$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: M97RMCW3yXOxEtWgkXNidyVO7ThF/KrjdfzIrug0XL0= Subject key identifier: 6C:2B:DE:A8:1B:2F:08:9C:D0:13:07:C7:B7:F2:DE:7A:99:38:EE:7E Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 11AD Signing time: Wed 20 Aug 2025 17:48:00 +0000 Manifest this update: Wed 20 Aug 2025 17:47:59 +0000 Manifest next update: Wed 27 Aug 2025 17:47:59 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: /xksvYojZ+sbgdyprky5uzisuXecP99Z3Fk2OVI8H0A=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 17:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Aug 20 17:47:59 2025 GMT Not After : Aug 27 17:47:59 2025 GMT Subject: CN=68a60a4f-d7f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4b:e7:d9:19:08:ce:67:85:a2:23:27:91:cb: 88:d9:c7:46:23:4f:d6:9b:5f:d1:3f:85:0f:bd:30: 62:77:b1:2a:1f:9d:9c:a9:c3:0e:40:53:14:c1:18: 7c:35:32:2d:90:f4:5c:54:b6:99:a8:7c:ec:54:83: be:59:e4:fa:14:0f:69:51:91:60:22:ca:ea:a9:93: 60:64:42:bf:36:6c:f1:f9:51:7c:dc:b1:ec:9c:b5: 64:2e:80:57:79:ae:94:0c:7a:ba:cc:33:83:b6:d6: 90:25:f1:96:88:ba:e4:cd:7d:d2:b8:4f:31:b7:4d: cb:c2:22:76:e4:5f:91:27:72:ae:dc:e4:3a:99:8f: c9:1f:c0:b8:9a:da:0b:b6:d4:7c:97:59:4f:90:1d: f8:bf:6f:83:dd:7a:c5:c8:65:48:0f:a9:6a:69:5f: 84:43:ce:1a:5e:58:6d:ee:35:59:8e:78:58:72:5b: 17:18:6e:19:f1:ef:b5:e1:a7:47:a8:7f:85:4b:03: 40:6a:b1:8f:e5:c1:72:69:e0:5c:a7:41:05:a9:a6: 77:5e:b5:1f:df:ed:c4:fd:17:55:d0:4a:44:47:a2: 44:e1:04:e2:26:0d:a3:0c:7a:76:59:b1:58:91:68: d1:29:21:53:aa:2e:a4:64:fe:5f:70:88:e3:f3:9f: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2B:DE:A8:1B:2F:08:9C:D0:13:07:C7:B7:F2:DE:7A:99:38:EE:7E X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:96:1b:6d:f0:67:7d:40:93:f8:64:d2:87:26:1e:2b:8b:9a: 94:43:86:f1:f2:3f:ee:7e:9e:ba:4e:a1:91:cb:c2:72:15:c9: e3:ed:59:e8:b6:6a:7b:fa:72:75:f3:a0:39:73:6d:64:2e:c6: c4:bb:2f:f6:9b:d2:57:c4:f7:9f:4a:c1:88:05:5e:68:2d:44: 51:90:71:8f:b7:6f:31:e0:db:1c:84:2d:08:ae:03:50:c2:79: 33:7c:90:37:90:5e:41:57:5d:d2:2c:16:40:59:1f:93:82:2e: 24:2c:b5:0c:3a:2e:13:8e:a6:34:66:21:f8:8d:31:a9:16:04: 4f:21:52:ff:b8:d9:db:48:e5:82:89:b4:d3:fa:54:1e:33:27: 9d:7d:5d:c8:d3:df:39:c1:8b:c3:b6:62:f2:10:57:c4:a9:11: fd:f4:2b:8a:20:2c:61:f2:9e:ad:f5:af:a0:37:d5:38:4b:eb: 70:36:cc:64:bf:e5:6d:9d:15:45:a3:9d:f9:8f:87:33:7c:83: 3d:e5:1e:ca:19:55:24:16:5c:21:44:8f:d6:6c:e3:b9:e2:5a: b2:45:f2:3a:d6:6a:b9:ce:cd:47:31:ad:6b:39:26:51:90:15: c8:e2:93:ac:b9:41:bd:2c:ab:e1:ff:ad:bb:38:43:05:8a:a5: df:75:3e:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwODIwMTc0NzU5WhcNMjUwODI3MTc0NzU5WjAYMRYwFAYD VQQDEw02OGE2MGE0Zi1kN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Uvn2RkIzmeFoiMnkcuI2cdGI0/Wm1/RP4UPvTBid7EqH52cqcMOQFMUwRh8 NTItkPRcVLaZqHzsVIO+WeT6FA9pUZFgIsrqqZNgZEK/Nmzx+VF83LHsnLVkLoBX ea6UDHq6zDODttaQJfGWiLrkzX3SuE8xt03LwiJ25F+RJ3Ku3OQ6mY/JH8C4mtoL ttR8l1lPkB34v2+D3XrFyGVID6lqaV+EQ84aXlht7jVZjnhYclsXGG4Z8e+14adH qH+FSwNAarGP5cFyaeBcp0EFqaZ3XrUf3+3E/RdV0EpER6JE4QTiJg2jDHp2WbFY kWjRKSFTqi6kZP5fcIjj85/YeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwr3qgb Lwic0BMHx7fy3nqZOO5+MB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5lhtt8Gd9QJP4ZNKHJh4ri5qUQ4bx8j/ufp66TqGRy8JyFcnj7Vno tmp7+nJ186A5c21kLsbEuy/2m9JXxPefSsGIBV5oLURRkHGPt28x4NschC0IrgNQ wnkzfJA3kF5BV13SLBZAWR+Tgi4kLLUMOi4TjqY0ZiH4jTGpFgRPIVL/uNnbSOWC ibTT+lQeMyedfV3I0985wYvDtmLyEFfEqRH99CuKICxh8p6t9a+gN9U4S+twNsxk v+VtnRVFo535j4czfIM95R7KGVUkFlwhRI/WbOO54lqyRfI61mq5zs1HMa1rOSZR kBXI4pOsuUG9LKvh/627OEMFiqXfdT6x -----END CERTIFICATE-----Generated at Fri Aug 22 16:24:16 2025 by rpki-client