$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: qdeXqmINer+ulWHgALM3ukAYm7a2piHkukQW1821MWc= Subject key identifier: F1:79:4F:AE:C3:F2:42:1F:18:47:D7:1A:03:E4:29:D1:06:F3:D4:81 Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 0101 Signing time: Thu 21 Aug 2025 05:17:27 +0000 Manifest this update: Thu 21 Aug 2025 05:17:26 +0000 Manifest next update: Thu 28 Aug 2025 05:17:26 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: GZNLl7uBS0Ucom5mSVdu/gPVEuWjDly72/6YnKEkeUY=) 2: F220949E1C3411EFAF8F6A5BC4F9AE02.roa (hash: JIXgdhiXTjZ6ev4WQoNqMVmd92t9GAOhewZo29LoRAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F, serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: Aug 21 05:17:26 2025 GMT Not After : Aug 28 05:17:26 2025 GMT Subject: CN=68a6abe6-0a6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d0:88:c6:b2:f9:65:41:00:d5:57:d9:16:c6: 43:c9:87:16:8e:b8:49:ab:e8:d3:b9:7d:08:d4:e4: 91:ca:8f:7a:80:43:f6:af:1a:5b:59:04:e7:af:97: d7:f0:15:eb:38:37:7e:3c:e6:ad:1d:2f:b2:6e:d7: 44:63:45:3e:da:48:a4:46:80:c9:95:29:aa:a7:8c: d4:0a:fa:65:e4:c5:c0:f2:34:32:fa:13:72:44:51: fb:e2:5d:ef:27:4f:af:96:b3:b5:9b:24:46:a7:25: 45:61:cb:07:cc:ab:e4:7d:ae:88:a7:00:e8:cc:f6: b8:a5:58:38:cc:4d:ac:ca:e5:4c:86:02:94:98:a9: 2b:86:36:6c:4c:bb:21:ed:95:ab:1d:60:a5:45:4f: 45:8a:de:76:0e:96:8d:aa:da:bc:a3:e6:d5:ce:f2: c3:13:92:6f:ee:65:00:f6:bb:47:97:bc:39:77:6b: 79:7a:d9:3b:76:85:be:3c:05:fe:33:04:57:bc:2c: d1:6c:33:69:44:f8:6d:98:d8:43:e1:27:a9:5a:19: ad:5e:6c:5b:f1:e4:97:e3:94:ea:e2:5a:e6:75:0e: ed:41:0c:e2:d3:bf:71:38:3b:3a:ef:d0:c6:35:4f: 62:65:45:e5:2c:81:6b:08:ea:9f:16:33:33:85:33: 42:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:79:4F:AE:C3:F2:42:1F:18:47:D7:1A:03:E4:29:D1:06:F3:D4:81 X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:64:41:9e:4a:2a:7b:d3:06:c0:f8:39:a6:2a:e7:ce:95:80: cf:9b:8a:a7:a3:aa:9b:e3:09:0e:12:b8:c9:6a:04:cd:b0:c7: 6e:6b:02:e0:eb:f1:f2:8b:d8:8d:d8:1b:f2:84:e3:bf:a5:6d: db:ad:fd:23:7d:56:67:42:85:21:97:ec:d0:dc:79:41:1f:d1: 3a:21:04:af:a7:da:1d:ef:ef:bb:a5:53:2c:e8:cd:6a:8a:e8: 19:b9:59:2d:1d:e5:b8:d4:08:b2:1b:a6:69:79:cf:21:25:8c: 76:cb:63:62:f9:0d:6a:8c:b7:b6:e1:02:8e:80:4f:01:3b:21: b1:3e:90:b4:4c:e4:c5:95:d7:f3:75:be:36:07:64:e7:68:76: cb:e8:85:66:c6:da:f1:75:51:15:92:a1:61:d8:23:5e:79:00: fc:63:3a:c3:07:aa:3e:be:28:81:dc:a2:69:17:10:87:a2:37: 1c:cf:2e:6f:76:0b:4e:0b:1c:94:58:1a:9f:4e:5f:af:81:08: f0:ec:40:b5:7b:7e:c5:ea:df:a6:ce:90:0b:4b:ca:b9:63:f1: 65:5e:1e:24:d8:ee:86:0c:ec:82:0a:21:6e:21:d7:39:5d:b2: 3a:33:72:05:a2:34:14:2f:17:76:07:58:9b:af:4b:da:b7:1c: d7:9a:bd:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMkYxMTAvBgNVBAUTKEQ5ODcyQzE5M0UxOERDMTUxRkUzRUY5RTI5QUZFODMx MjFCMjREMTAwHhcNMjUwODIxMDUxNzI2WhcNMjUwODI4MDUxNzI2WjAYMRYwFAYD VQQDEw02OGE2YWJlNi0wYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNCIxrL5ZUEA1VfZFsZDyYcWjrhJq+jTuX0I1OSRyo96gEP2rxpbWQTnr5fX 8BXrODd+POatHS+ybtdEY0U+2kikRoDJlSmqp4zUCvpl5MXA8jQy+hNyRFH74l3v J0+vlrO1myRGpyVFYcsHzKvkfa6IpwDozPa4pVg4zE2syuVMhgKUmKkrhjZsTLsh 7ZWrHWClRU9Fit52DpaNqtq8o+bVzvLDE5Jv7mUA9rtHl7w5d2t5etk7doW+PAX+ MwRXvCzRbDNpRPhtmNhD4SepWhmtXmxb8eSX45Tq4lrmdQ7tQQzi079xODs679DG NU9iZUXlLIFrCOqfFjMzhTNC3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF5T67D 8kIfGEfXGgPkKdEG89SBMB8GA1UdIwQYMBaAFNmHLBk+GNwVH+Pvnimv6DEhsk0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIyRi81ODQyRDMwNEY3 RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNCVWY0LS1lS2Ffb01TR3lU UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNC VWY0LS1lS2Ffb01TR3lUUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5ZEGeSip70wbA+DmmKufOlYDPm4qno6qb4wkOErjJagTNsMduawLg 6/Hyi9iN2BvyhOO/pW3brf0jfVZnQoUhl+zQ3HlBH9E6IQSvp9od7++7pVMs6M1q iugZuVktHeW41AiyG6Zpec8hJYx2y2Ni+Q1qjLe24QKOgE8BOyGxPpC0TOTFldfz db42B2TnaHbL6IVmxtrxdVEVkqFh2CNeeQD8YzrDB6o+viiB3KJpFxCHojcczy5v dgtOCxyUWBqfTl+vgQjw7EC1e37F6t+mzpALS8q5Y/FlXh4k2O6GDOyCCiFuIdc5 XbI6M3IFojQULxd2B1ibr0vatxzXmr1t -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:14 2025 by rpki-client