$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: 3mZoRWoBeBDtR42pHui5rjIfzvvdPRh0NAEj/oMbHUA= Subject key identifier: D2:93:B7:52:7A:5F:79:19:50:BA:36:F6:C6:34:A7:43:62:DE:CD:34 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: EE Signing time: Sat 19 Jul 2025 05:31:35 +0000 Manifest this update: Sat 19 Jul 2025 05:31:34 +0000 Manifest next update: Sat 26 Jul 2025 05:31:34 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: t0PxaT6dBeFigYTYFgh6+BNYom2j+jk0bQmi/fyZ5Mk=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Jul 19 05:31:34 2025 GMT Not After : Jul 26 05:31:34 2025 GMT Subject: CN=687b2db7-aef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:96:1b:3b:a8:47:f4:5f:a9:be:0c:cd:53:c0: 97:fa:22:89:b0:71:db:da:3b:5e:73:2c:41:bb:72: 50:e8:6a:78:e1:46:70:38:b7:7d:ef:8b:7e:94:9a: 9c:71:bd:0b:7b:80:dd:ba:13:c9:a3:4d:94:d3:d2: 59:ad:bc:9d:3b:18:20:91:b7:ca:f5:75:58:1e:ba: 11:41:b1:b7:d6:39:3e:f3:50:cb:3d:f4:c8:d7:20: d7:27:f1:c0:71:b0:5a:56:6c:67:cc:b2:08:f6:9e: 5a:20:9f:aa:02:2b:0f:0b:90:d9:33:68:50:9a:d2: 9e:b1:b7:9d:86:35:53:9f:98:2e:ba:a6:9f:14:ef: b9:bd:3e:12:21:42:2c:d5:a0:58:0d:aa:c9:41:d6: af:b2:7e:48:9d:a7:08:d5:58:a6:18:fe:54:7b:02: a1:bf:7e:28:33:5e:b6:00:d5:4f:90:19:ca:99:ed: e3:f2:7f:c0:dc:82:95:e4:fe:19:77:a9:ef:29:2e: 81:de:0e:8c:de:d4:ce:70:f8:12:04:2b:cf:f6:ec: b0:de:ad:79:38:81:94:3e:a0:ad:2a:eb:12:4a:70: 0e:75:82:5f:23:24:04:7f:22:70:3e:05:65:a5:c7: 04:53:e5:91:3e:31:d6:2a:02:06:8f:9c:4e:37:31: c0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:93:B7:52:7A:5F:79:19:50:BA:36:F6:C6:34:A7:43:62:DE:CD:34 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:23:d0:1b:42:b8:6b:1f:e1:89:56:50:e7:81:69:b3:ef:6e: 7a:0b:c1:b5:37:1a:c0:19:39:40:ef:67:84:54:6f:5f:e6:9e: e8:79:d7:50:26:8a:5f:a7:3f:00:62:a8:94:0e:c1:85:c0:00: 72:04:59:7d:24:bc:66:f0:a0:13:a1:4a:8f:d7:23:a2:98:35: b0:67:24:df:59:c5:0f:a0:cb:47:ed:69:f4:87:02:b7:e5:f0: b9:c9:ba:45:8f:65:54:81:54:30:3e:5e:7b:b4:e8:98:90:d1: d4:82:92:a9:49:2f:25:ff:96:db:ca:1b:5f:01:9a:e0:e8:7c: 8f:bc:30:8d:f9:e2:1c:27:8a:d4:53:3c:1d:09:53:43:36:9b: fa:21:64:fd:e2:6f:0e:15:bd:fd:28:7c:00:0f:ba:7c:ce:48: 32:a6:69:13:ff:e3:d5:53:dd:30:0b:6a:6d:33:4d:84:3f:0c: f3:c6:a9:04:44:49:0f:73:31:73:47:10:47:f7:48:f7:26:6a: b9:15:d2:8e:3c:f2:db:1b:c1:e6:e7:e7:1b:5e:1c:13:8e:d1: eb:7b:cd:35:7b:82:92:ee:d8:16:19:c5:96:64:9b:d8:b8:f7: 59:91:36:f4:09:37:0c:b9:16:f0:e6:33:b3:df:af:43:be:86: 38:09:15:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwNzE5MDUzMTM0WhcNMjUwNzI2MDUzMTM0WjAYMRYwFAYD VQQDEw02ODdiMmRiNy1hZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JYbO6hH9F+pvgzNU8CX+iKJsHHb2jtecyxBu3JQ6Gp44UZwOLd974t+lJqc cb0Le4DduhPJo02U09JZrbydOxggkbfK9XVYHroRQbG31jk+81DLPfTI1yDXJ/HA cbBaVmxnzLII9p5aIJ+qAisPC5DZM2hQmtKesbedhjVTn5guuqafFO+5vT4SIUIs 1aBYDarJQdavsn5InacI1VimGP5UewKhv34oM162ANVPkBnKme3j8n/A3IKV5P4Z d6nvKS6B3g6M3tTOcPgSBCvP9uyw3q15OIGUPqCtKusSSnAOdYJfIyQEfyJwPgVl pccEU+WRPjHWKgIGj5xONzHA5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKTt1J6 X3kZULo29sY0p0Ni3s00MB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQI9AbQrhrH+GJVlDngWmz7256C8G1NxrAGTlA72eEVG9f5p7oeddQ Jopfpz8AYqiUDsGFwAByBFl9JLxm8KAToUqP1yOimDWwZyTfWcUPoMtH7Wn0hwK3 5fC5ybpFj2VUgVQwPl57tOiYkNHUgpKpSS8l/5bbyhtfAZrg6HyPvDCN+eIcJ4rU UzwdCVNDNpv6IWT94m8OFb39KHwAD7p8zkgypmkT/+PVU90wC2ptM02EPwzzxqkE REkPczFzRxBH90j3Jmq5FdKOPPLbG8Hm5+cbXhwTjtHre801e4KS7tgWGcWWZJvY uPdZkTb0CTcMuRbw5jOz369DvoY4CRV1 -----END CERTIFICATE-----Generated at Sun Jul 20 07:37:27 2025 by rpki-client