$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: D+pBtxHFbATPCm0bLN1Bo1QR/dVUwr5AxjP1zSoNoLE= Subject key identifier: 5E:FB:46:59:D9:1A:D3:3C:F0:28:BB:AF:C9:B1:57:D9:6F:1E:13:70 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 0313 Signing time: Sat 23 Aug 2025 01:26:22 +0000 Manifest this update: Sat 23 Aug 2025 01:26:22 +0000 Manifest next update: Sat 30 Aug 2025 01:26:22 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: SG+1NwiDGAokfj++HFX0l+TTEWEul508s+ZvOvFt/SQ=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: ipLQrTfxlsH1xbpA5Xtx6FI7FTiCB5Vq0xVbQe7ALKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: Aug 23 01:26:22 2025 GMT Not After : Aug 30 01:26:22 2025 GMT Subject: CN=68a918be-bb5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:40:01:41:f8:59:a3:cd:90:57:b6:22:2e:9e: 2f:f5:4a:e7:cf:7d:17:a3:a1:ff:88:d8:20:a9:17: 14:65:d6:63:73:d3:89:ff:5a:38:68:ad:7a:4d:c6: a5:b3:47:a6:c6:b2:71:ac:46:8a:91:7b:ec:5d:96: d1:db:c3:df:5e:30:f1:d8:dc:ba:56:f8:27:82:f3: ba:8c:00:13:18:1f:3f:8b:f5:a3:63:6e:88:b6:26: ba:26:42:cf:46:5e:92:4a:6d:e1:03:e0:e8:07:87: ec:c4:0f:ea:8b:5e:9c:a0:8b:38:1a:df:3c:3e:68: 98:f2:c8:68:20:d1:f3:05:dc:9f:25:15:ac:8e:ea: 1a:42:7c:93:05:28:c7:12:de:e7:41:79:04:f0:4a: ef:da:1e:f9:34:2f:32:c7:99:78:22:13:c2:c0:49: 27:2f:fb:55:59:19:4e:b5:9b:b5:b8:e4:94:e3:6b: 08:a9:1e:80:c8:33:cf:56:e0:f1:78:2f:f3:e4:dc: 12:ff:71:f0:06:73:fc:e4:eb:cb:28:b1:67:7b:ef: ea:7b:ca:e1:fe:cf:f7:22:0c:c6:c2:d5:3e:ef:56: 0e:64:43:5e:4b:10:ad:1f:09:17:17:84:04:6b:e4: fa:fb:12:8c:d3:c1:24:31:72:53:62:00:11:ca:93: c3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FB:46:59:D9:1A:D3:3C:F0:28:BB:AF:C9:B1:57:D9:6F:1E:13:70 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:05:07:96:4f:fe:ae:91:fb:24:a3:6c:bf:9a:1e:02:0f:09: 68:81:3f:b6:55:2a:8e:84:e8:54:8d:54:0a:8c:f9:fa:f4:91: 99:fd:15:c8:69:d9:3b:c8:61:00:40:b5:3e:87:d5:ad:90:a8: ad:77:c5:2e:ae:8c:7b:8e:10:02:3d:56:e7:cb:20:f0:4e:05: ef:fc:a1:a4:97:93:c9:b2:24:58:d7:27:67:70:ed:9c:1b:a1: 09:ec:44:b9:d2:fd:cb:b8:f7:21:5d:c3:54:2b:ea:bf:c7:73: d7:a0:9d:55:77:68:77:0c:c4:b0:2f:ba:71:7f:26:7c:46:2b: 64:84:51:f4:67:9f:9c:64:fd:92:04:86:b9:a0:b7:8d:62:f4: 77:7d:8d:3f:8b:72:31:b4:3c:cd:c3:6b:08:62:c2:84:c6:f1: 8c:dd:19:e5:fe:5c:b0:8e:36:07:00:8d:b4:14:c1:e1:70:07: 76:2a:e4:2b:d8:20:7b:69:99:4a:81:2b:e0:f6:68:52:ba:75: 76:49:0a:a1:8f:af:61:32:0c:71:fb:62:fc:fb:20:ab:e2:6e: f1:60:27:c6:3f:dd:69:90:73:d8:6e:75:70:8b:72:af:2f:23: a9:d9:e8:41:78:b1:d2:95:f5:66:a4:e7:27:c8:5a:2a:03:25: de:7a:9e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUwODIzMDEyNjIyWhcNMjUwODMwMDEyNjIyWjAYMRYwFAYD VQQDEw02OGE5MThiZS1iYjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEABQfhZo82QV7YiLp4v9Urnz30Xo6H/iNggqRcUZdZjc9OJ/1o4aK16Tcal s0emxrJxrEaKkXvsXZbR28PfXjDx2Ny6VvgngvO6jAATGB8/i/WjY26Itia6JkLP Rl6SSm3hA+DoB4fsxA/qi16coIs4Gt88PmiY8shoINHzBdyfJRWsjuoaQnyTBSjH Et7nQXkE8Erv2h75NC8yx5l4IhPCwEknL/tVWRlOtZu1uOSU42sIqR6AyDPPVuDx eC/z5NwS/3HwBnP85OvLKLFne+/qe8rh/s/3IgzGwtU+71YOZENeSxCtHwkXF4QE a+T6+xKM08EkMXJTYgARypPDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF77RlnZ GtM88Ci7r8mxV9lvHhNwMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzBQeWT/6ukfsko2y/mh4CDwlogT+2VSqOhOhUjVQKjPn69JGZ/RXI adk7yGEAQLU+h9WtkKitd8Uurox7jhACPVbnyyDwTgXv/KGkl5PJsiRY1ydncO2c G6EJ7ES50v3LuPchXcNUK+q/x3PXoJ1Vd2h3DMSwL7pxfyZ8RitkhFH0Z5+cZP2S BIa5oLeNYvR3fY0/i3IxtDzNw2sIYsKExvGM3Rnl/lywjjYHAI20FMHhcAd2KuQr 2CB7aZlKgSvg9mhSunV2SQqhj69hMgxx+2L8+yCr4m7xYCfGP91pkHPYbnVwi3Kv LyOp2ehBeLHSlfVmpOcnyFoqAyXeep6H -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:11 2025 by rpki-client