$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: bQYUTebIvVEaCoVIZF7KSNJTGnf6NBAmwhqmw0MoPEk= Subject key identifier: 7E:FC:08:34:30:46:1B:92:68:E4:1B:A6:4B:C3:C4:2A:A4:5E:06:62 Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0C4F Signing time: Sun 24 Aug 2025 18:30:01 +0000 Manifest this update: Sun 24 Aug 2025 18:30:00 +0000 Manifest next update: Sun 31 Aug 2025 18:30:00 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: 9tssLbrkj16ik4ci3VfW6i1yiamCNJurnnrynzjHSgE=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: UpR8nuBc/YxAqJ5KwZdD471HRL+h2X0H2SIoY13S/74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1, serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: Aug 24 18:30:00 2025 GMT Not After : Aug 31 18:30:00 2025 GMT Subject: CN=68ab5a29-f63b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:47:f0:60:c5:28:c1:af:2f:82:34:a5:14: 7c:bf:11:fe:e5:d9:20:d7:3b:0d:6e:ef:7a:b3:df: d3:54:b2:bc:54:10:71:b5:3f:08:1f:d8:0b:a3:bf: f4:ba:71:be:99:8d:ae:14:59:18:f2:cb:15:f1:1c: ba:a5:67:f2:dd:21:e9:ef:02:b9:9d:52:61:15:3e: 18:e3:78:60:22:6f:32:61:ed:92:be:d8:cc:f1:32: e8:9d:31:3d:5a:e0:ee:73:02:41:5c:3f:66:80:9e: 30:f2:1a:1d:e7:47:0b:56:1b:91:8c:2b:a4:f0:92: 87:cf:41:52:bd:5d:79:bf:ef:f4:c3:f8:6c:2b:4c: f3:0b:30:ea:f0:08:2d:65:27:a7:56:d3:ce:9c:49: 03:5e:8e:46:16:2c:23:0f:2a:a6:21:71:d6:6c:e1: 8a:a8:01:2f:5b:62:70:d7:97:03:c2:52:eb:d2:53: e2:ab:b2:bf:09:63:b3:3c:b5:be:75:21:01:b4:ec: f6:49:41:cb:d8:fc:00:e9:0c:8f:a6:0b:c8:23:e7: 01:eb:49:4a:3b:b0:e5:b0:5e:7c:be:a5:bf:22:2a: 8e:82:a0:8f:5e:45:65:48:4d:57:f0:17:54:de:31: 0d:24:a4:02:ca:6f:76:23:ae:ec:a7:0f:3c:80:97: 99:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FC:08:34:30:46:1B:92:68:E4:1B:A6:4B:C3:C4:2A:A4:5E:06:62 X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:5b:80:04:69:40:d8:9b:c0:d1:39:c0:b1:53:12:d6:3c:ab: bc:5a:0f:4f:bf:59:82:47:f5:46:22:6d:db:a2:c9:2b:95:db: 3c:e4:9e:7d:57:92:54:b5:29:56:05:4a:dd:ab:f5:bd:c5:d0: eb:7a:96:09:5e:72:aa:6a:3a:46:90:41:17:44:8c:55:b8:61: c4:a5:2d:dd:0c:90:b4:4f:58:c6:7f:8a:ba:f3:27:56:81:18: 16:99:73:b4:f4:69:bf:80:0e:7d:95:c1:50:f3:c0:c7:fc:86: 89:4f:01:e9:37:e8:19:e4:8a:86:58:d8:8a:4a:59:f8:af:28: 29:fd:c5:54:b5:43:0b:60:ba:9f:20:6c:c0:5a:df:36:96:8f: a0:d7:2a:a3:ae:98:9c:45:a1:57:79:0e:e4:1f:31:09:eb:40: 04:b6:c4:a4:6f:f7:cd:30:27:6e:6a:2c:40:05:31:ae:ce:1e: 8a:45:2e:34:6d:72:29:2b:3f:25:9a:bf:61:cc:ad:1f:3f:63: 2a:16:5c:e9:da:a8:a6:b8:49:0d:c8:c7:48:87:da:86:55:d5: 2e:e6:b1:25:5a:1c:72:b4:60:d9:49:e4:b7:7d:3f:fe:af:5b: ed:ad:3b:df:03:8f:4a:42:86:39:b1:7c:dd:fa:57:3a:4d:17: e2:d2:68:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjUwODI0MTgzMDAwWhcNMjUwODMxMTgzMDAwWjAYMRYwFAYD VQQDEw02OGFiNWEyOS1mNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq9H8GDFKMGvL4I0pRR8vxH+5dkg1zsNbu96s9/TVLK8VBBxtT8IH9gLo7/0 unG+mY2uFFkY8ssV8Ry6pWfy3SHp7wK5nVJhFT4Y43hgIm8yYe2SvtjM8TLonTE9 WuDucwJBXD9mgJ4w8hod50cLVhuRjCuk8JKHz0FSvV15v+/0w/hsK0zzCzDq8Agt ZSenVtPOnEkDXo5GFiwjDyqmIXHWbOGKqAEvW2Jw15cDwlLr0lPiq7K/CWOzPLW+ dSEBtOz2SUHL2PwA6QyPpgvII+cB60lKO7DlsF58vqW/IiqOgqCPXkVlSE1X8BdU 3jENJKQCym92I67spw88gJeZvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH78CDQw RhuSaOQbpkvDxCqkXgZiMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7W4AEaUDYm8DROcCxUxLWPKu8Wg9Pv1mCR/VGIm3boskrlds85J59 V5JUtSlWBUrdq/W9xdDrepYJXnKqajpGkEEXRIxVuGHEpS3dDJC0T1jGf4q68ydW gRgWmXO09Gm/gA59lcFQ88DH/IaJTwHpN+gZ5IqGWNiKSln4rygp/cVUtUMLYLqf IGzAWt82lo+g1yqjrpicRaFXeQ7kHzEJ60AEtsSkb/fNMCduaixABTGuzh6KRS40 bXIpKz8lmr9hzK0fP2MqFlzp2qimuEkNyMdIh9qGVdUu5rElWhxytGDZSeS3fT/+ r1vtrTvfA49KQoY5sXzd+lc6TRfi0mjB -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:39 2025 by rpki-client