$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft File: -Y6-IGkPLysjShVIfdCVIfPUdTw.mft (raw, json) Hash identifier: iiRMn93g422MYGTgWovwjAYnOVpWvlvOinKjAe7X5Rc= Subject key identifier: 6E:75:F0:34:14:E1:E4:D9:8C:F9:B5:A8:C8:DD:C1:A8:06:79:00:78 Authority key identifier: F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C Certificate issuer: /CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Certificate serial: 0B1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft Manifest number: 0B13 Signing time: Sun 24 Aug 2025 19:18:50 +0000 Manifest this update: Sun 24 Aug 2025 19:18:50 +0000 Manifest next update: Sun 31 Aug 2025 19:18:50 +0000 Files and hashes: 1: -Y6-IGkPLysjShVIfdCVIfPUdTw.crl (hash: wwOauUL0neR4UvqeHcWUVKFzrrTv9S/eTd+Re9Mugfo=) 2: B69F45F6480C11EAA7171874C4F9AE02.roa (hash: gMyJ+7eXQOz2lZ7oRn13QHvOh0RqD5UbZBYLXAXV9no=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC44, serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Validity Not Before: Aug 24 19:18:50 2025 GMT Not After : Aug 31 19:18:50 2025 GMT Subject: CN=68ab659a-22df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2e:34:bf:5e:ff:6b:2b:5d:e3:26:8d:8b:ff: ce:60:60:2f:12:77:d4:ac:52:27:41:2f:a5:7b:18: fd:a7:fc:36:19:d8:fb:8b:0a:8d:87:2a:2e:25:25: f3:53:6a:87:8e:51:f3:f3:23:72:ec:39:38:4b:a0: fc:5f:73:8e:3e:e3:af:2d:a2:74:12:3b:45:ce:32: 25:b9:c5:89:93:58:ff:8e:52:38:08:f4:a6:a3:29: a7:e1:e8:1b:7b:4d:92:fc:36:65:f4:db:71:36:52: 2e:15:20:9b:13:a5:96:9e:55:35:92:38:ca:87:42: fc:f9:90:ca:84:20:d8:59:c9:dd:db:e7:0c:b2:cc: 4b:20:03:d8:c5:ba:fe:70:2c:f9:3a:94:19:e4:91: 36:d3:05:17:13:d0:26:e9:10:ce:6d:ac:cc:6a:b5: 88:02:68:13:90:fb:af:3d:07:e5:c6:19:8d:2c:0b: 4d:3f:c6:ec:1b:37:ab:0b:f5:3a:54:38:01:36:49: 49:c2:48:2e:62:22:25:e5:b3:07:c2:45:4b:63:01: d5:72:05:a8:7c:3a:e7:f0:07:7c:5e:a8:bb:80:50: 12:62:5b:78:5d:6d:8f:91:75:ac:08:c9:16:0e:a3: 1c:06:04:84:2a:06:59:9c:6f:30:0e:c7:8c:e3:1d: 58:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:75:F0:34:14:E1:E4:D9:8C:F9:B5:A8:C8:DD:C1:A8:06:79:00:78 X509v3 Authority Key Identifier: keyid:F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:9f:0b:33:85:46:cd:47:25:f3:8b:6f:31:e2:89:5c:00:6e: 8b:d4:4a:ff:7b:9b:cb:13:5e:07:6e:db:85:f4:2f:62:c4:13: 79:49:f0:03:96:c5:9f:43:2d:cd:53:66:8a:0f:51:c3:92:0b: 84:da:48:fb:cd:11:85:9f:56:f1:ea:20:99:29:d4:55:81:95: be:c3:c6:79:3d:db:3e:1a:ea:8a:51:b6:8b:be:14:49:90:66: 97:16:e7:58:63:81:a8:4c:15:6d:e7:4e:9e:aa:2b:0d:d9:46: 16:39:24:90:b5:f3:2b:b4:90:4a:bc:ea:db:2d:ef:6a:fb:63: 05:30:9c:62:22:a7:13:d8:bf:f6:22:21:8a:79:e2:f0:60:ba: 8b:d0:85:38:df:e4:62:63:69:54:42:4c:80:8a:48:c1:71:63: 91:4b:d4:43:44:93:9c:6a:a2:dc:a1:8c:d8:96:47:be:d6:b1: 46:ec:a2:20:9f:1c:9f:32:44:a6:80:55:73:89:6e:f2:e1:86: ad:06:03:db:60:b1:4f:d3:86:d9:dd:53:50:d8:b8:67:e3:d2: dc:2e:6f:d5:72:c7:56:4e:98:df:e1:bc:90:12:92:11:6d:47: 09:26:ef:44:8e:93:b2:a0:86:01:00:3a:5b:c5:15:ee:3b:ce: 51:14:8a:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDNDQxMTAvBgNVBAUTKEY5OEVCRTIwNjkwRjJGMkIyMzRBMTU0ODdERDA5NTIx RjNENDc1M0MwHhcNMjUwODI0MTkxODUwWhcNMjUwODMxMTkxODUwWjAYMRYwFAYD VQQDEw02OGFiNjU5YS0yMmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArS40v17/aytd4yaNi//OYGAvEnfUrFInQS+lexj9p/w2Gdj7iwqNhyouJSXz U2qHjlHz8yNy7Dk4S6D8X3OOPuOvLaJ0EjtFzjIlucWJk1j/jlI4CPSmoymn4egb e02S/DZl9NtxNlIuFSCbE6WWnlU1kjjKh0L8+ZDKhCDYWcnd2+cMssxLIAPYxbr+ cCz5OpQZ5JE20wUXE9Am6RDObazMarWIAmgTkPuvPQflxhmNLAtNP8bsGzerC/U6 VDgBNklJwkguYiIl5bMHwkVLYwHVcgWofDrn8Ad8Xqi7gFASYlt4XW2PkXWsCMkW DqMcBgSEKgZZnG8wDseM4x1YUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG518DQU 4eTZjPm1qMjdwagGeQB4MB8GA1UdIwQYMBaAFPmOviBpDy8rI0oVSH3QlSHz1HU8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0M0NC9DMTYwRkNBQzQ4 MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5c2pTaFZJZmRDVklmUFVk VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZNi1JR2tQTHlzalNoVklmZENWSWZQVWRUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0M0NC9DMTYwRkNBQzQ4MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5 c2pTaFZJZmRDVklmUFVkVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUnwszhUbNRyXzi28x4olcAG6L1Er/e5vLE14HbtuF9C9ixBN5SfAD lsWfQy3NU2aKD1HDkguE2kj7zRGFn1bx6iCZKdRVgZW+w8Z5Pds+GuqKUbaLvhRJ kGaXFudYY4GoTBVt506eqisN2UYWOSSQtfMrtJBKvOrbLe9q+2MFMJxiIqcT2L/2 IiGKeeLwYLqL0IU43+RiY2lUQkyAikjBcWORS9RDRJOcaqLcoYzYlke+1rFG7KIg nxyfMkSmgFVziW7y4YatBgPbYLFP04bZ3VNQ2Lhn49LcLm/VcsdWTpjf4byQEpIR bUcJJu9EjpOyoIYBADpbxRXuO85RFIr1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:39 2025 by rpki-client