCg9SvHnM z4PA7bLjSPwzLFhBu+wBDFTEhscibX9V5hSW10s77E5SFi2+EJcR0/18cCbdzs2j JrFMpDe8lpqqyarQYwscGD/hhRiaRu7j5Deo/uVFUdTR4jDd+B6RTwyogtxyTplo QxryIWz0BOFEWkKoxtzl8fvEYMRjghRILwJbjXqcOH8SRnki7Zk3fjFmjUmZCx/7 R2hONsVl2VODU6z9gWlT8FpgDfMuFd0= -----END CERTIFICATE-----Generated at Sun Jul 20 16:28:16 2025 by rpki-client