$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: mgFsa/l7G5vyZD8LJYVFgHAzOCGlAnn0GcRVu9oA6aY= Subject key identifier: 1A:B1:23:20:5E:09:4F:9C:82:A1:3F:4B:F3:80:A6:26:E2:3A:8C:CB Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 61 Signing time: Sat 19 Jul 2025 07:28:11 +0000 Manifest this update: Sat 19 Jul 2025 07:28:11 +0000 Manifest next update: Sat 26 Jul 2025 07:28:11 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: PteiGDMjIeJcDMne91KclYrVKHAEA1FjsWbuuamkW3Q=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jul 19 07:28:11 2025 GMT Not After : Jul 26 07:28:11 2025 GMT Subject: CN=687b490b-c6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d6:1e:57:14:73:b1:91:7a:3d:cc:5a:76:59: 44:d6:5c:88:5f:e8:29:33:d0:ae:73:50:53:5c:94: df:58:59:5d:50:78:82:fd:ba:75:ae:92:d0:74:f5: 2d:8c:cb:27:80:16:40:f9:f6:eb:59:75:06:a7:cf: 4b:f9:88:1e:8c:8f:8e:ba:06:fe:0e:65:fc:31:2b: f9:1c:1b:82:cd:ae:71:96:78:82:47:9f:bc:ef:04: c5:38:d9:8b:a1:74:9d:ee:11:8c:b5:85:61:e7:82: 25:4e:99:20:8b:6a:ee:d9:b4:be:80:28:7d:8c:91: 4d:3a:5f:59:95:3b:63:c5:f3:23:38:ba:1a:40:27: 46:c8:56:bf:cd:ea:4c:a2:63:17:83:2c:ce:1c:59: a6:39:e9:e4:ce:ad:9d:53:c4:41:47:64:d6:1a:d0: 01:c6:0c:dd:ad:d2:95:10:4c:b5:f3:6b:40:5b:0b: 2f:0e:15:9a:e3:14:47:65:27:7f:73:45:04:03:f5: 4f:60:db:03:9f:bc:e7:d1:f6:94:69:04:3e:88:cc: df:06:79:67:c4:36:f8:74:7e:7d:92:2b:f5:6c:ac: 40:5e:df:e5:61:bd:d3:9b:40:08:5e:fd:b7:16:60: bc:5c:b5:cb:1d:ab:1a:30:ac:89:9d:68:ec:44:cd: 54:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B1:23:20:5E:09:4F:9C:82:A1:3F:4B:F3:80:A6:26:E2:3A:8C:CB X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:b6:17:e8:3a:34:19:12:9b:46:6e:a3:99:35:db:21:99:00: a9:f5:ae:f9:89:f4:d2:64:1e:57:51:7e:ae:28:75:a3:61:bb: 56:29:7b:40:cc:be:b8:b0:83:bc:7c:1b:86:c1:64:fb:db:28: d6:60:be:d0:35:9b:61:62:d3:16:6a:92:47:71:d8:f1:27:44: ce:13:98:f6:cb:ce:92:15:33:0a:0b:58:47:34:c3:a7:24:40: d5:5a:fc:57:57:1f:72:f9:77:09:b5:2c:ff:cf:82:5f:5c:b0: 2a:de:2f:8e:87:a3:54:78:aa:76:ad:68:3c:74:36:42:5f:20: 01:c2:76:93:91:fb:1d:19:ff:38:b1:54:a6:22:bd:85:86:94: d0:d5:93:a3:c8:d6:09:0e:aa:c1:ee:ce:36:10:a6:9c:ac:3c: a3:4b:31:4b:5d:7c:f1:19:1a:15:14:91:7b:fa:09:1d:9a:ef: a1:2f:38:61:b1:92:01:2f:9d:11:70:90:45:fd:83:ec:55:1c: 54:08:1c:24:75:a4:04:e5:72:7d:36:81:11:5f:c3:0f:42:93: 18:2b:69:4b:d0:11:aa:b1:29:f5:08:ac:68:0c:dc:59:c7:b1: e9:2c:c9:95:60:d2:69:80:3b:a8:b8:af:aa:d5:7d:28:ce:9b: b6:14:87:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA3MTkwNzI4MTFaFw0yNTA3MjYwNzI4MTFaMBgxFjAUBgNV BAMTDTY4N2I0OTBiLWM2ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS1h5XFHOxkXo9zFp2WUTWXIhf6Ckz0K5zUFNclN9YWV1QeIL9unWuktB09S2M yyeAFkD59utZdQanz0v5iB6Mj466Bv4OZfwxK/kcG4LNrnGWeIJHn7zvBMU42Yuh dJ3uEYy1hWHngiVOmSCLau7ZtL6AKH2MkU06X1mVO2PF8yM4uhpAJ0bIVr/N6kyi YxeDLM4cWaY56eTOrZ1TxEFHZNYa0AHGDN2t0pUQTLXza0BbCy8OFZrjFEdlJ39z RQQD9U9g2wOfvOfR9pRpBD6IzN8GeWfENvh0fn2SK/VsrEBe3+VhvdObQAhe/bcW YLxctcsdqxowrImdaOxEzVQvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGrEjIF4J T5yCoT9L84CmJuI6jMswHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKK2F+g6NBkSm0Zuo5k12yGZAKn1rvmJ9NJkHldRfq4odaNhu1Ype0DM vriwg7x8G4bBZPvbKNZgvtA1m2Fi0xZqkkdx2PEnRM4TmPbLzpIVMwoLWEc0w6ck QNVa/FdXH3L5dwm1LP/Pgl9csCreL46Ho1R4qnataDx0NkJfIAHCdpOR+x0Z/zix VKYivYWGlNDVk6PI1gkOqsHuzjYQppysPKNLMUtdfPEZGhUUkXv6CR2a76EvOGGx kgEvnRFwkEX9g+xVHFQIHCR1pATlcn02gRFfww9CkxgraUvQEaqxKfUIrGgM3FnH seksyZVg0mmAO6i4r6rVfSjOm7YUh+I= -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:29 2025 by rpki-client