$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft File: rYW34Ys6FvU-kpOKM07Guz64tjA.mft (raw, json) Hash identifier: H5sZrSsCjQ3HGDsqgeFycgpUIZhy32cmMxLfAnRF20Y= Subject key identifier: FF:8F:AF:05:87:0C:F4:09:F7:35:A2:7E:ED:B8:95:58:BA:4D:65:65 Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft Manifest number: 0193 Signing time: Sat 23 Aug 2025 03:34:16 +0000 Manifest this update: Sat 23 Aug 2025 03:34:15 +0000 Manifest next update: Sat 30 Aug 2025 03:34:15 +0000 Files and hashes: 1: rYW34Ys6FvU-kpOKM07Guz64tjA.crl (hash: A1X4cW/7fbkPFCSU7D5M0lWpscy2za52I3fN2PaJGPo=) 2: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (hash: p81EH8N+mq+tuXFMTqadpbhtGnx8x8sovmy9swXxzCM=) 3: A8C501F61B2A11EE84F40B3AC4F9AE02.roa (hash: GGQZQXITbCi35kDi1cszvpoNDF4GQHNFV1AYsPL4NFA=) 4: B97D647C1A8811EEB5AE963CC4F9AE02.roa (hash: NMwwqT5E6qjLfBlg6rE6vavEzETFOwEvTWR7gAiqQV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2, serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Validity Not Before: Aug 23 03:34:15 2025 GMT Not After : Aug 30 03:34:15 2025 GMT Subject: CN=68a936b8-9a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:13:f9:67:bd:1e:b5:26:d4:8e:fe:1b:4b:67: 72:0e:be:b6:e3:be:02:04:24:4a:fe:33:a0:d9:21: f9:d3:71:52:13:00:bf:d4:6a:7a:62:fb:c9:58:00: f4:21:2a:09:e0:c3:f2:e4:9d:aa:a2:09:24:93:05: 0b:43:f4:78:10:a8:f1:b6:e2:7a:dd:c2:7f:55:a3: 8a:9b:0d:90:d5:3e:36:a3:49:39:0f:f8:84:74:87: 38:91:f3:55:4f:4f:72:69:dc:99:ae:f6:65:f2:29: d9:e4:ba:cc:15:62:f0:2a:94:ad:c8:76:b1:cf:bd: fc:75:71:2b:25:ca:2d:15:e5:e2:fb:1e:ec:5c:9f: aa:d0:ce:d3:0b:9a:e8:8f:33:9c:ba:51:d7:3c:51: 03:30:4f:8a:ec:d8:77:84:fc:ed:5e:6b:23:60:00: 1a:a8:e1:dc:38:4b:38:0f:b3:f9:a7:8b:2e:83:30: 01:8b:3e:05:80:56:b7:6c:d9:81:8f:3a:18:6b:57: 20:a6:75:57:8a:2c:d4:7f:a2:57:61:bd:ea:de:8f: 6c:9c:c2:29:e7:f9:05:bd:24:6f:4e:72:fe:72:01: c8:3a:7d:29:ee:53:de:fd:33:13:c3:c2:29:97:77: 92:41:ff:27:61:04:8e:31:3a:16:03:d4:e5:e6:a4: d1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8F:AF:05:87:0C:F4:09:F7:35:A2:7E:ED:B8:95:58:BA:4D:65:65 X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:22:cf:39:f7:c4:f0:bc:8e:80:d7:60:6c:d4:d5:21:bf:d7: 73:76:02:ce:16:ab:6d:56:b8:67:8b:b6:f1:19:1f:4f:e2:34: 8a:a3:49:2e:dc:c0:ca:a6:64:ab:65:e1:6f:bb:7c:1f:0d:96: bd:8e:0a:a2:b8:70:87:a0:60:b1:c8:03:c3:45:fe:60:6c:12: 9a:07:0f:5e:79:d5:b9:0e:2b:2a:15:9d:b2:24:e5:73:74:03: 3f:d5:d2:02:4e:90:96:16:d0:ad:87:3c:6d:c9:76:11:c0:e8: a8:a5:de:30:bc:08:a9:4d:c7:af:9a:81:c5:68:ec:f5:f4:c0: 0e:9d:25:cf:3b:07:2c:89:00:87:1c:42:cc:24:54:e6:65:f0: 10:f9:01:3b:20:93:33:d8:4b:9b:01:97:53:df:34:92:8d:b1: 59:07:3f:39:f6:5f:07:cb:46:e7:f8:9f:70:9c:bc:76:8a:87: eb:14:27:cc:1c:ea:e2:6d:9f:72:2a:02:84:b6:11:1c:07:7a: 65:2b:2a:ef:32:ea:c9:25:50:73:14:d2:f9:22:ef:9a:b7:b7: e0:1f:4f:6c:1a:2b:05:4b:1e:38:b6:69:de:02:94:ec:82:6a: 59:b5:42:44:32:21:4c:f9:2b:77:18:42:02:b5:a9:4a:48:a8: 74:90:cc:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZCQjIxMTAvBgNVBAUTKEFEODVCN0UxOEIzQTE2RjUzRTkyOTM4QTMzNEVDNkJC M0VCOEI2MzAwHhcNMjUwODIzMDMzNDE1WhcNMjUwODMwMDMzNDE1WjAYMRYwFAYD VQQDEw02OGE5MzZiOC05YTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8xP5Z70etSbUjv4bS2dyDr62474CBCRK/jOg2SH503FSEwC/1Gp6YvvJWAD0 ISoJ4MPy5J2qogkkkwULQ/R4EKjxtuJ63cJ/VaOKmw2Q1T42o0k5D/iEdIc4kfNV T09yadyZrvZl8inZ5LrMFWLwKpStyHaxz738dXErJcotFeXi+x7sXJ+q0M7TC5ro jzOculHXPFEDME+K7Nh3hPztXmsjYAAaqOHcOEs4D7P5p4sugzABiz4FgFa3bNmB jzoYa1cgpnVXiizUf6JXYb3q3o9snMIp5/kFvSRvTnL+cgHIOn0p7lPe/TMTw8Ip l3eSQf8nYQSOMToWA9Tl5qTRmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+PrwWH DPQJ9zWifu24lVi6TWVlMB8GA1UdIwQYMBaAFK2Ft+GLOhb1PpKTijNOxrs+uLYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkJCMi8wRTI3MDU0NDFB ODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2VS1rcE9LTTA3R3V6NjR0 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkJCMi8wRTI3MDU0NDFBODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2 VS1rcE9LTTA3R3V6NjR0akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfIs8598TwvI6A12Bs1NUhv9dzdgLOFqttVrhni7bxGR9P4jSKo0ku 3MDKpmSrZeFvu3wfDZa9jgqiuHCHoGCxyAPDRf5gbBKaBw9eedW5DisqFZ2yJOVz dAM/1dICTpCWFtCthzxtyXYRwOiopd4wvAipTcevmoHFaOz19MAOnSXPOwcsiQCH HELMJFTmZfAQ+QE7IJMz2EubAZdT3zSSjbFZBz859l8Hy0bn+J9wnLx2iofrFCfM HOribZ9yKgKEthEcB3plKyrvMurJJVBzFNL5Iu+at7fgH09sGisFSx44tmneApTs gmpZtUJEMiFM+St3GEICtalKSKh0kMyR -----END CERTIFICATE-----Generated at Sat Aug 23 10:56:19 2025 by rpki-client