$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: siNXTkBITnZXt+itlCM2yYMBuGE+VMHJNUcVFBhlehY= Subject key identifier: CC:76:7E:CF:DF:F0:95:2A:AA:E3:C1:1A:A7:6E:87:E5:2D:7C:F3:7B Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B4F Signing time: Fri 18 Jul 2025 19:19:29 +0000 Manifest this update: Fri 18 Jul 2025 19:19:28 +0000 Manifest next update: Fri 25 Jul 2025 19:19:28 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: znaLUqWyhs598ubOMjgBVIN9ODAC4MZgU0jKo5AoasQ=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Jul 18 19:19:28 2025 GMT Not After : Jul 25 19:19:28 2025 GMT Subject: CN=687a9e41-dc73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:6a:83:9d:b5:93:64:9b:87:9d:c5:f9:28: b1:23:49:e6:73:a9:a7:8b:9f:b3:c2:52:38:c6:6d: 1b:8f:8e:56:7a:ac:2d:bb:0d:58:34:3e:f8:cb:e0: b0:57:b5:2b:fd:99:d2:3b:00:f3:21:ef:16:8f:2c: bb:e1:0b:cb:bd:73:99:3c:72:f3:e7:6f:dd:a3:ae: d2:ce:13:b7:d6:58:ab:4f:98:31:e8:c1:ea:9a:0b: 4d:92:cf:3c:75:0b:ad:7f:04:1c:92:8d:d8:59:83: f0:3b:0c:38:84:9f:ac:91:60:1c:87:bb:b9:e3:5b: 3a:2b:8e:c6:8c:d1:17:f9:62:b5:4b:71:e2:ce:93: 92:aa:9a:de:68:ef:fe:4f:68:07:43:7d:d6:c4:70: 5d:c4:78:8c:9b:c5:41:cb:16:7a:a2:09:2c:19:82: fd:33:5b:86:71:7a:9c:9a:19:0d:a7:f3:8b:4d:b1: b5:f9:48:e8:07:61:f0:0b:07:13:98:6b:76:1a:7d: d7:f5:16:2b:bf:11:ce:e6:70:9f:df:94:e5:89:17: cb:43:17:a3:62:2c:73:c9:78:00:e0:64:b1:62:66: 6e:bd:94:c8:c4:64:77:0c:c7:c1:ca:d3:22:c4:07: 7f:6a:1f:f5:42:c8:53:43:0a:54:b0:48:87:3a:a7: 4c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:76:7E:CF:DF:F0:95:2A:AA:E3:C1:1A:A7:6E:87:E5:2D:7C:F3:7B X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fd:87:5e:9e:a3:9b:eb:b6:ca:be:b5:2d:30:d3:24:76:6d: dc:40:65:c7:a7:c0:48:11:93:22:98:69:a1:c4:7d:dc:52:ca: 50:cb:a2:2c:ef:f9:5a:bc:75:d8:94:2c:2e:30:2f:98:38:28: 64:a8:b8:dc:34:f5:7c:eb:20:3f:70:e5:d0:90:f7:64:86:dd: 22:44:a6:54:90:29:8e:21:92:dd:53:09:9b:47:90:29:36:48: 01:c9:e3:af:77:ba:63:22:05:8b:a1:2a:41:08:cd:e9:82:9b: 88:02:bb:8f:19:2e:86:6c:33:79:b2:9c:2b:8d:a1:35:06:d1: 76:c3:20:c5:a2:3e:46:29:ca:a0:1e:dc:31:67:e4:c6:f7:eb: 26:14:14:77:3c:12:9e:54:42:0f:0f:80:bb:fb:89:8d:e9:80: 89:3d:c9:06:a2:5f:02:55:71:99:92:28:54:c7:97:8b:d8:45: b2:d4:bf:07:6f:3a:2f:70:28:69:09:cc:d4:81:7d:81:25:4d: 54:a5:a5:da:c3:a6:7a:54:6b:ef:34:6e:9e:c9:c3:86:d1:17: 9e:b6:ef:dc:8a:91:d6:e1:c9:3d:33:23:9b:cb:a4:38:c1:9b: 24:7e:69:24:04:2c:66:f7:9e:b7:9e:ab:6b:b4:05:0d:5a:f0: 9e:a0:21:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUwNzE4MTkxOTI4WhcNMjUwNzI1MTkxOTI4WjAYMRYwFAYD VQQDEw02ODdhOWU0MS1kYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKVqg521k2Sbh53F+SixI0nmc6mni5+zwlI4xm0bj45Weqwtuw1YND74y+Cw V7Ur/ZnSOwDzIe8Wjyy74QvLvXOZPHLz52/do67SzhO31lirT5gx6MHqmgtNks88 dQutfwQcko3YWYPwOww4hJ+skWAch7u541s6K47GjNEX+WK1S3HizpOSqpreaO/+ T2gHQ33WxHBdxHiMm8VByxZ6ogksGYL9M1uGcXqcmhkNp/OLTbG1+UjoB2HwCwcT mGt2Gn3X9RYrvxHO5nCf35TliRfLQxejYixzyXgA4GSxYmZuvZTIxGR3DMfBytMi xAd/ah/1QshTQwpUsEiHOqdM1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMx2fs/f 8JUqquPBGqduh+UtfPN7MB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2/YdenqOb67bKvrUtMNMkdm3cQGXHp8BIEZMimGmhxH3cUspQy6Is 7/lavHXYlCwuMC+YOChkqLjcNPV86yA/cOXQkPdkht0iRKZUkCmOIZLdUwmbR5Ap NkgByeOvd7pjIgWLoSpBCM3pgpuIAruPGS6GbDN5spwrjaE1BtF2wyDFoj5GKcqg HtwxZ+TG9+smFBR3PBKeVEIPD4C7+4mN6YCJPckGol8CVXGZkihUx5eL2EWy1L8H bzovcChpCczUgX2BJU1UpaXaw6Z6VGvvNG6eycOG0Reetu/cipHW4ck9MyOby6Q4 wZskfmkkBCxm9563nqtrtAUNWvCeoCFk -----END CERTIFICATE-----Generated at Sun Jul 20 06:18:34 2025 by rpki-client