$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: 8qGaWmD6OnAefaF1fcKhA6KpHV3N+e0TAaDPiK/kSi8= Subject key identifier: 39:71:D0:E7:04:35:03:06:60:BB:37:6F:7A:4C:4F:8D:2F:1D:D2:21 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 25 Signing time: Sat 23 Aug 2025 08:04:08 +0000 Manifest this update: Sat 23 Aug 2025 08:04:07 +0000 Manifest next update: Sat 30 Aug 2025 08:04:07 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: MAtikewhEzSNEFTnrg029lynkG2cvsI4yyyqtUMQJ64=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Aug 23 08:04:07 2025 GMT Not After : Aug 30 08:04:07 2025 GMT Subject: CN=68a975f7-a53e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:ce:de:d4:05:a8:ba:f0:1b:f0:2c:58:08: d0:ad:5e:a7:17:64:b8:40:bc:94:87:8b:ca:85:47: 98:c5:63:5c:34:b5:8d:7b:bc:1d:b9:4c:8e:2d:ed: 03:45:e7:00:eb:96:74:4c:d5:77:c7:3e:32:ef:56: de:03:dc:e2:05:e0:4d:56:f7:13:8c:8b:13:39:74: aa:28:de:11:73:d3:c5:d9:fe:62:d9:60:2f:67:e6: d8:5c:db:96:fd:46:37:9a:f5:9e:d3:bd:76:13:54: 6e:79:67:0b:ea:9a:5b:91:37:5f:9c:18:3c:9a:a3: 15:3f:77:1d:18:51:93:69:91:15:7a:90:da:dd:14: 57:e2:e6:1a:64:e4:c1:ff:e6:76:c6:f1:ee:11:28: 4d:17:a5:9e:a7:6f:c7:e8:db:9d:00:7d:82:3e:73: 95:a0:c7:35:01:24:db:5e:6b:6b:55:55:45:94:a5: b6:60:c8:8a:57:0d:49:2d:61:75:a9:b3:9e:f7:a5: af:79:b8:c7:f7:4f:07:aa:09:3d:f2:f0:cf:16:ed: 98:87:9a:31:62:56:bc:61:2c:ef:3d:0a:69:8a:d4: 87:88:37:30:70:5c:24:2c:73:d2:4f:d5:9e:3e:1e: 6b:84:74:23:e7:61:86:3b:78:26:3f:f7:31:f5:11: c8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:71:D0:E7:04:35:03:06:60:BB:37:6F:7A:4C:4F:8D:2F:1D:D2:21 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e5:de:bd:66:bd:10:f0:be:cc:c5:75:c4:aa:5e:a6:24:b6: 83:e4:c6:55:66:8d:4c:8f:ef:97:c3:db:24:7c:12:4f:4d:fb: 72:85:6b:3a:17:4a:2a:e4:74:3a:fa:3c:68:40:41:83:f4:2d: b1:cb:70:26:63:9d:c3:41:9d:52:12:1a:9b:13:b8:8a:33:d5: 3d:52:aa:a8:6f:24:59:34:26:5d:64:7a:9e:79:9b:9c:b6:11: 64:e8:9a:aa:0e:e0:47:3c:f7:35:62:ca:70:7b:ca:1e:3f:17: aa:f1:c5:5a:81:a5:c5:18:d6:bb:52:58:ec:d2:9d:28:de:27: 42:e9:8c:81:91:1d:cb:f5:59:42:5c:a0:a5:46:fb:9a:74:31: f3:27:fa:be:e2:e6:0a:ac:1f:29:dd:7f:01:07:9f:3f:21:dc: 54:92:7d:06:09:be:bf:51:58:be:55:d6:bf:3b:84:da:19:6e: b5:fe:ea:b3:d6:15:0f:ac:7f:60:6a:62:7a:8a:46:fc:bc:e6: e1:fe:54:66:da:71:c2:5e:93:da:94:d9:fe:79:16:04:68:ec: 3e:fc:3a:cf:88:e3:64:5e:20:6e:c9:60:f6:fd:d8:e1:e8:c6: 95:10:74:03:66:68:be:3c:d7:7d:2b:58:40:d9:10:18:bc:5d: 35:c0:72:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNTA4MjMwODA0MDdaFw0yNTA4MzAwODA0MDdaMBgxFjAUBgNV BAMTDTY4YTk3NWY3LWE1M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi187e1AWouvAb8CxYCNCtXqcXZLhAvJSHi8qFR5jFY1w0tY17vB25TI4t7QNF 5wDrlnRM1XfHPjLvVt4D3OIF4E1W9xOMixM5dKoo3hFz08XZ/mLZYC9n5thc25b9 Rjea9Z7TvXYTVG55ZwvqmluRN1+cGDyaoxU/dx0YUZNpkRV6kNrdFFfi5hpk5MH/ 5nbG8e4RKE0XpZ6nb8fo250AfYI+c5WgxzUBJNtea2tVVUWUpbZgyIpXDUktYXWp s573pa95uMf3TweqCT3y8M8W7ZiHmjFiVrxhLO89CmmK1IeINzBwXCQsc9JP1Z4+ HmuEdCPnYYY7eCY/9zH1EchDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOXHQ5wQ1 AwZguzdvekxPjS8d0iEwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ3l3r1mvRDwvszFdcSqXqYktoPkxlVmjUyP75fD2yR8Ek9N+3KFazoX SirkdDr6PGhAQYP0LbHLcCZjncNBnVISGpsTuIoz1T1SqqhvJFk0Jl1kep55m5y2 EWTomqoO4Ec89zViynB7yh4/F6rxxVqBpcUY1rtSWOzSnSjeJ0LpjIGRHcv1WUJc oKVG+5p0MfMn+r7i5gqsHyndfwEHnz8h3FSSfQYJvr9RWL5V1r87hNoZbrX+6rPW FQ+sf2BqYnqKRvy85uH+VGbaccJek9qU2f55FgRo7D78Os+I42ReIG7JYPb92OHo xpUQdANmaL48130rWEDZEBi8XTXAcqo= -----END CERTIFICATE-----Generated at Sat Aug 23 22:33:48 2025 by rpki-client