$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: ji6PsL8wk+KZPNo/UhTmHr1zfZLS1WN8qVrGxqNkYdw= Subject key identifier: 77:8C:33:61:3A:1B:92:CF:C7:14:0D:AB:C6:DC:74:89:49:21:B9:3C Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01DA Signing time: Sat 23 Aug 2025 02:53:22 +0000 Manifest this update: Sat 23 Aug 2025 02:53:21 +0000 Manifest next update: Sat 30 Aug 2025 02:53:21 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: dE4yFzqcd6BAPuH81w1RLiCGO4Ud7wWFE7nim1DYqJI=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Aug 23 02:53:21 2025 GMT Not After : Aug 30 02:53:21 2025 GMT Subject: CN=68a92d22-41d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:03:54:6b:13:ac:10:42:fd:ad:e0:f9:fa:fb: e4:ee:01:70:91:ae:73:04:cf:22:10:c3:d1:96:88: 9e:bb:6f:93:0c:41:82:e0:fe:d8:9f:47:59:26:05: 6d:20:ef:65:da:16:e7:fd:23:4b:9b:db:17:31:19: cb:31:ce:34:aa:8b:23:7c:fc:64:f2:af:21:10:63: 46:94:90:14:f5:fd:29:1d:44:1f:c2:d1:f6:ed:ec: 11:c4:75:f2:7d:f8:d7:54:35:5d:17:36:f6:c4:16: 5e:64:57:17:86:d9:3d:8e:b9:b1:da:ab:1c:fd:1d: e7:3c:6a:1f:c2:27:ba:6e:08:91:d1:ba:60:1b:b1: 63:51:b3:bf:35:a7:85:93:d0:9c:53:e7:5a:95:b8: 24:82:a1:ce:a3:7e:6a:43:8d:25:41:9a:7c:ef:37: 4c:ad:d3:17:23:09:f4:19:b1:02:69:3f:36:11:f5: f9:dc:36:51:63:d8:e4:40:6a:e5:94:2f:1e:05:04: fd:31:fa:0a:7e:d4:2b:2e:4f:12:19:63:05:78:75: 49:6b:c7:8b:e1:4e:3b:71:f6:d3:0e:3b:af:ba:02: d9:34:f5:de:fd:6c:1e:f3:60:27:e4:2c:d0:74:90: 9a:66:e7:29:6f:43:a6:64:20:6c:24:73:98:e4:d1: 6d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8C:33:61:3A:1B:92:CF:C7:14:0D:AB:C6:DC:74:89:49:21:B9:3C X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:2e:4f:da:50:7e:c6:49:6c:24:30:9a:0d:bf:0b:6c:98:45: c3:b9:ec:e3:90:50:0e:85:2d:95:b0:8f:91:34:f5:c7:5d:99: 5d:32:a7:7d:e6:46:70:3a:3c:ec:f0:f3:22:8b:19:31:e8:ed: d4:f5:64:40:82:05:28:2f:5b:af:9c:cb:11:02:b0:ac:08:de: 27:1f:3b:39:97:3e:a3:32:06:de:96:12:cb:22:dc:83:2c:c0: 92:ba:10:9d:1f:20:6f:f5:44:7c:f4:9b:33:a6:5f:84:b4:c1: 60:96:71:d5:1f:b2:a9:82:83:0e:f0:e6:4d:a3:38:9b:40:f6: fb:bf:fd:1d:0c:75:ba:4a:d3:91:61:eb:c3:cd:d7:23:b8:cb: 2f:9f:f2:bf:0e:46:5b:34:58:c5:6f:b6:19:af:ee:96:c2:3a: ab:ce:76:f6:96:12:85:bb:d4:bb:b3:73:3a:6b:3d:a6:e7:08: 6b:3c:93:ea:a5:10:ba:60:70:18:67:fd:2c:1c:fb:d1:26:73: 2a:29:7c:0f:a0:f1:00:36:56:a5:01:dd:46:69:18:35:3d:4f: dd:58:71:74:49:d6:7a:62:3b:c4:0c:04:8f:f0:8c:29:f8:b6: 4a:80:2e:35:ea:75:e8:92:97:67:2b:71:3d:ea:94:62:e6:ea: 97:0b:fd:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwODIzMDI1MzIxWhcNMjUwODMwMDI1MzIxWjAYMRYwFAYD VQQDEw02OGE5MmQyMi00MWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gNUaxOsEEL9reD5+vvk7gFwka5zBM8iEMPRloieu2+TDEGC4P7Yn0dZJgVt IO9l2hbn/SNLm9sXMRnLMc40qosjfPxk8q8hEGNGlJAU9f0pHUQfwtH27ewRxHXy ffjXVDVdFzb2xBZeZFcXhtk9jrmx2qsc/R3nPGofwie6bgiR0bpgG7FjUbO/NaeF k9CcU+dalbgkgqHOo35qQ40lQZp87zdMrdMXIwn0GbECaT82EfX53DZRY9jkQGrl lC8eBQT9MfoKftQrLk8SGWMFeHVJa8eL4U47cfbTDjuvugLZNPXe/Wwe82An5CzQ dJCaZucpb0OmZCBsJHOY5NFt0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeMM2E6 G5LPxxQNq8bcdIlJIbk8MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9Lk/aUH7GSWwkMJoNvwtsmEXDuezjkFAOhS2VsI+RNPXHXZldMqd9 5kZwOjzs8PMiixkx6O3U9WRAggUoL1uvnMsRArCsCN4nHzs5lz6jMgbelhLLItyD LMCSuhCdHyBv9UR89Jszpl+EtMFglnHVH7KpgoMO8OZNozibQPb7v/0dDHW6StOR YevDzdcjuMsvn/K/DkZbNFjFb7YZr+6Wwjqrznb2lhKFu9S7s3M6az2m5whrPJPq pRC6YHAYZ/0sHPvRJnMqKXwPoPEANlalAd1GaRg1PU/dWHF0SdZ6YjvEDASP8Iwp +LZKgC416nXokpdnK3E96pRi5uqXC/3V -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:19 2025 by rpki-client