$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: R8HmOC8voFK+JjX5TkBUPxzUBa3MXjwKh91HQ2i+Zas= Subject key identifier: E0:36:FD:C9:52:FA:DB:62:0E:F0:34:68:47:64:40:55:FE:5E:AD:AD Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0D8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0D7A Signing time: Wed 20 Aug 2025 18:02:30 +0000 Manifest this update: Wed 20 Aug 2025 18:02:30 +0000 Manifest next update: Wed 27 Aug 2025 18:02:30 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: UMWL+QiTKbL2Lq3h2EkMJFyoXoqIcfUIsnKUyuDinfk=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: h9Ek+uVHJkd43jpvXLhIeId4TZWOhn+0W2MAspUZuOw=) 3: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: sy4Su4ASjc+OqwWE5jPxA/U7NJeDsxDapY34Q7SzDAE=) 4: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: +QLq15+GCrbTMv3T/U18UwN/WHFJnfWgXMxuf5yq0ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3471 (0xd8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07, serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Aug 20 18:02:30 2025 GMT Not After : Aug 27 18:02:30 2025 GMT Subject: CN=68a60db6-a7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:0c:05:97:5f:d1:71:f5:1d:6c:74:66:28: 8e:39:16:b0:dc:4d:c3:c0:ff:74:68:a2:cc:1f:c4: e0:33:e7:64:b7:32:c2:d6:e3:8f:14:d4:de:7a:e7: 42:65:6d:3e:c3:dc:0b:97:16:42:fe:65:b0:d7:28: 5d:7a:3a:cd:44:5d:28:81:41:ea:78:53:ea:72:b1: 4b:e3:e8:59:c9:5e:3a:ac:11:5d:cb:95:52:6e:8f: e3:13:38:c7:56:af:60:be:d1:38:50:91:84:e1:ba: b5:d6:c6:60:61:7b:ad:8e:33:9b:0a:f0:36:0e:71: 96:0e:18:c5:39:16:d3:38:e2:8c:40:a9:1e:f2:01: 41:70:75:00:bb:4a:78:8f:4a:2a:5c:6e:13:56:40: 5d:d6:6d:38:44:69:db:22:c0:5a:7b:7a:76:40:c8: 07:6b:8b:7a:23:e7:17:21:38:a2:27:3a:15:27:9c: d3:e1:eb:90:8e:f9:f9:de:d3:8a:d9:21:6f:fd:21: b9:3a:79:3f:fb:76:23:ac:b0:d2:5e:55:29:40:d5: 6c:88:f9:ae:0f:90:43:94:20:39:d9:1e:79:e0:1e: 6b:50:52:98:33:bf:d2:33:cd:67:b1:af:18:ba:d4: 1a:8d:cb:c4:e7:3d:ef:3c:cc:69:fa:b7:cf:b5:74: 2c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:36:FD:C9:52:FA:DB:62:0E:F0:34:68:47:64:40:55:FE:5E:AD:AD X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:b6:7f:d1:53:02:a1:ef:d2:12:ea:1e:44:cd:03:31:1c:36: 8a:fa:aa:25:f6:58:ae:a5:f5:6d:20:81:3b:b2:a4:35:a9:05: ca:d9:1f:76:89:7b:24:f2:09:14:40:60:50:db:70:7b:4a:18: d5:df:0a:49:85:09:cd:b9:65:7e:9c:29:f9:3a:38:e6:4c:09: f0:16:d2:15:c5:f0:d1:58:b1:5b:7f:64:b5:6d:85:a4:8d:09: 95:1e:67:f6:f3:90:c2:4f:20:1c:fc:45:c6:ef:0a:c6:af:8a: cf:ff:ab:17:03:29:4a:bf:47:8d:80:e5:35:56:6a:7b:ce:39: 1c:09:9e:0f:3c:43:b8:b6:83:2a:65:4f:20:d0:0c:da:1e:7a: 15:7b:c9:bb:1b:ff:38:11:52:8f:4b:7f:81:a0:f4:15:b6:c7: 0a:c1:d9:28:7c:51:a2:26:94:cf:b0:30:d8:56:71:25:b9:17: de:ef:9f:a3:5e:b5:2e:be:c0:1f:2f:db:c2:f1:66:76:0d:4b: 4f:39:2a:c3:2c:53:65:66:3a:11:0c:90:4c:9f:43:00:37:d1: 04:1a:06:80:1c:af:c3:58:0a:8b:aa:6a:81:7e:56:5e:54:6b: f3:c6:5e:86:f4:f8:97:80:45:f3:eb:77:2f:98:4e:28:e9:08: c7:ed:21:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjUwODIwMTgwMjMwWhcNMjUwODI3MTgwMjMwWjAYMRYwFAYD VQQDEw02OGE2MGRiNi1hN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBgMBZdf0XH1HWx0ZiiOORaw3E3DwP90aKLMH8TgM+dktzLC1uOPFNTeeudC ZW0+w9wLlxZC/mWw1yhdejrNRF0ogUHqeFPqcrFL4+hZyV46rBFdy5VSbo/jEzjH Vq9gvtE4UJGE4bq11sZgYXutjjObCvA2DnGWDhjFORbTOOKMQKke8gFBcHUAu0p4 j0oqXG4TVkBd1m04RGnbIsBae3p2QMgHa4t6I+cXITiiJzoVJ5zT4euQjvn53tOK 2SFv/SG5Onk/+3YjrLDSXlUpQNVsiPmuD5BDlCA52R554B5rUFKYM7/SM81nsa8Y utQajcvE5z3vPMxp+rfPtXQsnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA2/clS +ttiDvA0aEdkQFX+Xq2tMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBStn/RUwKh79IS6h5EzQMxHDaK+qol9liupfVtIIE7sqQ1qQXK2R92 iXsk8gkUQGBQ23B7ShjV3wpJhQnNuWV+nCn5OjjmTAnwFtIVxfDRWLFbf2S1bYWk jQmVHmf285DCTyAc/EXG7wrGr4rP/6sXAylKv0eNgOU1Vmp7zjkcCZ4PPEO4toMq ZU8g0AzaHnoVe8m7G/84EVKPS3+BoPQVtscKwdkofFGiJpTPsDDYVnEluRfe75+j XrUuvsAfL9vC8WZ2DUtPOSrDLFNlZjoRDJBMn0MAN9EEGgaAHK/DWAqLqmqBflZe VGvzxl6G9PiXgEXz63cvmE4o6QjH7SGH -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:31 2025 by rpki-client