$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: 7ZCJeWtONA2wffIMLemz+3peV7ZL95UAt+3uNhLYBIM= Subject key identifier: ED:39:36:0B:05:16:ED:91:90:41:6F:CD:0A:31:48:1A:56:57:99:1F Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B4A Signing time: Fri 22 Aug 2025 19:16:15 +0000 Manifest this update: Fri 22 Aug 2025 19:16:15 +0000 Manifest next update: Fri 29 Aug 2025 19:16:15 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: 82p1DDh0qOetqULMOnOa4Nz+o0pgI7QGqgYB7TnX1NM=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Aug 22 19:16:15 2025 GMT Not After : Aug 29 19:16:15 2025 GMT Subject: CN=68a8c1ff-7006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e6:f1:9c:36:0c:7f:8c:c0:fd:dd:7d:f6:76: 51:6e:e8:3b:20:44:a5:95:38:64:54:98:10:d0:38: d8:69:4e:ec:5b:07:8f:e6:5b:1a:64:c9:9b:94:2b: 0d:9f:4a:87:cc:39:3c:c1:75:77:36:fb:73:14:45: 20:22:72:15:6b:02:d7:46:70:ce:52:1d:92:6e:ea: 00:2b:3e:25:ef:ef:55:6c:c9:d5:0c:5c:56:69:fb: 5d:2d:1a:ef:a6:1b:0d:16:54:8f:19:e6:96:57:9e: d2:4b:fd:ac:4a:da:12:e9:16:7d:10:1e:29:53:61: 3d:24:be:8e:44:59:fe:ac:b7:21:b5:87:d4:ee:5c: 50:ae:c8:e6:6f:8d:a5:30:23:10:32:6d:4c:b3:55: 28:55:0b:18:cb:95:e8:8d:c5:ed:0d:33:a8:07:8e: 36:b1:3c:72:1b:fe:89:a0:da:0b:3f:3f:08:cd:65: 87:9d:30:db:40:6e:df:5f:92:03:34:52:94:1b:48: b8:8c:e1:c7:ab:4c:e1:70:87:e6:f0:08:21:80:70: 5d:d1:57:d5:9d:b2:5a:2e:9b:ee:ca:d4:83:d8:8d: 91:bf:b8:cf:c3:d3:79:22:9f:cf:38:11:7a:54:d1: 4f:68:08:3a:3c:5e:0c:8b:81:ad:8f:22:6e:16:e9: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:39:36:0B:05:16:ED:91:90:41:6F:CD:0A:31:48:1A:56:57:99:1F X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:c6:4d:23:72:b8:34:e4:f1:55:82:44:bb:ab:3c:66:49:9e: f5:58:32:82:9d:bd:c5:fe:04:25:02:28:a1:b0:92:20:69:79: 57:04:16:67:5f:12:78:8f:78:6a:07:f3:8e:90:fd:8d:d4:3a: 49:19:a2:f6:03:63:56:e9:21:38:8a:08:a0:a8:92:b5:8b:25: b1:d2:7e:b1:55:a6:56:9b:e6:c2:e2:d4:f2:f9:e4:14:f5:ca: d5:27:19:81:64:4e:dd:da:a4:84:17:57:47:aa:c5:6a:15:be: 8d:a9:ab:8d:6f:59:30:b2:d9:ca:81:e9:71:f8:4f:ac:a4:54: ca:cf:d4:c9:79:c2:dc:de:99:fd:84:7b:c8:cf:df:b9:dc:03: 5e:f3:3f:a4:a1:ab:ab:85:0b:76:78:a5:32:4c:66:dd:99:4d: 22:2a:ea:a5:25:a2:fb:00:4c:fc:5e:55:ad:83:9d:24:45:ee: ec:9e:be:f0:d6:99:8f:74:6c:d5:07:e3:df:bf:f6:b3:fa:e0: ac:03:44:68:8f:0d:8a:cf:7d:d4:3c:2e:ff:11:bf:7a:a7:a5: be:af:ec:da:20:1d:4a:a1:c7:d4:6c:47:06:9d:e7:b6:d8:50: 5f:e1:7f:2f:ae:c1:fd:94:f5:d0:42:ce:4f:82:9c:f7:a7:13: 18:d2:dc:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwODIyMTkxNjE1WhcNMjUwODI5MTkxNjE1WjAYMRYwFAYD VQQDEw02OGE4YzFmZi03MDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ObxnDYMf4zA/d199nZRbug7IESllThkVJgQ0DjYaU7sWweP5lsaZMmblCsN n0qHzDk8wXV3NvtzFEUgInIVawLXRnDOUh2SbuoAKz4l7+9VbMnVDFxWaftdLRrv phsNFlSPGeaWV57SS/2sStoS6RZ9EB4pU2E9JL6ORFn+rLchtYfU7lxQrsjmb42l MCMQMm1Ms1UoVQsYy5XojcXtDTOoB442sTxyG/6JoNoLPz8IzWWHnTDbQG7fX5ID NFKUG0i4jOHHq0zhcIfm8AghgHBd0VfVnbJaLpvuytSD2I2Rv7jPw9N5Ip/POBF6 VNFPaAg6PF4Mi4GtjyJuFumJbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO05NgsF Fu2RkEFvzQoxSBpWV5kfMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMxk0jcrg05PFVgkS7qzxmSZ71WDKCnb3F/gQlAiihsJIgaXlXBBZn XxJ4j3hqB/OOkP2N1DpJGaL2A2NW6SE4igigqJK1iyWx0n6xVaZWm+bC4tTy+eQU 9crVJxmBZE7d2qSEF1dHqsVqFb6NqauNb1kwstnKgelx+E+spFTKz9TJecLc3pn9 hHvIz9+53ANe8z+koaurhQt2eKUyTGbdmU0iKuqlJaL7AEz8XlWtg50kRe7snr7w 1pmPdGzVB+Pfv/az+uCsA0Rojw2Kz33UPC7/Eb96p6W+r+zaIB1KocfUbEcGnee2 2FBf4X8vrsH9lPXQQs5Pgpz3pxMY0twN -----END CERTIFICATE-----Generated at Sun Aug 24 00:33:23 2025 by rpki-client