$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: DKrc3mW4NwT7Zf5kdAmR36Jqtakdg/kqo8xCnD0TLhQ= Subject key identifier: 80:1E:E7:C6:1B:47:9E:C6:C0:E5:61:5A:3F:1B:70:A1:FD:4C:3B:14 Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 0605 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 0600 Signing time: Fri 22 Aug 2025 23:03:44 +0000 Manifest this update: Fri 22 Aug 2025 23:03:43 +0000 Manifest next update: Fri 29 Aug 2025 23:03:43 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: 7zJSZbuYOORbjgHPZdsQUK51RhGhZh3mi+bDPdYECGI=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814, serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: Aug 22 23:03:43 2025 GMT Not After : Aug 29 23:03:43 2025 GMT Subject: CN=68a8f750-d90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2e:f4:2e:ff:a7:74:87:c3:d0:1d:51:45:3c: f3:e0:d0:5d:f2:76:0e:ca:d7:2d:16:df:6f:4b:65: ed:f0:73:b5:c7:11:b6:26:33:ba:46:4f:3e:87:0b: 71:f3:2a:a2:11:4d:ce:70:39:70:a2:32:bb:f6:0a: 24:f8:3d:8c:a7:a9:5e:ed:1a:b0:8c:b9:a8:a3:2c: 19:b7:f7:16:66:95:ad:e7:ad:c0:13:4e:a8:da:27: f4:fe:98:3f:a0:db:c5:d2:d8:a3:21:8a:32:e7:ce: 63:f6:43:4f:13:7b:3f:93:48:4a:2e:e9:93:c3:cb: 4d:fa:48:d9:9d:56:29:e1:2a:50:46:8c:38:ff:86: 46:26:ec:42:5f:a4:30:00:f5:30:be:64:da:e2:99: 1e:dc:b8:f5:af:89:fe:d7:aa:87:cf:56:45:e3:33: 85:75:e0:10:85:e3:3e:a7:c9:51:a5:78:a8:2a:cf: c5:b5:07:63:6b:24:64:3a:81:d6:a5:ab:70:cd:3a: ab:32:1f:4b:7d:2a:33:2c:6e:6b:a4:eb:82:43:86: 33:65:10:7e:ed:29:8f:68:c9:a1:d5:dd:d1:b4:03: 8e:aa:b1:97:2d:57:e7:d4:87:9e:c4:4b:87:ec:fb: d3:b3:a6:70:5f:87:07:b7:35:cf:56:72:b0:82:0f: 54:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:E7:C6:1B:47:9E:C6:C0:E5:61:5A:3F:1B:70:A1:FD:4C:3B:14 X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:90:b6:ae:ae:f2:03:57:9e:f8:78:15:cc:4d:7c:3a:60:15: 57:1f:10:b4:61:d5:5a:95:37:e7:b4:57:51:1c:74:b2:2d:74: 11:eb:83:a8:02:f3:13:50:01:37:0d:41:de:0c:d6:6d:91:3d: 41:bd:dd:fe:dd:f9:80:5c:e2:67:c4:50:58:72:86:03:2f:ec: f2:bd:25:3e:e2:1a:c6:13:d2:75:53:aa:a1:22:db:ee:79:93: 0e:7f:9e:b6:33:b6:7d:a0:c8:98:a8:e0:04:6f:17:ce:8f:e8: 32:ce:d2:6e:a2:87:1c:0f:e2:9b:78:e5:e8:82:03:91:17:dd: ef:5c:f2:f0:cd:aa:60:fb:e9:ea:c9:f7:ae:1b:cc:28:f5:fe: ed:6f:46:43:52:6d:50:c2:d4:75:82:e1:38:24:3c:02:f2:11: ed:fc:19:2d:d9:f4:07:05:d2:2c:76:7d:d2:0e:36:4b:0f:f8: 53:10:19:1d:cc:33:60:b6:12:dd:e8:44:77:9f:64:3d:c6:8f: 32:66:b3:ce:29:a7:dc:5e:95:bd:df:81:5d:df:1c:79:ba:32: f0:19:9d:a9:de:05:c0:b5:f3:bc:c4:08:33:4f:69:1f:ff:f0: ba:38:31:c2:a2:a6:a5:07:8c:64:e7:b5:f2:76:90:c9:96:90: d1:7b:e2:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjUwODIyMjMwMzQzWhcNMjUwODI5MjMwMzQzWjAYMRYwFAYD VQQDEw02OGE4Zjc1MC1kOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC70Lv+ndIfD0B1RRTzz4NBd8nYOytctFt9vS2Xt8HO1xxG2JjO6Rk8+hwtx 8yqiEU3OcDlwojK79gok+D2Mp6le7RqwjLmooywZt/cWZpWt563AE06o2if0/pg/ oNvF0tijIYoy585j9kNPE3s/k0hKLumTw8tN+kjZnVYp4SpQRow4/4ZGJuxCX6Qw APUwvmTa4pke3Lj1r4n+16qHz1ZF4zOFdeAQheM+p8lRpXioKs/FtQdjayRkOoHW patwzTqrMh9LfSozLG5rpOuCQ4YzZRB+7SmPaMmh1d3RtAOOqrGXLVfn1IeexEuH 7PvTs6ZwX4cHtzXPVnKwgg9U5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAe58Yb R57GwOVhWj8bcKH9TDsUMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABkLaurvIDV574eBXMTXw6YBVXHxC0YdValTfntFdRHHSyLXQR64Oo AvMTUAE3DUHeDNZtkT1Bvd3+3fmAXOJnxFBYcoYDL+zyvSU+4hrGE9J1U6qhItvu eZMOf562M7Z9oMiYqOAEbxfOj+gyztJuooccD+KbeOXoggORF93vXPLwzapg++nq yfeuG8wo9f7tb0ZDUm1QwtR1guE4JDwC8hHt/Bkt2fQHBdIsdn3SDjZLD/hTEBkd zDNgthLd6ER3n2Q9xo8yZrPOKafcXpW934Fd3xx5ujLwGZ2p3gXAtfO8xAgzT2kf //C6ODHCoqalB4xk57XydpDJlpDRe+Ln -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:12 2025 by rpki-client