$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: EXNgZr8ah7Si/yHk0Pa22Zl4b2JXGjjoLbYE+hd1gD8= Subject key identifier: 54:D1:89:44:95:4A:6D:FD:2A:C2:B3:E6:25:E0:B7:93:40:69:57:69 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01B8 Signing time: Sun 07 Sep 2025 03:24:40 +0000 Manifest this update: Sun 07 Sep 2025 03:24:40 +0000 Manifest next update: Sun 14 Sep 2025 03:24:40 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: 4A7Y6Jy1C+gDfRMLdI3uEQC4W5F4GPzsEvDGXMuxr3s=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Sep 7 03:24:40 2025 GMT Not After : Sep 14 03:24:40 2025 GMT Subject: CN=68bcfaf8-7721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:62:36:aa:bb:8e:b5:7b:9e:52:96:3b:f9:f7: 5a:52:5a:e7:38:c3:7e:1e:20:97:30:5e:db:6c:f1: c4:5a:c0:26:3d:6c:71:ae:5f:55:c5:0e:1e:48:7c: de:7c:20:b2:37:46:ef:0e:2b:e8:88:0b:4f:fe:da: 04:66:38:e8:73:a0:c7:ce:4a:11:01:b0:70:57:04: 27:1d:86:1e:2c:2e:b9:38:2b:d5:ca:c6:2c:ad:61: 91:e9:db:a1:2d:f0:47:ba:29:cb:e3:69:0b:e4:7e: c3:77:23:08:8f:ba:86:7b:ec:99:99:62:d5:af:9a: 22:fa:40:f4:85:92:12:1c:97:3b:ed:fd:ca:27:41: 0b:39:81:a1:67:5f:91:6b:a2:72:f0:a0:93:82:0e: f9:e9:3d:56:7c:b2:03:75:28:1e:ab:ac:7e:9f:b9: 46:fc:31:72:91:cb:a6:ae:be:a6:95:71:9c:ce:4c: e1:4a:1b:d1:e8:22:59:74:4a:c4:60:b9:74:2c:85: af:4e:9f:0b:6a:e9:1f:13:d5:2e:1d:06:c3:08:f1: 1a:78:9e:c7:3e:e6:29:e4:74:0f:e9:cb:29:34:02: 01:a0:f5:fb:62:79:c0:f4:71:41:0b:b3:84:93:80: fc:bc:d2:8a:08:f4:63:07:7b:57:6d:27:3c:12:86: a0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D1:89:44:95:4A:6D:FD:2A:C2:B3:E6:25:E0:B7:93:40:69:57:69 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:4e:c7:d5:68:63:bf:4a:0e:4d:2e:69:7f:70:28:00:8a:25: 25:7d:a1:d2:b9:90:98:b0:97:7b:dd:83:fa:0c:f3:7f:2a:c5: 8b:d0:27:06:bc:50:76:6d:63:3a:6a:f4:05:f4:39:e1:71:ad: b4:53:27:ff:b5:5a:ee:9f:c8:29:93:10:f2:38:ec:a4:78:7d: 7e:a1:14:ba:90:e6:ac:15:0f:d6:f7:81:97:ea:28:0b:aa:92: f7:68:5b:bb:4f:89:9a:88:4b:43:4d:06:c3:b3:f9:f2:9d:7c: 69:58:1d:6c:86:81:64:65:c0:af:58:4b:74:5a:d0:7b:64:95: 6f:8e:22:2a:a2:f1:91:0c:d8:33:fc:fe:48:eb:80:8b:48:b4: 02:65:11:d9:9d:37:f6:02:28:8c:d6:19:14:5c:97:a2:be:10: e9:c0:c6:65:f8:e8:54:25:70:9d:e8:f4:f4:68:cc:14:6d:4a: 18:f1:66:d0:09:3f:18:9a:4f:cb:47:9f:32:cc:bb:15:ad:bb: ec:2c:6d:8c:a6:0f:44:d5:7e:da:37:80:29:db:4f:32:1d:db: 54:b8:9f:0c:26:d8:41:b7:06:76:ad:fa:43:3d:c1:e2:db:3c: 98:21:87:61:48:f1:d0:97:3d:85:4b:6c:16:3a:d7:6a:d5:12: 3d:b5:61:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUwOTA3MDMyNDQwWhcNMjUwOTE0MDMyNDQwWjAYMRYwFAYD VQQDEw02OGJjZmFmOC03NzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mI2qruOtXueUpY7+fdaUlrnOMN+HiCXMF7bbPHEWsAmPWxxrl9VxQ4eSHze fCCyN0bvDivoiAtP/toEZjjoc6DHzkoRAbBwVwQnHYYeLC65OCvVysYsrWGR6duh LfBHuinL42kL5H7DdyMIj7qGe+yZmWLVr5oi+kD0hZISHJc77f3KJ0ELOYGhZ1+R a6Jy8KCTgg756T1WfLIDdSgeq6x+n7lG/DFykcumrr6mlXGczkzhShvR6CJZdErE YLl0LIWvTp8LaukfE9UuHQbDCPEaeJ7HPuYp5HQP6cspNAIBoPX7YnnA9HFBC7OE k4D8vNKKCPRjB3tXbSc8EoagewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTRiUSV Sm39KsKz5iXgt5NAaVdpMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmTsfVaGO/Sg5NLml/cCgAiiUlfaHSuZCYsJd73YP6DPN/KsWL0CcG vFB2bWM6avQF9Dnhca20Uyf/tVrun8gpkxDyOOykeH1+oRS6kOasFQ/W94GX6igL qpL3aFu7T4maiEtDTQbDs/nynXxpWB1shoFkZcCvWEt0WtB7ZJVvjiIqovGRDNgz /P5I64CLSLQCZRHZnTf2AiiM1hkUXJeivhDpwMZl+OhUJXCd6PT0aMwUbUoY8WbQ CT8Ymk/LR58yzLsVrbvsLG2Mpg9E1X7aN4Ap208yHdtUuJ8MJthBtwZ2rfpDPcHi 2zyYIYdhSPHQlz2FS2wWOtdq1RI9tWFn -----END CERTIFICATE-----Generated at Sun Sep 7 23:57:05 2025 by rpki-client