$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: G4bYKzmmqeCHkI2V6lHVKT3kSq8vCzLb2TBM10rYS9A= Subject key identifier: 58:7E:6A:B2:05:01:3A:CE:68:CD:A4:EA:9A:E9:35:0B:39:CD:DF:9E Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 7A Signing time: Fri 05 Sep 2025 07:24:12 +0000 Manifest this update: Fri 05 Sep 2025 07:24:11 +0000 Manifest next update: Fri 12 Sep 2025 07:24:11 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: M+WY/fFoC+7s5RDECX56c3D0GaJuZd8FgPcY6og5ngY=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:24:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Sep 5 07:24:11 2025 GMT Not After : Sep 12 07:24:11 2025 GMT Subject: CN=68ba901c-03ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:71:1d:bc:17:59:7a:26:c9:e2:ae:33:99:5f: c2:fe:9c:cc:1a:31:97:23:97:06:87:98:70:87:08: 6b:17:0b:b1:82:7a:a9:64:76:62:70:7a:f5:91:b6: 35:0d:c4:e7:9b:c9:e8:e5:b0:75:4c:2b:cb:44:2d: bd:68:fe:f5:d8:99:b2:ee:39:56:95:02:9d:ea:73: 01:33:84:2a:10:72:93:5c:26:fa:7d:fd:4f:90:37: 38:d2:58:5e:3f:c6:ac:84:ec:c9:91:02:54:d0:af: ab:d9:85:0f:1a:c3:0c:3c:dd:be:52:1f:1f:47:fd: e9:d7:99:1d:f6:e1:77:50:c1:1b:33:24:03:98:51: 56:30:5b:a3:e4:d2:e7:de:bb:4f:25:1f:3c:00:6d: 26:d8:f0:36:ce:50:61:8d:f2:c4:96:3a:35:8e:1d: 3b:9b:48:96:5a:82:8d:8a:ae:c1:18:ea:82:b5:07: 75:73:05:23:70:78:90:90:92:7c:81:62:f3:c7:00: 58:29:95:25:ec:eb:90:2b:7a:41:a8:d0:5b:66:92: 68:44:fb:b8:31:35:f4:15:1e:75:7b:56:05:76:a0: 92:78:02:e3:2d:6b:b5:58:22:0e:79:3c:f2:b0:17: 69:3c:06:33:dc:fe:bf:81:5e:ec:7b:bf:d2:ad:66: 1b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7E:6A:B2:05:01:3A:CE:68:CD:A4:EA:9A:E9:35:0B:39:CD:DF:9E X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:5b:b1:7b:46:4e:32:2d:72:c1:0e:d2:82:4e:3a:c7:c9:32: 9f:f9:a3:40:70:4d:51:9d:d9:8d:0f:0b:6c:ad:ba:4e:04:4d: d6:47:7c:47:aa:14:b5:1a:11:81:d6:02:48:3f:b5:8d:e5:51: af:ca:d9:5b:26:d3:1d:a1:3c:4b:82:c8:a3:a6:14:49:78:38: b1:1f:f4:a5:68:96:a1:71:27:69:c0:53:67:00:29:16:4b:e8: cc:77:31:d5:a6:a8:1a:c4:21:c3:a1:1a:21:db:ca:e5:cf:27: b7:26:01:12:41:a6:8e:19:11:95:47:de:c6:8e:45:13:3c:34: 59:39:17:d6:84:d2:bf:38:bc:4a:1a:88:fc:58:f0:62:ba:17: 78:ef:41:60:4d:df:b4:a6:b5:9b:e0:b3:8e:58:75:94:f2:ff: af:a2:d7:a6:ee:dd:2a:c1:db:70:3b:0c:b6:c1:a1:3d:0a:38: 28:6e:b9:2f:ae:07:17:51:1d:e7:4e:bf:94:5a:8a:67:dd:72: da:e7:99:22:d5:1f:a9:a6:5d:70:88:57:0e:24:39:d7:a0:47: 98:d0:12:7b:a5:c1:ab:78:74:da:73:b3:d6:c8:53:ba:69:ca: c1:01:77:70:c0:8b:db:b1:d8:42:c8:60:e4:1f:ed:37:9a:fe: 87:12:17:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjUwOTA1MDcyNDExWhcNMjUwOTEyMDcyNDExWjAYMRYwFAYD VQQDEw02OGJhOTAxYy0wM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+XEdvBdZeibJ4q4zmV/C/pzMGjGXI5cGh5hwhwhrFwuxgnqpZHZicHr1kbY1 DcTnm8no5bB1TCvLRC29aP712Jmy7jlWlQKd6nMBM4QqEHKTXCb6ff1PkDc40lhe P8ashOzJkQJU0K+r2YUPGsMMPN2+Uh8fR/3p15kd9uF3UMEbMyQDmFFWMFuj5NLn 3rtPJR88AG0m2PA2zlBhjfLEljo1jh07m0iWWoKNiq7BGOqCtQd1cwUjcHiQkJJ8 gWLzxwBYKZUl7OuQK3pBqNBbZpJoRPu4MTX0FR51e1YFdqCSeALjLWu1WCIOeTzy sBdpPAYz3P6/gV7se7/SrWYbCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh+arIF ATrOaM2k6prpNQs5zd+eMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDkW7F7Rk4yLXLBDtKCTjrHyTKf+aNAcE1RndmNDwtsrbpOBE3WR3xH qhS1GhGB1gJIP7WN5VGvytlbJtMdoTxLgsijphRJeDixH/SlaJahcSdpwFNnACkW S+jMdzHVpqgaxCHDoRoh28rlzye3JgESQaaOGRGVR97GjkUTPDRZORfWhNK/OLxK Goj8WPBiuhd470FgTd+0prWb4LOOWHWU8v+votem7t0qwdtwOwy2waE9Cjgobrkv rgcXUR3nTr+UWopn3XLa55ki1R+ppl1wiFcOJDnXoEeY0BJ7pcGreHTac7PWyFO6 acrBAXdwwIvbsdhCyGDkH+03mv6HEhcW -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:18 2025 by rpki-client