$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: fYM+507FD6io7NAHOdtMoLU8cmGA96+9llyXv2jEa5A= Subject key identifier: 0E:FA:17:9E:BF:13:21:BF:FD:93:CF:58:22:A2:C5:87:1D:04:B7:E3 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A25 Signing time: Fri 18 Jul 2025 20:00:18 +0000 Manifest this update: Fri 18 Jul 2025 20:00:18 +0000 Manifest next update: Fri 25 Jul 2025 20:00:17 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: e3BQoRqcs0NIP3nTA295nbw5fgC6IEpABuVTpAkYxyA=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: J08fSBQhOSJHGBUH4shmEQXwYqWcb08yob4lFysSojI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2610 (0xa32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Jul 18 20:00:18 2025 GMT Not After : Jul 25 20:00:17 2025 GMT Subject: CN=687aa7d2-2737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:f5:b2:09:27:48:9e:b2:ad:0b:a8:09:6f: 19:2e:de:61:a9:15:f3:e4:f1:ee:03:38:ba:2e:30: f3:76:8b:09:0e:66:10:d9:9e:b3:f7:09:53:4b:1d: 25:b4:9b:08:61:fb:71:84:4a:b6:f3:ae:68:a1:b5: f6:33:14:f7:e5:75:de:cb:e3:85:6b:8b:ce:fd:2b: 0a:ec:f4:2f:30:71:89:49:a5:ab:d4:37:1b:f3:53: 1f:51:6e:0b:ec:17:93:6a:9c:d4:10:e3:fd:11:d3: 27:56:e5:60:90:b9:55:20:7c:82:4c:88:61:55:e1: 9e:77:80:c8:03:a2:61:0f:52:ee:88:8d:fd:7c:72: 88:c7:d0:ee:0a:48:a2:7c:01:aa:0f:46:1a:40:20: 1e:fa:25:48:5a:e1:18:e3:47:ae:e2:57:73:a1:04: 01:90:97:e9:b1:35:d2:80:a9:a4:84:3d:53:f8:21: ed:79:c3:1e:fc:f5:42:00:a6:69:e8:7f:bf:81:2e: c1:34:9b:2e:0d:5d:dc:60:ba:54:6f:70:3f:0d:ea: bc:8b:62:94:21:03:f3:a5:13:8e:db:26:c9:f6:de: 90:52:2a:34:b6:29:10:5b:13:55:26:01:f6:ab:75: 8c:ad:03:a5:b6:bf:e7:07:78:6d:5b:80:9a:68:aa: d6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FA:17:9E:BF:13:21:BF:FD:93:CF:58:22:A2:C5:87:1D:04:B7:E3 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ba:c7:f6:53:1e:62:d8:26:d9:42:3a:89:47:b2:92:57:e5: d1:d3:7b:b9:28:af:9e:55:1f:ff:77:1c:16:63:89:73:9c:53: a2:4b:b8:0e:a5:9b:3e:06:ad:7b:28:6f:61:d7:43:44:be:ec: 0b:c8:b5:f0:8f:3b:45:35:95:96:7e:fe:e5:b2:78:42:0b:6b: db:fc:03:3a:62:ea:17:3f:bd:85:cc:d6:37:9e:c6:d7:ee:1f: 50:8c:d5:54:0c:aa:9a:23:a3:6d:ae:65:24:a2:e5:5c:e7:a9: 5d:c8:5d:6c:2b:30:d1:bd:59:4e:48:8f:a5:e8:4e:ea:a0:7d: 7a:db:d3:79:39:2d:e6:d8:7c:6b:ec:e7:47:c4:00:61:cc:f6: 23:c8:bb:69:eb:e2:61:96:5d:ad:5e:09:5c:80:46:32:fc:3b: 05:cc:df:0f:d5:3f:6d:09:c0:11:06:22:ec:04:e1:68:81:3a: f3:f7:8a:45:bc:08:3c:cf:63:d8:e5:5a:a1:e2:c6:87:df:a2: 69:26:79:75:a2:1c:8d:fa:80:04:8b:f5:c9:89:10:81:e7:23: 8f:48:21:1c:0d:0e:19:b7:66:fb:67:70:eb:67:c8:ef:76:c3: 6d:aa:58:35:c1:2e:18:a8:3b:68:8a:cd:91:b5:00:8c:4d:30: 3d:4b:3c:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUwNzE4MjAwMDE4WhcNMjUwNzI1MjAwMDE3WjAYMRYwFAYD VQQDEw02ODdhYTdkMi0yNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx131sgknSJ6yrQuoCW8ZLt5hqRXz5PHuAzi6LjDzdosJDmYQ2Z6z9wlTSx0l tJsIYftxhEq2865oobX2MxT35XXey+OFa4vO/SsK7PQvMHGJSaWr1Dcb81MfUW4L 7BeTapzUEOP9EdMnVuVgkLlVIHyCTIhhVeGed4DIA6JhD1LuiI39fHKIx9DuCkii fAGqD0YaQCAe+iVIWuEY40eu4ldzoQQBkJfpsTXSgKmkhD1T+CHtecMe/PVCAKZp 6H+/gS7BNJsuDV3cYLpUb3A/Deq8i2KUIQPzpROO2ybJ9t6QUio0tikQWxNVJgH2 q3WMrQOltr/nB3htW4CaaKrWwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA76F56/ EyG//ZPPWCKixYcdBLfjMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAousf2Ux5i2CbZQjqJR7KSV+XR03u5KK+eVR//dxwWY4lznFOiS7gO pZs+Bq17KG9h10NEvuwLyLXwjztFNZWWfv7lsnhCC2vb/AM6YuoXP72FzNY3nsbX 7h9QjNVUDKqaI6NtrmUkouVc56ldyF1sKzDRvVlOSI+l6E7qoH1629N5OS3m2Hxr 7OdHxABhzPYjyLtp6+Jhll2tXglcgEYy/DsFzN8P1T9tCcARBiLsBOFogTrz94pF vAg8z2PY5Vqh4saH36JpJnl1ohyN+oAEi/XJiRCB5yOPSCEcDQ4Zt2b7Z3DrZ8jv dsNtqlg1wS4YqDtois2RtQCMTTA9Szyd -----END CERTIFICATE-----Generated at Sun Jul 20 03:31:58 2025 by rpki-client