$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: B0BWitPQKWRlx1u/pNjkUHuNWnEA+BDMd9cqtAnn+u0= Subject key identifier: BD:D8:04:39:7F:D2:EE:CF:B1:6D:F3:15:20:FF:9E:08:B0:91:20:D8 Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 01E5 Signing time: Sat 19 Jul 2025 02:49:08 +0000 Manifest this update: Sat 19 Jul 2025 02:49:07 +0000 Manifest next update: Sat 26 Jul 2025 02:49:07 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: y+SKgFl3OEH/UYlgRrE0tYngN3mSmRfZ7RvYcn2WTN4=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Jul 19 02:49:07 2025 GMT Not After : Jul 26 02:49:07 2025 GMT Subject: CN=687b07a4-4070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d7:51:eb:c8:11:8d:71:1c:af:35:f4:ce:7e: 25:e7:c9:d0:76:0d:96:2d:6d:30:97:20:d6:b3:8d: 0e:d6:d5:06:be:4e:2c:4d:18:d3:e2:d1:c8:2f:29: d6:94:3b:ce:b8:de:90:09:8e:35:ab:e4:97:d6:a9: d3:1b:e4:41:ed:b0:79:40:41:8c:28:e7:8b:fe:59: c3:e2:39:80:6b:e6:79:69:30:cf:b2:22:09:e8:2f: e0:71:ee:06:b5:81:bb:89:1a:10:41:9f:ff:4c:ed: b1:68:53:81:f7:54:f9:58:99:a2:03:68:1b:dd:66: a7:5c:52:d0:1e:e5:05:73:8c:41:ac:58:82:33:42: 0c:f7:80:17:4b:2a:01:7b:87:19:a1:a0:13:0e:49: a6:c3:46:f9:e1:68:3d:6e:76:c4:b2:19:c6:08:69: b6:fc:fb:63:9b:e7:25:07:54:f5:96:08:03:aa:45: 18:e6:25:91:4a:f4:a7:b0:f6:9d:a4:bd:28:28:99: 5d:60:cf:b0:c2:4e:40:55:08:7d:57:3d:44:95:d0: 0e:96:68:23:35:cc:09:a2:5c:25:8e:25:09:c9:6c: b8:67:d2:8a:56:a2:37:19:0d:09:9b:12:cc:a2:70: 04:a7:28:89:6b:b4:8d:14:73:1f:ed:50:b9:16:b3: 96:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D8:04:39:7F:D2:EE:CF:B1:6D:F3:15:20:FF:9E:08:B0:91:20:D8 X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e4:fd:7d:9d:72:6e:e0:14:7e:c1:41:39:6f:0b:50:d3:39: 25:a4:e6:6e:90:f2:f5:a6:25:d5:a1:f5:50:82:3b:fd:0a:0a: a2:2a:cf:49:ec:3c:0d:f9:56:bf:76:a9:f6:97:62:e0:2a:fc: 72:07:01:b8:ab:3c:1d:7a:e6:e9:38:39:43:a2:8b:70:42:55: c0:74:d8:24:ff:0b:ee:cc:36:d2:d4:a7:f6:f6:8b:62:55:5c: 7c:2e:bf:61:55:82:ae:da:11:cb:5c:29:24:2e:8c:44:55:e8: 8a:36:5b:d4:bd:ec:38:90:57:e6:77:dc:e3:ea:af:2a:8a:b6: d6:48:af:38:0c:83:be:8e:92:7c:74:44:0a:68:9b:10:3a:97: d3:00:b0:36:ec:ed:83:95:ed:f7:d1:ed:e9:18:62:1c:c9:4e: 80:f7:73:dc:44:07:d0:f4:76:30:6e:45:de:f1:e6:74:a0:87: 09:f7:77:7c:9c:f8:de:47:17:85:75:af:b2:46:a3:98:1c:b9: 0d:1e:53:3e:9d:7c:c6:fd:8f:f5:2f:1a:24:53:92:d3:7b:f3: 5d:09:6b:df:b4:a3:a4:d4:b1:09:48:8a:d7:72:9e:ce:13:bd: 97:46:92:9a:b4:8f:ad:0a:0a:26:19:40:88:55:ed:be:90:70: 26:5d:e5:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUwNzE5MDI0OTA3WhcNMjUwNzI2MDI0OTA3WjAYMRYwFAYD VQQDEw02ODdiMDdhNC00MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9dR68gRjXEcrzX0zn4l58nQdg2WLW0wlyDWs40O1tUGvk4sTRjT4tHILynW lDvOuN6QCY41q+SX1qnTG+RB7bB5QEGMKOeL/lnD4jmAa+Z5aTDPsiIJ6C/gce4G tYG7iRoQQZ//TO2xaFOB91T5WJmiA2gb3WanXFLQHuUFc4xBrFiCM0IM94AXSyoB e4cZoaATDkmmw0b54Wg9bnbEshnGCGm2/Ptjm+clB1T1lggDqkUY5iWRSvSnsPad pL0oKJldYM+wwk5AVQh9Vz1EldAOlmgjNcwJolwljiUJyWy4Z9KKVqI3GQ0JmxLM onAEpyiJa7SNFHMf7VC5FrOWIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3YBDl/ 0u7PsW3zFSD/ngiwkSDYMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu5P19nXJu4BR+wUE5bwtQ0zklpOZukPL1piXVofVQgjv9CgqiKs9J 7DwN+Va/dqn2l2LgKvxyBwG4qzwdeubpODlDootwQlXAdNgk/wvuzDbS1Kf29oti VVx8Lr9hVYKu2hHLXCkkLoxEVeiKNlvUvew4kFfmd9zj6q8qirbWSK84DIO+jpJ8 dEQKaJsQOpfTALA27O2Dle330e3pGGIcyU6A93PcRAfQ9HYwbkXe8eZ0oIcJ93d8 nPjeRxeFda+yRqOYHLkNHlM+nXzG/Y/1LxokU5LTe/NdCWvftKOk1LEJSIrXcp7O E72XRpKatI+tCgomGUCIVe2+kHAmXeUB -----END CERTIFICATE-----Generated at Sun Jul 20 14:28:24 2025 by rpki-client