$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft File: cYQNfZjFz5vWvrRIatRnQGXxR0E.mft (raw, json) Hash identifier: e+z//uBzfzcFtKxVpqrSsCFd7GJ+P88p+Lvt4sD7KgU= Subject key identifier: 5E:FF:9C:1A:7B:EE:47:32:86:22:98:5E:33:76:B4:95:2B:62:17:0A Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft Manifest number: 05D6 Signing time: Fri 22 Aug 2025 23:13:14 +0000 Manifest this update: Fri 22 Aug 2025 23:13:13 +0000 Manifest next update: Fri 29 Aug 2025 23:13:13 +0000 Files and hashes: 1: cYQNfZjFz5vWvrRIatRnQGXxR0E.crl (hash: nu4COA5U/HnmC5I5RnFHXXHi2DYAzQvaQujJ1OmiEsQ=) 2: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (hash: dMeJp28zx6FUq76ao4qK+ptEjKQRepLswYRFFIdTn7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Aug 22 23:13:13 2025 GMT Not After : Aug 29 23:13:13 2025 GMT Subject: CN=68a8f989-0163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:41:2b:d6:32:c6:4c:f4:d0:a7:fa:3c:e6: 78:b4:71:20:e9:37:3a:de:67:ee:ae:6d:e1:3a:64: 47:32:7d:2f:05:75:8e:1e:3a:60:48:ae:a6:3d:b8: 68:8b:36:5b:2f:69:7b:7a:a0:22:47:63:07:fd:cc: af:6b:3a:44:a3:24:5f:4f:87:98:d9:a5:7c:d3:d5: 72:e9:8d:6f:9d:4e:02:9e:6e:06:ff:f1:66:e8:5e: 37:21:f2:19:0f:ed:9d:7c:a0:75:63:f2:1c:75:f7: d0:49:78:7c:b2:98:05:ed:be:80:70:71:1e:96:b9: af:74:91:91:51:56:ee:2e:f5:8d:99:d6:33:f5:94: 76:69:49:44:bb:58:e0:f0:c9:b3:75:77:48:2f:54: d3:54:fd:f0:bb:aa:00:04:ac:f8:ce:c0:9a:7b:72: 9f:e2:34:58:4e:70:4a:ba:68:74:9d:2c:0e:9c:1a: bd:89:62:27:00:14:e4:ed:a9:77:42:e2:5b:87:65: 62:8f:89:89:26:d1:30:ec:6b:f5:a1:e4:c0:e5:ec: 23:17:1f:64:84:ea:b9:85:d9:10:9c:21:7f:12:7c: d5:3f:3a:30:f6:63:ea:b7:fe:5c:6e:df:49:8a:3e: fb:b8:50:25:53:d1:f0:22:d3:40:cf:08:92:87:49: 2b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FF:9C:1A:7B:EE:47:32:86:22:98:5E:33:76:B4:95:2B:62:17:0A X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2a:3c:75:b2:52:6e:3a:c7:21:75:2b:d1:01:8c:31:6a:15: 4d:6f:4c:66:b2:bd:1e:06:27:77:d8:34:65:f7:d5:4d:4d:ee: 5b:c9:0e:c0:c3:19:b1:38:78:f6:6e:e8:96:84:24:d3:b1:f3: a5:74:b4:1a:f0:80:ad:f2:0e:80:f9:82:16:b7:ea:19:53:12: c5:9e:21:81:05:50:6d:13:ad:f5:c8:df:10:42:51:bd:97:92: 9e:f7:65:3b:df:f4:a9:5b:14:a6:3f:ea:b2:c2:00:b1:01:03: 4f:7b:74:ae:c7:b5:2a:74:f5:d6:c8:44:96:bf:c6:95:18:bc: 6c:d0:b0:1d:cf:6c:d3:e0:7c:fe:ed:e4:cf:e0:cf:ea:a2:61: 85:e8:7c:f4:35:10:f2:bf:29:0f:0a:09:b2:95:d4:1d:e4:66: 0b:88:b7:85:5f:e6:27:53:b2:2e:a7:09:fe:0c:d2:8e:4c:19: f3:8f:a5:ef:fb:a6:60:f8:fa:f1:95:f0:ce:f1:d2:46:fb:a4: 1f:bd:73:ab:46:43:8a:b5:07:97:9a:f8:b7:ed:6a:e7:bf:0e: d2:59:f5:d1:86:8e:a3:a0:fd:d3:4a:3d:97:df:2a:bf:f7:be: 24:d5:65:ff:87:14:31:b0:05:77:7b:48:b1:53:ce:63:b6:02: 97:06:0b:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUwODIyMjMxMzEzWhcNMjUwODI5MjMxMzEzWjAYMRYwFAYD VQQDEw02OGE4Zjk4OS0wMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKdBK9Yyxkz00Kf6POZ4tHEg6Tc63mfurm3hOmRHMn0vBXWOHjpgSK6mPbho izZbL2l7eqAiR2MH/cyvazpEoyRfT4eY2aV809Vy6Y1vnU4Cnm4G//Fm6F43IfIZ D+2dfKB1Y/IcdffQSXh8spgF7b6AcHEelrmvdJGRUVbuLvWNmdYz9ZR2aUlEu1jg 8MmzdXdIL1TTVP3wu6oABKz4zsCae3Kf4jRYTnBKumh0nSwOnBq9iWInABTk7al3 QuJbh2Vij4mJJtEw7Gv1oeTA5ewjFx9khOq5hdkQnCF/EnzVPzow9mPqt/5cbt9J ij77uFAlU9HwItNAzwiSh0krEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7/nBp7 7kcyhiKYXjN2tJUrYhcKMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0I2MS9CRTY4RDMwMkNBQUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1 dld2clJJYXRSblFHWHhSMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwKjx1slJuOschdSvRAYwxahVNb0xmsr0eBid32DRl99VNTe5byQ7A wxmxOHj2buiWhCTTsfOldLQa8ICt8g6A+YIWt+oZUxLFniGBBVBtE631yN8QQlG9 l5Ke92U73/SpWxSmP+qywgCxAQNPe3Sux7UqdPXWyESWv8aVGLxs0LAdz2zT4Hz+ 7eTP4M/qomGF6Hz0NRDyvykPCgmyldQd5GYLiLeFX+YnU7Iupwn+DNKOTBnzj6Xv +6Zg+PrxlfDO8dJG+6QfvXOrRkOKtQeXmvi37Wrnvw7SWfXRho6joP3TSj2X3yq/ 974k1WX/hxQxsAV3e0ixU85jtgKXBguO -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:12 2025 by rpki-client