$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: 8IjQlXT3CZBLoYbCXZaFF1gi2Snnly0vUp09DjPSO2A= Subject key identifier: F2:ED:CA:24:CB:73:DE:D7:49:B8:92:26:64:FA:CF:3A:8E:96:33:3B Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01E2 Signing time: Sat 23 Aug 2025 02:45:44 +0000 Manifest this update: Sat 23 Aug 2025 02:45:44 +0000 Manifest next update: Sat 30 Aug 2025 02:45:44 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: ZBjcwqiZNc3pQs0kQGC+rZMyHQbSzTV+5Nkx/QXyr00=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Aug 23 02:45:44 2025 GMT Not After : Aug 30 02:45:44 2025 GMT Subject: CN=68a92b58-d321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:85:e2:fa:93:6c:b8:1e:b3:07:c7:26:b8:e2: 90:6c:74:da:f6:ca:a9:a2:61:c7:70:ea:85:43:12: 19:05:dd:60:d2:3b:ff:3b:87:9b:18:92:6e:66:a6: 6d:3c:bc:a5:c1:fd:19:6a:4d:8c:f9:29:93:72:4b: df:07:5f:92:e4:c9:cd:d7:70:26:8b:21:c7:68:a5: 5d:76:3c:25:f0:c2:4c:c3:cb:f7:9e:e8:f2:e8:61: 6a:d6:8f:27:4c:90:58:80:3a:8e:8d:f5:4e:fc:51: 10:ef:e1:d2:fe:2c:35:01:47:83:a0:fc:8c:f6:16: 54:e4:9e:18:5c:f1:e5:31:ce:2a:70:2e:ba:d5:1e: 13:32:60:9e:41:6a:ab:38:b4:7d:b5:e1:0b:3a:4b: 48:d7:57:11:88:76:22:7a:7c:7d:70:38:38:8c:c2: 31:05:3d:72:ad:fb:ce:16:04:ef:bd:e7:b8:7d:54: bf:81:df:9a:45:58:89:90:93:1a:c3:36:a6:37:fc: 7c:77:20:3e:21:3d:b0:7a:a4:91:39:a2:ad:cd:c5: 79:76:a4:72:16:1d:d0:66:45:66:08:14:e5:39:e1: 5d:7e:24:55:47:ff:8c:e9:91:84:9b:b5:79:bf:a5: 4e:aa:ea:46:e5:b9:d3:a3:07:87:d8:c1:d2:f6:b7: f5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:ED:CA:24:CB:73:DE:D7:49:B8:92:26:64:FA:CF:3A:8E:96:33:3B X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:fa:76:1a:af:65:00:57:f2:4e:67:02:d6:1d:72:43:70:3c: 5e:98:0d:4a:2c:06:f2:40:24:e1:bc:e0:7c:c3:8e:48:29:f7: aa:91:4a:68:fd:52:c8:4c:80:f5:9c:83:f3:b5:64:31:6f:48: 65:b4:bf:56:2c:da:28:97:ab:36:98:43:2e:b0:2a:d3:20:0b: 79:9d:68:d5:52:3a:bc:14:78:30:06:39:58:1c:df:1a:ef:3e: 59:6f:d0:4c:17:08:60:b3:96:f0:5e:4e:04:0b:a2:17:0f:7a: ae:b2:bd:ef:8c:e5:51:07:84:f4:2f:76:bd:2f:e3:7e:e9:a3: ef:e1:7f:81:69:fe:64:5b:ac:bf:bc:70:86:a9:be:59:d9:81: 46:64:7f:ed:b0:81:f6:4b:03:dc:1d:e4:20:3f:bd:62:c3:2d: 4d:3d:44:44:f8:b0:8c:fb:7e:89:32:1a:2c:75:61:8d:70:23: dc:64:3b:ce:7d:16:a6:4c:74:2f:85:58:ca:d3:f5:eb:44:bc: 94:4d:09:4f:2c:cc:17:3f:c9:60:97:40:e0:63:b4:86:41:6c: 53:c5:84:f3:b6:24:b3:74:f7:fa:06:71:e9:b3:e3:59:91:e3: 57:37:51:84:ef:e7:87:70:d5:17:fd:40:d9:41:28:ec:76:62: 12:02:39:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwODIzMDI0NTQ0WhcNMjUwODMwMDI0NTQ0WjAYMRYwFAYD VQQDEw02OGE5MmI1OC1kMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoXi+pNsuB6zB8cmuOKQbHTa9sqpomHHcOqFQxIZBd1g0jv/O4ebGJJuZqZt PLylwf0Zak2M+SmTckvfB1+S5MnN13AmiyHHaKVddjwl8MJMw8v3nujy6GFq1o8n TJBYgDqOjfVO/FEQ7+HS/iw1AUeDoPyM9hZU5J4YXPHlMc4qcC661R4TMmCeQWqr OLR9teELOktI11cRiHYienx9cDg4jMIxBT1yrfvOFgTvvee4fVS/gd+aRViJkJMa wzamN/x8dyA+IT2weqSROaKtzcV5dqRyFh3QZkVmCBTlOeFdfiRVR/+M6ZGEm7V5 v6VOqupG5bnToweH2MHS9rf18QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLtyiTL c97XSbiSJmT6zzqOljM7MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC++nYar2UAV/JOZwLWHXJDcDxemA1KLAbyQCThvOB8w45IKfeqkUpo /VLITID1nIPztWQxb0hltL9WLNool6s2mEMusCrTIAt5nWjVUjq8FHgwBjlYHN8a 7z5Zb9BMFwhgs5bwXk4EC6IXD3qusr3vjOVRB4T0L3a9L+N+6aPv4X+Baf5kW6y/ vHCGqb5Z2YFGZH/tsIH2SwPcHeQgP71iwy1NPURE+LCM+36JMhosdWGNcCPcZDvO fRamTHQvhVjK0/XrRLyUTQlPLMwXP8lgl0DgY7SGQWxTxYTztiSzdPf6BnHps+NZ keNXN1GE7+eHcNUX/UDZQSjsdmISAjkf -----END CERTIFICATE-----Generated at Sat Aug 23 18:43:20 2025 by rpki-client