$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: LMKK88oXyiU8F3N4W4ruQ4nKhKZEUK7/jbquDMGCNiM= Subject key identifier: 94:A3:88:90:AC:6C:6F:91:EC:B1:D1:AB:E6:6A:AE:6F:7F:E4:B6:02 Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0B16 Signing time: Sun 24 Aug 2025 19:19:23 +0000 Manifest this update: Sun 24 Aug 2025 19:19:22 +0000 Manifest next update: Sun 31 Aug 2025 19:19:22 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: mGXOiv1hunmQGQUFgFULQKaPZNRxOyn6JDdB2skLfYw=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: +JzejbKc1NZP24NoPrMtMcVkZZ9hm7s276rW0zhe0b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Aug 24 19:19:22 2025 GMT Not After : Aug 31 19:19:22 2025 GMT Subject: CN=68ab65ba-ff69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:8e:c3:e2:6f:5a:b0:c8:42:1c:ce:c5:18: af:e3:65:39:fe:76:eb:be:33:b3:7b:64:e3:15:6a: 6b:4e:c1:ef:5f:9f:f6:65:4e:62:39:81:aa:6e:ff: 4f:e4:bf:d9:ce:71:3b:96:c0:dc:60:0d:bf:34:f6: 42:4b:9c:8b:79:36:62:13:c0:b9:9d:d3:14:8f:18: 18:20:30:af:50:70:7c:83:97:07:ff:7e:11:ac:25: 68:ab:23:ec:f7:00:66:17:bc:8b:52:6b:87:53:9b: 5b:b0:5f:1d:04:a6:0e:9a:15:5e:a7:7c:88:75:21: f7:1e:ef:00:30:fe:b9:ba:e6:54:44:85:3c:64:e3: 74:c7:e8:03:19:1e:42:41:2b:62:d7:d7:0e:9e:b2: 1d:df:a3:11:f3:2b:ab:8a:28:d8:f9:e2:62:f7:25: 46:da:24:2c:26:5f:78:ff:42:ce:f8:af:a3:a1:37: 1c:39:8a:da:6b:5a:92:27:38:a2:ef:07:c0:17:da: ec:88:1c:2f:cc:81:a1:c0:97:f3:c6:c4:78:74:e3: 48:00:b8:b8:22:d8:57:23:f4:be:05:f5:28:e8:ed: 99:39:ca:0f:75:9d:3c:fb:93:bd:51:8f:c4:6e:d8: 4e:4a:c5:5b:ea:32:38:4f:95:da:e5:bf:4d:f0:d1: e6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A3:88:90:AC:6C:6F:91:EC:B1:D1:AB:E6:6A:AE:6F:7F:E4:B6:02 X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:a1:fd:00:d3:1d:d1:c9:56:03:17:bd:3a:47:28:13:a4:ce: 0f:99:bc:69:7c:ae:d6:ee:bc:0a:01:69:06:78:70:21:d1:c7: 7b:5e:fa:5c:de:af:29:f0:1d:0e:70:cd:b3:a9:6a:d1:6a:24: 06:39:24:e8:36:70:2e:96:79:66:1f:66:61:5f:e7:72:f8:b4: 0a:0e:ee:2d:62:e1:0c:1a:c3:97:c3:c2:0e:9c:32:9d:5a:52: 5c:a5:cb:36:17:50:14:3f:2f:85:15:d8:a1:88:a3:bf:7c:c3: 0f:8d:79:30:92:41:d6:a2:b6:12:6f:45:69:29:40:00:3a:bb: 95:65:6c:56:ad:96:72:72:a0:04:da:65:03:44:f1:f5:d9:ac: f3:e6:44:e8:ce:17:55:2f:81:bd:a7:2c:9f:24:f0:f7:40:d4: 7d:39:2c:28:12:ed:d4:1f:1d:d0:9e:02:d6:b8:d5:ac:0b:87: 8a:59:15:9a:81:94:2b:2d:76:d5:41:4d:3c:cc:16:5e:bf:8e: a1:62:2a:8c:c5:80:b3:4d:7e:ac:8c:3a:65:76:e9:ff:e2:aa: 18:95:0a:ab:b7:98:77:42:bd:7e:50:f5:3f:ac:eb:e1:ab:c1: 17:23:8a:c9:ad:02:70:e6:96:37:82:6b:43:ac:b3:39:c2:67: 8b:1f:85:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUwODI0MTkxOTIyWhcNMjUwODMxMTkxOTIyWjAYMRYwFAYD VQQDEw02OGFiNjViYS1mZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt66Ow+JvWrDIQhzOxRiv42U5/nbrvjOze2TjFWprTsHvX5/2ZU5iOYGqbv9P 5L/ZznE7lsDcYA2/NPZCS5yLeTZiE8C5ndMUjxgYIDCvUHB8g5cH/34RrCVoqyPs 9wBmF7yLUmuHU5tbsF8dBKYOmhVep3yIdSH3Hu8AMP65uuZURIU8ZON0x+gDGR5C QSti19cOnrId36MR8yuriijY+eJi9yVG2iQsJl94/0LO+K+joTccOYraa1qSJzii 7wfAF9rsiBwvzIGhwJfzxsR4dONIALi4IthXI/S+BfUo6O2ZOcoPdZ08+5O9UY/E bthOSsVb6jI4T5Xa5b9N8NHmNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSjiJCs bG+R7LHRq+Zqrm9/5LYCMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYof0A0x3RyVYDF706RygTpM4PmbxpfK7W7rwKAWkGeHAh0cd7Xvpc 3q8p8B0OcM2zqWrRaiQGOSToNnAulnlmH2ZhX+dy+LQKDu4tYuEMGsOXw8IOnDKd WlJcpcs2F1AUPy+FFdihiKO/fMMPjXkwkkHWorYSb0VpKUAAOruVZWxWrZZycqAE 2mUDRPH12azz5kTozhdVL4G9pyyfJPD3QNR9OSwoEu3UHx3QngLWuNWsC4eKWRWa gZQrLXbVQU08zBZev46hYiqMxYCzTX6sjDpldun/4qoYlQqrt5h3Qr1+UPU/rOvh q8EXI4rJrQJw5pY3gmtDrLM5wmeLH4Wd -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:38 2025 by rpki-client