$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: SDi33DwfdPHPR2PxCHBuudiktMFy/GCdKojlcLgMiXo= Subject key identifier: 7E:94:8F:CA:67:51:FC:02:18:A2:21:3D:98:7A:AD:FD:40:38:97:1F Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 086F Signing time: Fri 22 Aug 2025 20:48:00 +0000 Manifest this update: Fri 22 Aug 2025 20:47:59 +0000 Manifest next update: Fri 29 Aug 2025 20:47:59 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: dyn9FMmquPP/UYfvBWgSJ8LSbgK9Lez55bQSZOhF6qQ=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Aug 22 20:47:59 2025 GMT Not After : Aug 29 20:47:59 2025 GMT Subject: CN=68a8d77f-6ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:94:df:b9:2d:e1:5a:1f:70:e4:57:d5:c2:1d: 44:13:74:30:18:26:7a:3c:c8:e7:e5:ee:03:1d:93: 7e:09:26:07:ea:7d:02:65:cb:db:f8:0f:2a:b1:ea: d8:06:f1:0d:22:72:cd:dd:6e:f6:31:26:8e:27:a3: 77:cb:b9:55:3a:d2:14:0e:6b:fa:13:8a:e6:67:52: e6:f7:45:4a:da:4a:cb:4e:59:3d:e1:e7:8e:00:f2: 92:32:5b:f0:e5:0d:a1:be:61:e7:20:ca:1f:28:3f: b7:7d:13:33:ed:da:c7:00:8a:39:7f:51:69:d4:95: 9e:a2:2a:03:a9:8b:ac:c4:72:3e:83:1d:61:a3:ae: 3f:2f:3a:f2:f9:78:79:35:76:20:5e:3d:47:2e:df: 85:da:c3:22:10:1c:5d:c9:26:3f:d4:43:75:aa:42: b3:dc:8b:4a:10:69:51:78:e0:0f:b7:e5:f9:1b:38: 2a:1d:b3:5a:63:9b:3b:1c:12:de:0d:80:ee:4c:6f: d1:73:21:dd:98:1e:e9:0b:4a:5f:d8:48:79:50:74: 24:37:14:a1:63:06:e0:80:b8:e2:da:08:01:30:46: 52:a6:90:96:18:88:4b:be:6f:77:95:35:88:35:6c: 4c:72:2a:7d:af:1f:ab:b1:5b:42:f9:51:68:27:44: 1e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:94:8F:CA:67:51:FC:02:18:A2:21:3D:98:7A:AD:FD:40:38:97:1F X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b9:52:ee:66:87:f4:a1:e7:3f:39:48:6d:fe:f3:2a:dc:bc: c6:eb:54:8a:1c:28:cf:9a:11:43:3a:a8:1a:1f:7a:82:8a:ba: cc:1b:30:6a:75:74:ba:af:41:56:c2:3e:35:5d:df:2f:2f:3d: aa:5a:8d:83:76:d9:08:88:cf:fe:30:6d:01:f7:fe:a6:61:0b: a0:ea:44:86:4c:2c:29:d3:86:92:5f:35:20:cd:2f:ec:d4:01: 8d:db:26:f0:76:66:6f:90:82:3b:eb:34:22:62:a8:9f:63:1c: 01:e8:0e:ff:c4:99:e4:c5:8b:4a:94:29:1e:2d:4c:08:07:24: a2:13:ae:65:ac:c6:f2:ee:20:46:97:d0:bf:c0:07:fc:ac:a3: 5d:a0:fc:ef:82:d8:58:04:eb:47:94:ff:3c:75:02:c0:fc:63: 27:21:94:eb:f8:99:98:f5:c9:99:d2:b1:aa:c5:ca:c9:48:0e: 92:3c:92:fd:34:6d:1d:a0:fc:ab:b0:fa:99:10:c4:0a:d5:60: 4e:4d:d1:60:ad:79:e5:84:08:97:b0:f3:fb:d7:4f:8d:79:d2: f7:6b:fc:7d:c7:23:cb:17:cb:6b:64:f9:b5:83:0c:56:73:1b: f6:f4:a1:cb:b9:a4:a7:aa:47:d7:a7:d8:7b:7b:3f:dc:f5:84: 16:6d:e1:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwODIyMjA0NzU5WhcNMjUwODI5MjA0NzU5WjAYMRYwFAYD VQQDEw02OGE4ZDc3Zi02ZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JTfuS3hWh9w5FfVwh1EE3QwGCZ6PMjn5e4DHZN+CSYH6n0CZcvb+A8qserY BvENInLN3W72MSaOJ6N3y7lVOtIUDmv6E4rmZ1Lm90VK2krLTlk94eeOAPKSMlvw 5Q2hvmHnIMofKD+3fRMz7drHAIo5f1Fp1JWeoioDqYusxHI+gx1ho64/Lzry+Xh5 NXYgXj1HLt+F2sMiEBxdySY/1EN1qkKz3ItKEGlReOAPt+X5GzgqHbNaY5s7HBLe DYDuTG/RcyHdmB7pC0pf2Eh5UHQkNxShYwbggLji2ggBMEZSppCWGIhLvm93lTWI NWxMcip9rx+rsVtC+VFoJ0QeMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6Uj8pn UfwCGKIhPZh6rf1AOJcfMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsuVLuZof0oec/OUht/vMq3LzG61SKHCjPmhFDOqgaH3qCirrMGzBq dXS6r0FWwj41Xd8vLz2qWo2DdtkIiM/+MG0B9/6mYQug6kSGTCwp04aSXzUgzS/s 1AGN2ybwdmZvkII76zQiYqifYxwB6A7/xJnkxYtKlCkeLUwIBySiE65lrMby7iBG l9C/wAf8rKNdoPzvgthYBOtHlP88dQLA/GMnIZTr+JmY9cmZ0rGqxcrJSA6SPJL9 NG0doPyrsPqZEMQK1WBOTdFgrXnlhAiXsPP710+NedL3a/x9xyPLF8trZPm1gwxW cxv29KHLuaSnqkfXp9h7ez/c9YQWbeHa -----END CERTIFICATE-----Generated at Sat Aug 23 21:26:54 2025 by rpki-client