$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: B8RKGPBO0XKDJwACmOA9w87ima1m++IfxpyWHFCiaiY= Subject key identifier: 15:19:D6:F8:42:49:9C:1D:1E:7D:40:D7:C8:3D:BF:D7:13:5D:6C:A0 Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0E7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0E65 Signing time: Sun 24 Aug 2025 17:43:43 +0000 Manifest this update: Sun 24 Aug 2025 17:43:43 +0000 Manifest next update: Sun 31 Aug 2025 17:43:43 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: JAbeWrgz/Dv9o4w+7EtneEGc3/fv5Q8kwV88BQsUeoU=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: ecUYAzKP1VHNDV8/DURQ3XmWYJTnzDR9mLUMMYKH7wE=) 3: 79395BE68EB311EF9A8DFC3CC4F9AE02.roa (hash: RU2Bp78eGDXSscZxxDiygRwZ64V3JmS10+rUng9roo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: Aug 24 17:43:43 2025 GMT Not After : Aug 31 17:43:43 2025 GMT Subject: CN=68ab4f4f-302b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:80:f7:29:24:69:eb:4d:bb:47:74:cd:2d:31: f8:60:97:8b:22:fb:3b:62:85:59:8f:81:c5:36:b1: f4:38:36:6a:f3:ec:2b:38:fe:22:77:a5:92:f5:84: d5:0e:50:03:98:a4:74:4d:61:ca:f7:d2:20:0f:14: 8a:0c:e0:83:b6:80:9d:ce:f6:d0:62:14:b4:83:59: d7:9e:5a:79:39:df:ec:6b:c3:c5:e2:c4:25:f9:2a: 0f:98:ca:fe:8b:4c:ea:16:77:34:9b:69:a7:40:de: 6e:08:fa:00:6f:af:49:e1:32:ac:08:91:d0:c0:b4: 38:e1:82:82:87:9b:a4:1c:d9:60:22:97:36:10:aa: 5b:e5:d0:d0:1d:83:d5:ed:f4:47:3f:e2:32:e3:81: 43:48:ee:60:da:d5:8f:19:3f:43:22:46:11:0e:ff: b1:09:5c:8b:73:0e:fa:95:20:d9:81:cf:0a:5a:be: 6c:fc:9d:7e:79:7c:6e:55:59:9c:13:74:f9:37:53: 5a:e4:f4:83:9b:09:f2:d1:d4:0b:07:eb:13:b9:3c: b4:10:5c:f0:8f:ee:3d:dc:0e:6c:58:b7:bb:5b:05: ba:99:d7:3a:f6:9d:56:42:c7:dd:82:2f:04:59:03: 38:47:a8:74:42:8f:c2:42:7c:a4:d6:54:d5:7e:e1: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:19:D6:F8:42:49:9C:1D:1E:7D:40:D7:C8:3D:BF:D7:13:5D:6C:A0 X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:49:17:7b:7c:f2:e1:54:2c:72:66:e8:91:13:16:f5:95:a5: 70:e1:27:c7:67:b5:83:98:15:3c:a7:a5:57:db:4b:6c:40:0c: 6a:13:f6:39:2b:04:ba:6f:0c:11:a0:52:34:d9:bb:c3:e1:50: 6f:21:6e:1c:2a:5c:a6:1e:8b:0e:ad:09:fb:ca:1f:63:2e:e4: 83:d9:35:20:ba:76:e1:77:ad:93:44:ac:62:da:99:3a:8b:20: 4e:6f:5b:41:66:1d:50:b2:ac:93:a2:51:c7:8d:39:ef:79:06: 55:9c:6f:0b:73:40:da:52:4a:11:c6:46:b7:08:d9:bd:17:4c: 66:25:b6:64:37:58:1d:df:12:39:ec:5a:57:c5:1e:7e:20:33: 9a:9a:c0:2a:dc:cc:0f:6e:c2:0d:2c:f4:51:cd:b8:08:5b:e1: 2e:76:af:48:46:1a:40:ce:43:cc:19:34:40:d4:1d:c0:fc:b7: f8:88:e2:13:d9:d6:98:fd:3e:bd:30:ab:85:0a:63:80:3c:94: bf:4e:22:2c:0a:9a:b7:d1:e8:e1:23:74:2f:7f:07:84:0f:d1: ec:4d:dd:47:87:6a:13:3c:94:87:9e:d9:e9:8c:41:ee:e1:fb: 42:66:9f:f3:cc:b6:c2:99:f1:c6:8f:2b:59:0f:bb:d0:7f:dd: c6:f9:37:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjUwODI0MTc0MzQzWhcNMjUwODMxMTc0MzQzWjAYMRYwFAYD VQQDEw02OGFiNGY0Zi0zMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4D3KSRp6027R3TNLTH4YJeLIvs7YoVZj4HFNrH0ODZq8+wrOP4id6WS9YTV DlADmKR0TWHK99IgDxSKDOCDtoCdzvbQYhS0g1nXnlp5Od/sa8PF4sQl+SoPmMr+ i0zqFnc0m2mnQN5uCPoAb69J4TKsCJHQwLQ44YKCh5ukHNlgIpc2EKpb5dDQHYPV 7fRHP+Iy44FDSO5g2tWPGT9DIkYRDv+xCVyLcw76lSDZgc8KWr5s/J1+eXxuVVmc E3T5N1Na5PSDmwny0dQLB+sTuTy0EFzwj+493A5sWLe7WwW6mdc69p1WQsfdgi8E WQM4R6h0Qo/CQnyk1lTVfuHpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUZ1vhC SZwdHn1A18g9v9cTXWygMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVSRd7fPLhVCxyZuiRExb1laVw4SfHZ7WDmBU8p6VX20tsQAxqE/Y5 KwS6bwwRoFI02bvD4VBvIW4cKlymHosOrQn7yh9jLuSD2TUgunbhd62TRKxi2pk6 iyBOb1tBZh1QsqyTolHHjTnveQZVnG8Lc0DaUkoRxka3CNm9F0xmJbZkN1gd3xI5 7FpXxR5+IDOamsAq3MwPbsINLPRRzbgIW+Eudq9IRhpAzkPMGTRA1B3A/Lf4iOIT 2daY/T69MKuFCmOAPJS/TiIsCpq30ejhI3QvfweED9HsTd1Hh2oTPJSHntnpjEHu 4ftCZp/zzLbCmfHGjytZD7vQf93G+Td1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:55 2025 by rpki-client