$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: pQtU205zS1pC8pZZG7at9uYakaqVUT0u6sgZlXKVI3c= Subject key identifier: CF:F8:DF:47:E3:D7:E4:48:78:0D:6C:6C:B6:E6:A9:9D:B6:69:08:87 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B49 Signing time: Wed 20 Aug 2025 19:13:14 +0000 Manifest this update: Wed 20 Aug 2025 19:13:13 +0000 Manifest next update: Wed 27 Aug 2025 19:13:13 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: 8vA79H7j8t3lGSU1zJJVlSmtQKEMWtXBrdgrMbb15hA=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Aug 20 19:13:13 2025 GMT Not After : Aug 27 19:13:13 2025 GMT Subject: CN=68a61e49-0a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6d:d6:b6:2f:9f:01:99:02:0a:46:38:e5:7e: 27:4c:c7:5a:e9:f6:4b:6d:fb:3b:92:13:91:99:f1: 54:61:27:bb:1a:33:71:06:3b:16:f7:dc:50:cf:07: ab:eb:04:6d:96:5a:61:10:74:2c:78:12:58:d3:2c: 3b:6d:a9:64:4d:ff:84:1b:2b:9c:29:ba:d4:ee:4c: 4c:0c:4b:e1:78:40:8d:61:47:4a:17:a4:be:66:b9: 08:42:fc:a5:26:66:8c:dd:60:22:e0:84:17:1b:5a: 65:a2:bb:09:76:3f:12:32:d6:76:48:41:4c:ff:22: 6f:aa:09:d4:7c:37:7b:5b:c7:8c:85:8c:42:23:1f: 11:31:de:72:a1:8b:da:65:36:3b:07:01:72:d4:5d: 3d:10:d7:be:21:10:6d:5c:be:2e:80:0f:8a:59:57: f2:e7:32:ac:cc:81:f5:ea:8e:a9:59:99:3d:30:a1: fc:23:a6:7a:1d:e9:5b:8c:2b:bc:a9:37:3c:84:10: d0:2e:9c:ee:77:30:99:1a:bc:91:20:5e:bf:e3:4e: 85:62:b2:9e:0e:a4:58:54:f7:f6:f4:e9:c0:73:4a: 0b:77:f9:d8:b6:fd:36:20:8c:51:e5:26:17:16:6e: 25:70:55:3e:2d:76:f6:12:4a:34:0e:d1:aa:9c:5a: 62:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F8:DF:47:E3:D7:E4:48:78:0D:6C:6C:B6:E6:A9:9D:B6:69:08:87 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:15:aa:c6:bd:1a:ba:a0:c5:bc:94:c7:ad:d5:59:07:82:da: 20:d2:d4:ab:0d:4a:d2:e1:a6:2f:a1:04:e4:27:92:50:fa:b4: d9:36:53:a1:da:b1:e4:e1:21:4c:e8:d1:66:60:6c:d2:d2:61: 12:62:ae:18:48:65:68:fe:ca:ba:e9:74:2e:f5:0f:65:f1:67: a0:ec:4e:52:10:0e:e4:fd:1e:81:76:6a:44:f1:8b:56:3f:b0: 6c:83:30:28:ce:f3:fe:3d:f4:98:07:19:ac:3c:a8:cf:ef:75: ff:a6:34:71:e4:af:28:be:17:a1:0b:e7:1e:6e:f8:ab:40:e8: f6:88:19:a2:b8:13:86:36:48:5e:4d:80:7c:46:30:aa:9e:34: 45:ca:73:29:f3:6d:48:96:1b:06:ea:79:f7:e0:24:bc:3f:a6: b6:44:46:58:78:f6:92:3f:88:68:22:b9:ed:b9:7c:63:47:96: d9:a0:9c:03:a4:8d:dc:70:7f:40:5d:46:59:49:df:02:6a:b4: c8:2e:b8:69:2c:b9:bd:3a:f3:27:ed:59:ab:1e:d9:13:90:2c: 96:e3:0f:84:b7:12:5c:cc:94:63:56:ba:8e:cf:db:43:1b:ee: 42:be:fd:05:46:97:c9:4f:c1:c2:6e:73:d5:b4:91:80:6e:40: 2d:09:00:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwODIwMTkxMzEzWhcNMjUwODI3MTkxMzEzWjAYMRYwFAYD VQQDEw02OGE2MWU0OS0wYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW3Wti+fAZkCCkY45X4nTMda6fZLbfs7khORmfFUYSe7GjNxBjsW99xQzwer 6wRtllphEHQseBJY0yw7balkTf+EGyucKbrU7kxMDEvheECNYUdKF6S+ZrkIQvyl JmaM3WAi4IQXG1plorsJdj8SMtZ2SEFM/yJvqgnUfDd7W8eMhYxCIx8RMd5yoYva ZTY7BwFy1F09ENe+IRBtXL4ugA+KWVfy5zKszIH16o6pWZk9MKH8I6Z6HelbjCu8 qTc8hBDQLpzudzCZGryRIF6/406FYrKeDqRYVPf29OnAc0oLd/nYtv02IIxR5SYX Fm4lcFU+LXb2Eko0DtGqnFpi4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/430fj 1+RIeA1sbLbmqZ22aQiHMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FarGvRq6oMW8lMet1VkHgtog0tSrDUrS4aYvoQTkJ5JQ+rTZNlOh 2rHk4SFM6NFmYGzS0mESYq4YSGVo/sq66XQu9Q9l8Weg7E5SEA7k/R6BdmpE8YtW P7BsgzAozvP+PfSYBxmsPKjP73X/pjRx5K8ovhehC+cebvirQOj2iBmiuBOGNkhe TYB8RjCqnjRFynMp821IlhsG6nn34CS8P6a2REZYePaSP4hoIrntuXxjR5bZoJwD pI3ccH9AXUZZSd8CarTILrhpLLm9OvMn7VmrHtkTkCyW4w+EtxJczJRjVrqOz9tD G+5Cvv0FRpfJT8HCbnPVtJGAbkAtCQCa -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:48 2025 by rpki-client