$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: quTOoCYP0tN24AilZogUFYvD4OjYDJWMeRoU75s55qE= Subject key identifier: 21:57:A0:7F:B9:7D:AA:64:C9:15:65:66:35:04:A4:60:D7:3F:22:97 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0EBA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0EA9 Signing time: Sat 06 Sep 2025 17:47:47 +0000 Manifest this update: Sat 06 Sep 2025 17:47:46 +0000 Manifest next update: Sat 13 Sep 2025 17:47:46 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: PTqtBjl6nqrUM1WmZMMeLB5a4vVFs28w4FqiPas/US4=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3770 (0xeba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Sep 6 17:47:46 2025 GMT Not After : Sep 13 17:47:46 2025 GMT Subject: CN=68bc73c2-5ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:c9:35:eb:c7:f0:33:b3:6e:0c:1b:8c:a6: 8d:4b:77:99:32:42:f2:4f:40:b3:be:8d:de:28:c6: 36:51:75:73:d1:5a:f7:93:02:01:e9:ed:c4:51:bc: 70:c6:c1:cc:1a:6c:76:00:14:06:f9:a4:40:ba:ef: 35:8e:23:33:6e:7b:83:22:dd:fa:cf:0d:db:f7:1a: 3f:c2:65:f8:be:6e:26:4e:37:77:de:12:11:23:33: f8:3c:c8:20:25:2f:15:4d:44:c8:b8:9d:f6:4a:65: 82:da:fc:e4:20:7d:20:34:c2:83:e5:6c:61:97:4d: a2:dd:d2:fd:d3:14:c9:c4:ef:f9:61:e2:af:7f:89: 93:d1:95:53:c5:4a:24:8c:d4:a7:39:92:84:0c:68: 30:63:04:1d:2c:18:16:7a:e2:cf:29:93:54:3a:45: 7a:12:56:0f:2a:c5:d8:6c:97:7c:03:e9:db:51:91: f7:c0:24:99:9f:eb:24:72:c8:83:8e:a9:74:ed:d6: 6b:38:a9:f1:6e:56:d8:08:03:8b:94:48:fa:10:f4: 0d:0c:4b:43:dc:a1:2d:45:39:4b:f1:23:0a:4a:ac: 9a:01:f6:be:f4:8e:5f:9a:8d:11:c4:5f:cd:6c:d4: 22:1e:f7:01:52:a5:7f:e9:76:50:39:c6:08:10:f9: cc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:57:A0:7F:B9:7D:AA:64:C9:15:65:66:35:04:A4:60:D7:3F:22:97 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:59:c7:dc:f0:22:cc:2e:fe:44:62:70:1b:57:7c:84:7f:18: bb:c8:c2:0c:ab:4a:cc:ab:26:9c:c4:ae:a6:96:fc:0f:66:08: f1:9b:92:9a:62:77:5d:5e:9c:2b:db:2f:d7:e7:8a:ed:03:5a: 2c:05:5a:06:10:30:e8:72:0d:59:c1:43:c8:d8:f1:ed:ef:01: cd:2c:91:4c:bb:d0:20:f4:b6:37:b4:52:bd:c3:59:7b:44:ea: 39:cd:e5:66:38:06:1a:fb:ad:20:24:55:fe:65:59:b9:4d:3d: ec:d1:3e:c2:43:fe:78:49:bd:9b:4e:71:0d:3d:25:69:4b:ef: 40:1c:b3:db:bd:14:eb:a5:99:76:a7:09:a2:a0:5f:61:84:ec: 41:40:dd:fe:03:b1:32:34:d9:1f:69:6b:a6:7c:32:6f:8d:da: 28:51:08:87:57:a2:9a:88:fa:94:e6:0e:4b:ac:a1:0b:5b:ae: 88:65:92:cd:df:48:04:61:b5:3d:9d:41:d3:51:6b:09:b9:f1: 91:b4:86:be:a8:51:f8:44:0c:38:f0:71:5a:c0:10:fb:c1:ec: 10:b9:2b:46:3c:02:fd:2b:e3:70:be:bf:4f:cb:44:fe:b9:ce: 28:59:5c:13:9f:1d:6a:c7:c8:0f:c0:1d:57:79:61:4b:bc:67: 4f:e9:ab:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUwOTA2MTc0NzQ2WhcNMjUwOTEzMTc0NzQ2WjAYMRYwFAYD VQQDEw02OGJjNzNjMi01YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9zJNevH8DOzbgwbjKaNS3eZMkLyT0Czvo3eKMY2UXVz0Vr3kwIB6e3EUbxw xsHMGmx2ABQG+aRAuu81jiMzbnuDIt36zw3b9xo/wmX4vm4mTjd33hIRIzP4PMgg JS8VTUTIuJ32SmWC2vzkIH0gNMKD5Wxhl02i3dL90xTJxO/5YeKvf4mT0ZVTxUok jNSnOZKEDGgwYwQdLBgWeuLPKZNUOkV6ElYPKsXYbJd8A+nbUZH3wCSZn+skcsiD jql07dZrOKnxblbYCAOLlEj6EPQNDEtD3KEtRTlL8SMKSqyaAfa+9I5fmo0RxF/N bNQiHvcBUqV/6XZQOcYIEPnMjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFXoH+5 fapkyRVlZjUEpGDXPyKXMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPWcfc8CLMLv5EYnAbV3yEfxi7yMIMq0rMqyacxK6mlvwPZgjxm5Ka YnddXpwr2y/X54rtA1osBVoGEDDocg1ZwUPI2PHt7wHNLJFMu9Ag9LY3tFK9w1l7 ROo5zeVmOAYa+60gJFX+ZVm5TT3s0T7CQ/54Sb2bTnENPSVpS+9AHLPbvRTrpZl2 pwmioF9hhOxBQN3+A7EyNNkfaWumfDJvjdooUQiHV6KaiPqU5g5LrKELW66IZZLN 30gEYbU9nUHTUWsJufGRtIa+qFH4RAw48HFawBD7wewQuStGPAL9K+Nwvr9Py0T+ uc4oWVwTnx1qx8gPwB1XeWFLvGdP6asu -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:52 2025 by rpki-client