$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: tYsw6SEFvtNMjOB8IIOovhVlpatQyf042xdsDcQvnNo= Subject key identifier: 15:4C:DA:9C:43:9A:9B:5A:A2:CD:FB:65:06:38:2D:F8:66:AD:03:06 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07B8 Signing time: Wed 20 Aug 2025 21:18:48 +0000 Manifest this update: Wed 20 Aug 2025 21:18:48 +0000 Manifest next update: Wed 27 Aug 2025 21:18:48 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: OxJl9/7kTxJgL3F/62FuKPXjsoDsk0fbif5Bgz4wIc8=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:18:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Aug 20 21:18:48 2025 GMT Not After : Aug 27 21:18:48 2025 GMT Subject: CN=68a63bb8-5627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:6c:0d:e0:28:7f:91:7e:8d:6f:36:70:71: ac:ef:4c:88:27:b6:19:f5:c2:1c:af:22:25:20:f0: 99:33:b9:d4:f6:cb:e8:de:53:8e:59:7e:9b:c3:0a: 3a:35:ed:7c:47:6e:d7:5f:e9:bd:25:cf:10:98:1f: ca:84:20:bd:c5:40:ea:b1:6a:74:26:a5:c8:37:b9: 45:de:ee:3a:09:ae:3a:5c:fc:72:f2:20:55:e4:da: 4d:47:3d:c0:82:8e:ef:f9:ae:4b:51:95:a8:a8:6b: 90:5a:6b:4a:4c:65:52:50:34:a8:97:08:03:4a:6b: f8:b9:08:c4:aa:1d:f5:08:32:d8:4d:fe:aa:e9:1f: 72:86:05:b5:4c:20:d7:79:71:12:06:15:03:45:fb: c7:96:d2:21:c4:66:9a:b0:12:3b:19:fc:0d:9a:5d: d9:37:63:c5:c8:f6:07:6a:dd:5b:72:6d:60:5d:7b: d2:70:b5:45:af:e2:43:9f:21:5f:a6:d6:12:b4:bb: 73:41:98:56:f5:04:c3:52:a1:b2:a0:53:2d:19:b2: 93:ef:59:5d:0c:55:20:a4:40:c3:cb:83:76:9b:91: 17:c1:ba:72:44:f0:ff:ba:19:88:7d:50:dc:d3:f0: e7:28:5f:0d:98:9f:3a:c1:fe:52:33:48:13:8d:3d: 8e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4C:DA:9C:43:9A:9B:5A:A2:CD:FB:65:06:38:2D:F8:66:AD:03:06 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fb:8c:f8:0d:9f:cc:3a:a0:fb:d9:a1:47:5d:7d:de:96:24: 35:1b:9f:c1:41:f6:0e:b9:29:d3:68:9a:2f:12:cd:d1:8f:17: 0c:e2:be:28:29:ec:51:8d:cf:2a:37:9a:d2:d1:1c:8f:9e:56: 0a:74:8d:95:80:6a:ff:af:17:4d:29:59:16:0c:22:5e:83:98: d4:a5:bd:d4:9c:bd:f6:fb:41:e1:ca:fe:c7:3b:24:a9:e7:3c: 95:1a:fa:42:c3:a7:93:18:6c:4f:30:2f:9d:0f:b4:58:2d:00: 3a:86:29:55:bf:57:97:aa:52:c0:93:ed:f2:46:94:f5:80:96: bf:78:34:d6:b2:ea:9f:df:64:1c:2a:d9:6c:fa:a0:fd:13:e8: 2f:d5:ca:f3:bc:96:8f:fd:ab:a9:26:4c:28:09:d6:66:4f:50: 69:f1:87:83:0a:d1:c4:5e:9d:53:ee:08:e4:58:4d:55:89:f9: 01:d5:8c:ee:58:1b:0b:4f:cf:f3:f5:6b:88:12:e8:00:29:d6: 23:41:33:11:3f:83:a4:89:8e:84:da:c9:9c:25:c6:e0:fb:92: 25:b6:9d:cb:d2:f6:36:8b:9e:72:a5:ea:82:ec:4f:fa:51:bd: ab:9c:f7:78:49:eb:76:26:e6:62:4e:cd:37:63:08:76:54:70: 17:04:f8:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwODIwMjExODQ4WhcNMjUwODI3MjExODQ4WjAYMRYwFAYD VQQDEw02OGE2M2JiOC01NjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnq1sDeAof5F+jW82cHGs70yIJ7YZ9cIcryIlIPCZM7nU9svo3lOOWX6bwwo6 Ne18R27XX+m9Jc8QmB/KhCC9xUDqsWp0JqXIN7lF3u46Ca46XPxy8iBV5NpNRz3A go7v+a5LUZWoqGuQWmtKTGVSUDSolwgDSmv4uQjEqh31CDLYTf6q6R9yhgW1TCDX eXESBhUDRfvHltIhxGaasBI7GfwNml3ZN2PFyPYHat1bcm1gXXvScLVFr+JDnyFf ptYStLtzQZhW9QTDUqGyoFMtGbKT71ldDFUgpEDDy4N2m5EXwbpyRPD/uhmIfVDc 0/DnKF8NmJ86wf5SM0gTjT2ONwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVM2pxD mptaos37ZQY4LfhmrQMGMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb+4z4DZ/MOqD72aFHXX3eliQ1G5/BQfYOuSnTaJovEs3RjxcM4r4o KexRjc8qN5rS0RyPnlYKdI2VgGr/rxdNKVkWDCJeg5jUpb3UnL32+0Hhyv7HOySp 5zyVGvpCw6eTGGxPMC+dD7RYLQA6hilVv1eXqlLAk+3yRpT1gJa/eDTWsuqf32Qc Ktls+qD9E+gv1crzvJaP/aupJkwoCdZmT1Bp8YeDCtHEXp1T7gjkWE1VifkB1Yzu WBsLT8/z9WuIEugAKdYjQTMRP4OkiY6E2smcJcbg+5Iltp3L0vY2i55ypeqC7E/6 Ub2rnPd4Set2JuZiTs03Ywh2VHAXBPgx -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:39 2025 by rpki-client