$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: cgKOxAmZ1qItEXFfkQZQT2wTa77Feom24iK0RpfuMeg= Subject key identifier: FE:F1:EF:3B:21:0B:F6:41:A7:3C:D0:17:24:B7:26:88:4D:9E:26:A1 Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 080F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 0805 Signing time: Fri 22 Aug 2025 21:06:11 +0000 Manifest this update: Fri 22 Aug 2025 21:06:11 +0000 Manifest next update: Fri 29 Aug 2025 21:06:11 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: VQAwrMiSuMXmcL2yJlk/yPPpXWXHr0RVKbpD2gBx7xI=) 2: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: YDClsqxDW8aE74OivD5RPpVA+CxjmhxOOqfYIEgfLpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Aug 22 21:06:11 2025 GMT Not After : Aug 29 21:06:11 2025 GMT Subject: CN=68a8dbc3-526b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:03:8b:83:ce:87:68:bd:a5:3d:1b:c7:0e:1e: 9b:81:dd:aa:7d:b2:09:a5:94:61:c2:fb:53:ea:83: ec:59:76:d2:ea:bc:24:43:29:42:91:7e:2f:aa:6b: e2:e1:f9:d4:e2:31:65:1f:7e:15:37:c3:81:12:c3: 59:20:f2:7f:e5:79:39:40:ad:b3:35:e9:db:3c:d6: b3:88:cb:ad:77:2b:e0:7e:f3:db:ea:84:17:ef:e5: 42:08:e5:d9:a6:ec:d0:e5:86:8e:8c:32:9a:94:32: ee:84:88:b6:d2:53:95:6f:7a:2c:42:49:bd:95:c5: 6e:93:99:a8:20:40:1b:c9:81:50:49:8c:24:7a:64: fd:33:8c:d3:2c:79:e8:7f:29:70:9b:a1:2c:0b:66: 0e:7e:36:be:78:05:8b:a1:2d:a2:13:46:93:3d:92: c4:c4:89:1e:fc:82:31:f1:90:13:97:07:fd:d0:b2: 27:1b:67:9f:b5:ee:9d:a7:ac:c1:11:3b:93:0c:18: 97:d0:48:fc:60:75:bc:1f:fc:05:e4:34:c7:93:8a: aa:37:4e:a7:68:d1:dc:79:77:41:56:c3:59:df:af: 4b:59:0b:fd:3a:c1:b1:a9:e0:c4:f3:9d:8f:8e:86: 34:45:d7:2c:01:65:92:5b:6a:55:82:e9:0d:60:55: 13:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F1:EF:3B:21:0B:F6:41:A7:3C:D0:17:24:B7:26:88:4D:9E:26:A1 X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6d:94:4c:ad:2e:a0:1c:b2:86:06:99:f1:da:8d:7a:30:f4: 17:00:bb:19:24:e2:a2:8c:0d:5d:35:a7:71:53:28:96:c9:e1: eb:22:33:a6:fd:6a:97:49:dd:8d:35:0f:fa:80:67:7b:d0:2c: 38:48:0a:94:79:53:e4:e5:d8:04:06:2b:6f:cd:0b:f6:ca:2b: 27:39:e0:36:f7:f7:88:a9:8e:da:79:31:48:de:3f:b0:af:f5: 9e:37:4d:6b:19:7b:00:a0:78:09:87:e8:5b:d2:4b:ea:dd:c1: 75:31:6a:aa:59:d9:85:90:2b:ed:4a:78:d0:a7:3e:df:f1:0d: b4:7f:13:bb:95:ff:a7:0c:e4:3e:e5:a7:e5:31:1e:b8:6a:1f: c3:32:aa:69:52:fc:3b:1c:4c:13:2c:04:30:ee:09:04:e4:30: 4c:cd:9f:e5:69:27:2b:2d:22:17:7a:39:2b:55:39:27:65:50: 2e:1b:db:b6:73:9d:19:68:77:57:9f:7b:e8:74:8e:3f:10:af: db:b3:23:00:0c:95:71:92:58:df:93:54:3f:33:73:88:0a:24: 61:cb:25:b2:55:0d:03:1f:75:0e:f0:ab:b5:20:9c:32:a4:4e: d5:60:d5:9d:7c:ab:ae:94:a3:e1:82:c1:85:7d:86:d0:97:27: bd:74:f7:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUwODIyMjEwNjExWhcNMjUwODI5MjEwNjExWjAYMRYwFAYD VQQDEw02OGE4ZGJjMy01MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gOLg86HaL2lPRvHDh6bgd2qfbIJpZRhwvtT6oPsWXbS6rwkQylCkX4vqmvi 4fnU4jFlH34VN8OBEsNZIPJ/5Xk5QK2zNenbPNaziMutdyvgfvPb6oQX7+VCCOXZ puzQ5YaOjDKalDLuhIi20lOVb3osQkm9lcVuk5moIEAbyYFQSYwkemT9M4zTLHno fylwm6EsC2YOfja+eAWLoS2iE0aTPZLExIke/IIx8ZATlwf90LInG2efte6dp6zB ETuTDBiX0Ej8YHW8H/wF5DTHk4qqN06naNHceXdBVsNZ369LWQv9OsGxqeDE852P joY0RdcsAWWSW2pVgukNYFUTWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7x7zsh C/ZBpzzQFyS3JohNniahMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjbZRMrS6gHLKGBpnx2o16MPQXALsZJOKijA1dNadxUyiWyeHrIjOm /WqXSd2NNQ/6gGd70Cw4SAqUeVPk5dgEBitvzQv2yisnOeA29/eIqY7aeTFI3j+w r/WeN01rGXsAoHgJh+hb0kvq3cF1MWqqWdmFkCvtSnjQpz7f8Q20fxO7lf+nDOQ+ 5aflMR64ah/DMqppUvw7HEwTLAQw7gkE5DBMzZ/laScrLSIXejkrVTknZVAuG9u2 c50ZaHdXn3vodI4/EK/bsyMADJVxkljfk1Q/M3OICiRhyyWyVQ0DH3UO8Ku1IJwy pE7VYNWdfKuulKPhgsGFfYbQlye9dPeh -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:27 2025 by rpki-client