$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: 7+4+BDvIsZIx0NqGsrJc3Ii7Lm7Xy6xvtz8VkH2Yvkk= Subject key identifier: C9:75:02:B1:63:78:30:0C:FF:B9:4C:4A:3A:FB:95:CD:DE:86:70:0F Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C71 Signing time: Fri 22 Aug 2025 18:27:42 +0000 Manifest this update: Fri 22 Aug 2025 18:27:42 +0000 Manifest next update: Fri 29 Aug 2025 18:27:42 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: ASGOX+J4xTyJTkpFF4a4//honlzFIK63amkASIFd5y4=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Aug 22 18:27:42 2025 GMT Not After : Aug 29 18:27:42 2025 GMT Subject: CN=68a8b69e-03a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:a0:df:8d:3a:5f:1c:03:85:e5:cb:cb:37: 23:88:73:0f:80:e2:bb:c6:3c:1c:78:c0:4a:48:82: cf:25:89:ed:a3:aa:67:82:0b:3d:d5:79:0d:ec:31: f1:4a:f7:af:d2:77:d6:46:37:b6:d4:7f:8c:3f:74: d3:70:9d:0a:84:4f:94:de:35:fd:2c:6a:58:bf:44: b2:b8:64:06:af:ef:ac:5c:67:10:3a:de:1a:11:c7: e5:2e:2b:8b:d7:a8:eb:1d:e2:33:8e:d6:0f:50:64: 67:8d:a6:5b:2b:ae:e9:3b:3d:6b:fc:b3:36:de:82: dc:be:93:64:25:f7:12:0e:95:08:e6:70:ba:84:dc: ac:df:a2:bf:51:30:2c:c8:de:7b:eb:1d:d2:65:f8: f4:e4:c0:18:72:93:a8:1b:06:fa:f5:02:7a:7c:ec: 55:86:6e:1a:88:18:ce:83:ed:71:9a:33:4d:f3:50: 6e:a6:2b:b0:a6:3a:e3:61:37:09:80:aa:cd:05:7a: c4:9e:02:e2:3e:0f:ce:28:c5:89:39:ed:3b:18:bc: 6f:43:89:b3:0b:93:54:9c:52:be:0f:c3:14:89:c2: ab:79:70:81:3d:06:eb:0f:71:85:92:dd:3e:81:06: 10:a8:d1:64:a3:a2:70:51:b0:47:ce:9a:15:21:cd: 87:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:75:02:B1:63:78:30:0C:FF:B9:4C:4A:3A:FB:95:CD:DE:86:70:0F X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:4b:a8:0d:40:a8:6d:33:bd:e1:07:2e:ec:0d:09:7e:b8:48: 5a:95:91:bb:d3:12:38:84:ef:2d:7e:1e:de:7d:76:4d:9c:bd: 66:98:f2:5b:7a:39:c2:50:40:d3:19:38:c5:37:2e:68:9e:08: c1:2d:db:98:4a:a1:48:fa:06:d1:60:76:7c:a1:fa:de:79:e4: 4b:e8:60:ad:b2:c0:aa:a7:ee:96:ee:11:97:ac:14:64:f9:64: 01:0e:fe:fe:f9:f0:74:a9:d2:02:98:6e:78:14:58:a7:0a:35: b9:e1:25:c9:31:00:3c:1b:97:fe:15:e5:c9:2f:0a:e7:3c:40: 09:b9:6b:d0:4c:95:23:31:7b:7b:ee:6d:cf:b7:20:36:66:3b: de:e8:58:27:a2:27:52:4d:2a:63:46:c1:76:6b:1f:b9:86:6d: 68:bb:98:b5:85:1e:a3:a6:56:0a:cb:0f:de:2b:de:dc:53:66: 50:d8:ed:2e:47:34:7a:46:2b:81:cc:81:b2:6b:2e:d8:0f:d4: d0:40:7b:4f:d2:13:b5:93:8a:66:c2:eb:f7:d7:a3:c5:84:17: 80:e1:31:3a:5d:a8:c9:f8:19:de:b0:9c:e7:0f:7b:8b:46:1d: 8d:8b:9b:d7:f6:da:41:8a:0b:94:cd:89:80:37:9e:65:d6:b7: 93:53:5e:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwODIyMTgyNzQyWhcNMjUwODI5MTgyNzQyWjAYMRYwFAYD VQQDEw02OGE4YjY5ZS0wM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWqg3406XxwDheXLyzcjiHMPgOK7xjwceMBKSILPJYnto6pnggs91XkN7DHx Svev0nfWRje21H+MP3TTcJ0KhE+U3jX9LGpYv0SyuGQGr++sXGcQOt4aEcflLiuL 16jrHeIzjtYPUGRnjaZbK67pOz1r/LM23oLcvpNkJfcSDpUI5nC6hNys36K/UTAs yN576x3SZfj05MAYcpOoGwb69QJ6fOxVhm4aiBjOg+1xmjNN81BupiuwpjrjYTcJ gKrNBXrEngLiPg/OKMWJOe07GLxvQ4mzC5NUnFK+D8MUicKreXCBPQbrD3GFkt0+ gQYQqNFko6JwUbBHzpoVIc2HqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMl1ArFj eDAM/7lMSjr7lc3ehnAPMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDS6gNQKhtM73hBy7sDQl+uEhalZG70xI4hO8tfh7efXZNnL1mmPJb ejnCUEDTGTjFNy5ongjBLduYSqFI+gbRYHZ8ofreeeRL6GCtssCqp+6W7hGXrBRk +WQBDv7++fB0qdICmG54FFinCjW54SXJMQA8G5f+FeXJLwrnPEAJuWvQTJUjMXt7 7m3PtyA2Zjve6FgnoidSTSpjRsF2ax+5hm1ou5i1hR6jplYKyw/eK97cU2ZQ2O0u RzR6RiuBzIGyay7YD9TQQHtP0hO1k4pmwuv316PFhBeA4TE6XajJ+BnesJznD3uL Rh2Ni5vX9tpBiguUzYmAN55l1reTU16o -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:10 2025 by rpki-client