$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: AzOw/RH/mfQgcECJ+Qt7Lc7frnBx0W+u/MlpAuv1NJQ= Subject key identifier: 18:03:9F:E5:59:69:00:09:D2:BF:C5:A5:A2:E6:01:E0:3C:57:EB:A2 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 2A Signing time: Thu 21 Aug 2025 07:58:54 +0000 Manifest this update: Thu 21 Aug 2025 07:58:54 +0000 Manifest next update: Thu 28 Aug 2025 07:58:53 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: HrdHQ3r9ZdI4JKLYSeAqYCYKg93uGwc7lG606KicKl4=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Aug 21 07:58:54 2025 GMT Not After : Aug 28 07:58:53 2025 GMT Subject: CN=68a6d1be-5fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c1:93:30:43:78:cb:7c:fc:22:23:c2:b8:cd: 90:e6:32:b9:d1:e6:c8:de:74:68:9d:09:0a:21:d4: 7d:17:a6:bb:9a:b4:f4:d3:02:ba:a0:58:8b:9e:ea: 5a:af:2f:66:0a:25:1a:0c:b4:96:d8:0d:d9:64:b4: fd:46:fb:91:d3:37:4e:83:1b:e6:20:bf:40:68:0c: 60:5c:55:12:46:ec:e7:7a:a2:65:02:94:ed:73:e4: 65:0f:c6:83:aa:e7:2d:de:96:5b:ba:9c:2f:f3:cf: da:6b:b3:cc:24:d7:a0:c3:82:b0:2f:11:d5:f5:ef: 88:52:32:85:94:3f:69:c5:6c:db:8c:33:fa:76:5f: 34:43:f9:fe:21:1d:68:6f:02:6b:8a:68:73:6a:5f: ca:cf:16:98:a2:c4:d9:c0:29:3c:5f:48:a4:80:e3: 14:ff:07:9e:4c:90:6d:c4:e0:2c:b7:d1:28:d1:db: 6e:df:18:d8:05:bb:17:f7:8c:14:68:35:a2:e9:77: ee:8f:b0:38:b5:80:ce:6a:84:ac:2b:92:f6:f4:8c: 86:96:97:1b:5e:8b:c1:17:7e:82:bd:d7:ce:0d:f2: 5c:6d:99:5f:d2:a8:94:83:cb:3c:6e:67:cf:59:8c: 4e:ff:4a:3f:47:6c:11:f7:32:11:9c:d8:e3:e2:b7: df:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:03:9F:E5:59:69:00:09:D2:BF:C5:A5:A2:E6:01:E0:3C:57:EB:A2 X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:58:1b:f4:8d:36:5c:32:66:ea:7f:b8:b9:a9:60:0e:57:78: 9a:c5:71:1a:0a:06:1a:db:1e:a2:fd:73:a0:60:a9:c6:b9:18: c8:cc:a0:ee:e8:36:9f:7e:22:83:ee:ef:ec:9c:24:43:0e:81: 07:aa:be:21:65:08:19:5a:72:ab:fa:81:4e:c6:e6:c2:c4:d9: d5:5d:76:d4:02:9d:b0:ea:d4:a5:43:1d:fe:af:c9:47:5c:48: 70:50:9c:46:49:42:67:cd:63:a3:78:96:af:86:ab:8f:cb:0e: 1c:b8:f1:4c:d1:b4:07:81:d8:f2:df:61:dd:a1:24:1f:a1:c1: 6e:0d:96:c2:ea:fe:da:85:c6:3d:fe:2d:77:d2:bd:5c:4d:e7: 7b:4c:19:7a:fe:7c:e8:f8:23:72:64:01:22:69:df:d4:de:90: 1d:5d:bc:a2:33:d4:33:de:b2:cc:f6:82:79:58:e3:e2:c4:96: ea:02:59:a6:0d:e5:28:fa:61:50:38:b1:a3:a4:e0:7b:b7:a4: 5e:7c:c6:73:a3:5c:d9:6a:de:af:d1:c4:ec:c1:26:52:4d:9a: 09:36:44:04:a1:b0:43:fc:f3:0d:5e:73:a2:ca:b0:74:b7:a9: 5b:54:af:c0:f5:0f:b6:9b:12:6a:cb:f7:86:c9:88:8a:3a:e4: 61:85:03:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTA4MjEwNzU4NTRaFw0yNTA4MjgwNzU4NTNaMBgxFjAUBgNV BAMTDTY4YTZkMWJlLTVmYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCswZMwQ3jLfPwiI8K4zZDmMrnR5sjedGidCQoh1H0XpruatPTTArqgWIue6lqv L2YKJRoMtJbYDdlktP1G+5HTN06DG+Ygv0BoDGBcVRJG7Od6omUClO1z5GUPxoOq 5y3ellu6nC/zz9prs8wk16DDgrAvEdX174hSMoWUP2nFbNuMM/p2XzRD+f4hHWhv AmuKaHNqX8rPFpiixNnAKTxfSKSA4xT/B55MkG3E4Cy30SjR227fGNgFuxf3jBRo NaLpd+6PsDi1gM5qhKwrkvb0jIaWlxtei8EXfoK9184N8lxtmV/SqJSDyzxuZ89Z jE7/Sj9HbBH3MhGc2OPit99pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGAOf5Vlp AAnSv8WlouYB4DxX66IwHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0Y1REI3QTE2NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZE Y3JrVE95bDQxbUF6cHdQSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABJYG/SNNlwyZup/uLmpYA5XeJrFcRoKBhrbHqL9c6Bgqca5GMjMoO7o Np9+IoPu7+ycJEMOgQeqviFlCBlacqv6gU7G5sLE2dVddtQCnbDq1KVDHf6vyUdc SHBQnEZJQmfNY6N4lq+Gq4/LDhy48UzRtAeB2PLfYd2hJB+hwW4NlsLq/tqFxj3+ LXfSvVxN53tMGXr+fOj4I3JkASJp39TekB1dvKIz1DPessz2gnlY4+LEluoCWaYN 5Sj6YVA4saOk4Hu3pF58xnOjXNlq3q/RxOzBJlJNmgk2RAShsEP88w1ec6LKsHS3 qVtUr8D1D7abEmrL94bJiIo65GGFA9U= -----END CERTIFICATE-----Generated at Sat Aug 23 03:24:08 2025 by rpki-client