$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: +u4SqsfCNyM1OtxUcse4CQYSU/n/2Ggac1zI0w2YJUQ= Subject key identifier: 00:C6:54:14:D8:EC:E3:11:60:CF:04:92:9B:F2:F9:FD:2F:27:CC:2D Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0C80 Signing time: Tue 22 Jul 2025 18:29:19 +0000 Manifest this update: Tue 22 Jul 2025 18:29:18 +0000 Manifest next update: Tue 29 Jul 2025 18:29:18 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: yPYXBBtsoKynSobVwZ0iFffvvi3eAZ8UvKD87sf4KUU=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B, serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Jul 22 18:29:18 2025 GMT Not After : Jul 29 18:29:18 2025 GMT Subject: CN=687fd87f-2918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:0a:50:fe:0e:9e:6d:b8:a4:17:60:10:bb: f1:d0:97:cc:c0:72:c6:8a:e2:7e:e9:66:37:9d:f5: 03:08:5d:3f:fe:67:e2:0e:80:68:4e:2b:c2:b0:95: 79:9c:82:ae:cb:9c:9b:6e:72:c3:b3:1e:16:3c:f4: 14:95:6d:9a:eb:27:eb:16:b4:13:43:39:2f:0d:59: 1e:e6:61:e6:a8:9e:b9:24:88:91:95:1a:7f:bc:44: 32:cc:6e:d9:0e:e7:aa:c4:d8:c0:b8:97:4a:86:f7: 1b:89:46:e7:d0:2e:f8:e7:16:4b:4f:f2:41:95:2d: 99:b5:1e:20:49:a9:de:ab:86:2a:64:d1:c5:f5:80: 3c:45:39:cd:f8:2c:46:59:1f:a3:63:2d:c7:01:b7: e5:c8:0f:4c:c6:7c:19:82:bc:03:d7:63:5a:95:4b: 8d:35:30:98:59:75:24:93:80:97:e7:ff:6a:6e:83: 69:f4:af:54:a9:51:99:cc:ad:4b:71:70:2c:5d:44: 2a:3f:3b:15:70:40:a0:57:31:ae:17:22:2b:e0:3a: 49:f1:16:41:5a:0e:ec:09:33:97:d4:9b:45:32:15: 00:b0:e2:77:c1:a4:31:07:05:ae:cb:5d:ae:8c:ec: f9:4b:19:6b:c5:6d:75:70:4e:fb:ce:73:3f:83:11: 44:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C6:54:14:D8:EC:E3:11:60:CF:04:92:9B:F2:F9:FD:2F:27:CC:2D X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ba:97:df:ea:88:67:50:68:61:89:1d:b5:fc:13:85:f4:f8: a4:4b:23:df:30:41:d2:44:00:b6:b3:56:19:80:82:e1:03:3e: d8:1d:60:0d:4a:68:49:7d:e1:bd:f0:1c:4f:ef:31:c2:1c:a9: 77:2f:48:8c:69:60:de:cf:cd:20:24:c8:18:ad:cd:86:45:69: fe:2f:32:43:fd:e6:ac:2f:94:61:ef:fb:db:0f:df:26:45:0a: c5:4e:a9:55:bd:da:fa:b4:68:51:2b:51:32:69:4e:70:66:18: a7:83:5b:5a:5f:56:8d:e5:f1:27:4f:82:74:be:34:aa:38:68: 32:72:96:ed:a9:63:0f:29:b3:44:00:80:e7:8c:a8:e2:1e:f0: 5e:cb:03:03:94:ce:26:5e:07:49:64:8f:bf:2c:67:d1:98:c8: ec:32:ec:dd:f3:e0:8b:2a:e3:a8:62:cd:38:32:ac:46:28:1a: c4:4c:0b:29:a5:92:c2:65:a9:31:7f:0c:26:0a:26:c9:60:9f: b8:db:dc:e7:07:ca:23:95:e7:53:14:4a:28:cd:20:23:04:d6: be:d4:a0:43:8a:f4:d1:0e:be:8c:dc:81:d8:c4:cf:33:fa:13: df:f9:ca:dd:f7:d1:47:d4:6c:43:ef:4a:97:ad:44:18:f5:99: a1:dc:f5:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUwNzIyMTgyOTE4WhcNMjUwNzI5MTgyOTE4WjAYMRYwFAYD VQQDEw02ODdmZDg3Zi0yOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJwKUP4Onm24pBdgELvx0JfMwHLGiuJ+6WY3nfUDCF0//mfiDoBoTivCsJV5 nIKuy5ybbnLDsx4WPPQUlW2a6yfrFrQTQzkvDVke5mHmqJ65JIiRlRp/vEQyzG7Z DueqxNjAuJdKhvcbiUbn0C745xZLT/JBlS2ZtR4gSaneq4YqZNHF9YA8RTnN+CxG WR+jYy3HAbflyA9MxnwZgrwD12NalUuNNTCYWXUkk4CX5/9qboNp9K9UqVGZzK1L cXAsXUQqPzsVcECgVzGuFyIr4DpJ8RZBWg7sCTOX1JtFMhUAsOJ3waQxBwWuy12u jOz5SxlrxW11cE77znM/gxFEUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADGVBTY 7OMRYM8Ekpvy+f0vJ8wtMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeupff6ohnUGhhiR21/BOF9PikSyPfMEHSRAC2s1YZgILhAz7YHWAN SmhJfeG98BxP7zHCHKl3L0iMaWDez80gJMgYrc2GRWn+LzJD/easL5Rh7/vbD98m RQrFTqlVvdr6tGhRK1EyaU5wZhing1taX1aN5fEnT4J0vjSqOGgycpbtqWMPKbNE AIDnjKjiHvBeywMDlM4mXgdJZI+/LGfRmMjsMuzd8+CLKuOoYs04MqxGKBrETAsp pZLCZakxfwwmCibJYJ+429znB8ojledTFEoozSAjBNa+1KBDivTRDr6M3IHYxM8z +hPf+crd99FH1GxD70qXrUQY9Zmh3PUV -----END CERTIFICATE-----Generated at Wed Jul 23 12:45:33 2025 by rpki-client