$ rpki-client -vvf rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft File: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft (raw, json) Hash identifier: EQHWBql62Fz2sccivJSPl1PMYxbXX24lo07EZBYiA5U= Subject key identifier: 73:2F:15:1A:8F:07:60:31:DC:72:7A:96:4A:91:B5:60:52:AF:78:E3 Authority key identifier: 63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 Certificate issuer: /CN=A91298C7/serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft Manifest number: 0555 Signing time: Fri 22 Aug 2025 23:33:39 +0000 Manifest this update: Fri 22 Aug 2025 23:33:39 +0000 Manifest next update: Fri 29 Aug 2025 23:33:39 +0000 Files and hashes: 1: YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl (hash: Slvl4xVA3hp2Ha73yDOpDjgXFKpOczOZvQ+H1eLHvwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298C7, serialNumber=633ACB8D51D2F088699B8A71491CC7553EC0C112 Validity Not Before: Aug 22 23:33:39 2025 GMT Not After : Aug 29 23:33:39 2025 GMT Subject: CN=68a8fe53-b695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:47:df:a8:49:79:1b:eb:e5:3d:ac:8c:e2:a4: fc:3f:50:8c:69:eb:de:35:e5:2e:13:eb:14:77:9c: 60:59:7e:d5:d0:d1:bb:86:3e:46:36:52:fc:52:21: cc:0d:26:99:68:c1:14:9d:02:dc:a6:21:f8:00:8e: 21:f0:ed:20:7b:cd:33:7b:8d:a7:f7:2f:f7:0c:64: 0e:e6:46:82:c4:3a:c7:58:b2:fd:3d:4e:47:ca:a6: 89:e6:c1:62:25:f0:9b:7d:9b:56:58:ca:36:bd:71: 54:b2:ae:da:49:35:64:bf:dc:83:d7:dd:04:b0:12: 75:d8:6b:89:dc:1e:0c:fe:d6:15:b6:fb:a5:d4:21: 33:a0:d0:4a:cb:8c:20:88:8b:31:d1:3f:a3:3c:99: fd:da:c9:8f:37:07:56:20:32:a8:36:f8:e1:7a:a8: 68:e6:8c:20:bc:84:fd:f4:31:d9:5e:2b:33:8a:2b: 07:13:d1:49:af:9e:0d:4f:32:7b:49:93:ac:c5:8f: f4:1b:ef:73:d7:88:95:1a:46:d8:2b:24:1f:c6:fa: 39:e6:82:ec:d7:95:03:5a:4a:d9:b0:e8:c2:bb:2e: a7:50:1b:52:2d:d3:52:48:73:ad:82:c7:66:ff:09: 63:9f:53:e0:c5:41:ff:71:ac:f6:33:d9:cd:e0:41: 32:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2F:15:1A:8F:07:60:31:DC:72:7A:96:4A:91:B5:60:52:AF:78:E3 X509v3 Authority Key Identifier: keyid:63:3A:CB:8D:51:D2:F0:88:69:9B:8A:71:49:1C:C7:55:3E:C0:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298C7/D494B8EEFA7F11EB99ADD85CC4F9AE02/YzrLjVHS8Ihpm4pxSRzHVT7AwRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:31:e8:a5:bf:1f:d0:b8:4b:65:f8:d6:4f:8c:d6:a9:f8:ab: dd:f8:4c:f0:c8:29:0b:8c:be:50:8d:80:f5:ac:e4:81:22:83: 75:43:85:b4:a3:5c:44:7f:a9:d4:7a:a2:7f:ce:f0:3c:18:0a: 10:bc:0b:53:26:b6:c6:da:2c:92:34:c4:30:93:20:d7:cb:49: 52:ad:dd:88:f8:e2:64:b5:29:03:a3:ca:2f:78:3f:c9:f0:92: 42:8e:16:df:e7:f6:a6:a5:89:4c:f6:87:71:ac:ce:bf:db:be: f1:dc:22:78:8f:44:e8:c5:fd:69:72:50:91:91:63:6a:ca:e3: d9:92:57:93:17:fd:5b:c6:bc:b3:a6:20:4a:ed:1b:bc:ef:fc: a6:ba:80:12:e1:44:04:fa:44:a3:ca:c2:5d:e4:54:54:08:a3: c9:08:2c:81:5c:aa:bb:1e:ac:0d:dc:ed:67:47:f8:35:82:36: 03:61:3a:7b:32:9e:ef:00:b1:93:84:89:7c:b4:a6:fb:4c:dc: e6:f5:26:ec:ef:b4:97:48:52:1d:b1:95:1e:14:cd:c2:60:e3: 97:80:a9:b7:ce:16:bb:0e:c3:d9:57:3b:7f:b4:dd:7d:58:43: 17:bd:2e:f7:fb:e7:71:45:66:35:79:bc:43:cb:93:d7:7f:f1: 6e:5d:ee:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4QzcxMTAvBgNVBAUTKDYzM0FDQjhENTFEMkYwODg2OTlCOEE3MTQ5MUNDNzU1 M0VDMEMxMTIwHhcNMjUwODIyMjMzMzM5WhcNMjUwODI5MjMzMzM5WjAYMRYwFAYD VQQDEw02OGE4ZmU1My1iNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkffqEl5G+vlPayM4qT8P1CMaeveNeUuE+sUd5xgWX7V0NG7hj5GNlL8UiHM DSaZaMEUnQLcpiH4AI4h8O0ge80ze42n9y/3DGQO5kaCxDrHWLL9PU5HyqaJ5sFi JfCbfZtWWMo2vXFUsq7aSTVkv9yD190EsBJ12GuJ3B4M/tYVtvul1CEzoNBKy4wg iIsx0T+jPJn92smPNwdWIDKoNvjheqho5owgvIT99DHZXisziisHE9FJr54NTzJ7 SZOsxY/0G+9z14iVGkbYKyQfxvo55oLs15UDWkrZsOjCuy6nUBtSLdNSSHOtgsdm /wljn1PgxUH/caz2M9nN4EEy0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMvFRqP B2Ax3HJ6lkqRtWBSr3jjMB8GA1UdIwQYMBaAFGM6y41R0vCIaZuKcUkcx1U+wMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThDNy9ENDk0QjhFRUZB N0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJaHBtNHB4U1J6SFZUN0F3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1l6ckxqVkhTOElocG00cHhTUnpIVlQ3QXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThDNy9ENDk0QjhFRUZBN0YxMUVCOTlBREQ4NUNDNEY5QUUwMi9ZenJMalZIUzhJ aHBtNHB4U1J6SFZUN0F3UkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1Meilvx/QuEtl+NZPjNap+Kvd+EzwyCkLjL5QjYD1rOSBIoN1Q4W0 o1xEf6nUeqJ/zvA8GAoQvAtTJrbG2iySNMQwkyDXy0lSrd2I+OJktSkDo8oveD/J 8JJCjhbf5/ampYlM9odxrM6/277x3CJ4j0Toxf1pclCRkWNqyuPZkleTF/1bxryz piBK7Ru87/ymuoAS4UQE+kSjysJd5FRUCKPJCCyBXKq7HqwN3O1nR/g1gjYDYTp7 Mp7vALGThIl8tKb7TNzm9Sbs77SXSFIdsZUeFM3CYOOXgKm3zha7DsPZVzt/tN19 WEMXvS73++dxRWY1ebxDy5PXf/FuXe59 -----END CERTIFICATE-----Generated at Sat Aug 23 17:50:58 2025 by rpki-client