$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: uIBS1C6MGoNg4WuDJl8jKmOIS1vjh5mZ2JjsulSkQXk= Subject key identifier: 70:D6:62:94:7D:12:8C:ED:91:E7:A7:09:93:AF:8D:3C:17:B8:34:84 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: CE Signing time: Sat 23 Aug 2025 05:51:24 +0000 Manifest this update: Sat 23 Aug 2025 05:51:23 +0000 Manifest next update: Sat 30 Aug 2025 05:51:23 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: 8FoNrymsdaC9reTYcNnY+SCPE33+GkWtwRSbcLdyapQ=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Aug 23 05:51:23 2025 GMT Not After : Aug 30 05:51:23 2025 GMT Subject: CN=68a956db-8c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8a:90:5c:fd:d7:24:5b:1d:a1:24:f0:b2:cd: a8:a9:2d:29:0d:50:ea:d4:7f:b4:81:26:4a:36:82: 26:2d:0b:d6:0a:0a:30:59:54:45:b2:ac:ae:3e:f6: 2b:ee:9f:bc:8d:ff:dc:1a:31:76:04:63:4e:a4:b0: e5:ff:91:ff:6d:78:34:79:13:fb:dd:4a:cf:56:c2: a7:b2:97:3a:52:d9:b9:6a:57:e3:52:9e:bc:7d:ce: 1f:5d:7a:66:bb:ef:90:93:04:29:3e:e0:c9:22:a8: c2:f9:1b:06:da:08:bf:59:8d:a3:91:a9:eb:ed:da: d1:85:b6:dc:eb:8d:e0:2c:16:a4:cd:fc:70:48:f8: 88:04:13:a3:18:f2:6c:65:67:0f:b8:de:c1:ac:7f: 34:23:bd:7a:6e:73:9b:91:3e:ba:8e:a6:b7:06:aa: f6:61:2e:b8:23:40:41:cd:6e:7d:fb:2d:ac:18:91: 5f:ff:1c:b2:97:29:fb:72:1c:41:8f:8e:ef:0b:30: ba:67:60:d2:6b:13:18:34:af:0f:54:e3:7f:9a:b7: 5e:04:76:ab:9f:73:ef:8a:32:8c:ab:f7:ee:32:3d: 90:42:86:68:5d:fd:2c:2b:90:0b:fe:6f:83:c4:95: 81:ee:81:b8:34:df:cb:d5:a4:fa:75:df:36:1a:4b: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D6:62:94:7D:12:8C:ED:91:E7:A7:09:93:AF:8D:3C:17:B8:34:84 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:fb:87:cb:dd:c0:10:04:e4:d9:11:c4:21:80:49:1b:4d:92: 34:29:52:d1:96:e8:1e:30:3d:db:6b:a6:75:31:df:d1:6b:0e: 7a:a8:6e:49:0f:13:d8:6e:1c:c1:2e:4e:86:0c:1b:f4:75:b8: 05:0e:2a:ef:6b:0b:84:0b:6f:bb:6b:dd:80:74:42:48:d4:9b: 67:b3:73:10:06:a8:63:ce:ad:d5:73:e9:2f:9e:96:6f:63:26: bb:41:f6:94:f8:a9:bb:bb:f2:85:51:32:4d:de:c7:4e:51:52: d9:09:4e:0a:50:98:1a:30:d2:b2:86:23:07:b2:cb:35:6a:b2: 98:54:ba:3b:d3:08:04:d2:45:f3:33:4b:25:3e:c5:73:5b:3c: e3:ca:6e:55:c5:e5:77:b5:b5:82:be:6d:82:20:0a:ce:cd:bf: 7c:d6:9d:03:a1:6e:f5:18:47:86:17:3d:96:f5:8e:dd:28:60: 6b:3f:77:5c:81:cf:d1:47:af:1c:a4:4d:f8:61:73:04:17:10: 35:01:6e:fe:2e:91:c2:9b:ce:7e:5e:89:96:5a:a2:72:15:e1: 93:16:e2:dd:4b:47:bb:69:50:56:e3:1b:fd:41:3c:60:d5:b6: 11:b9:fa:aa:d2:5b:ff:4e:28:22:89:63:98:63:21:a1:3d:72: 35:6b:85:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwODIzMDU1MTIzWhcNMjUwODMwMDU1MTIzWjAYMRYwFAYD VQQDEw02OGE5NTZkYi04Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoqQXP3XJFsdoSTwss2oqS0pDVDq1H+0gSZKNoImLQvWCgowWVRFsqyuPvYr 7p+8jf/cGjF2BGNOpLDl/5H/bXg0eRP73UrPVsKnspc6Utm5alfjUp68fc4fXXpm u++QkwQpPuDJIqjC+RsG2gi/WY2jkanr7drRhbbc643gLBakzfxwSPiIBBOjGPJs ZWcPuN7BrH80I716bnObkT66jqa3Bqr2YS64I0BBzW59+y2sGJFf/xyylyn7chxB j47vCzC6Z2DSaxMYNK8PVON/mrdeBHarn3PvijKMq/fuMj2QQoZoXf0sK5AL/m+D xJWB7oG4NN/L1aT6dd82Gks6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDWYpR9 EoztkeenCZOvjTwXuDSEMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw+4fL3cAQBOTZEcQhgEkbTZI0KVLRlugeMD3ba6Z1Md/Raw56qG5J DxPYbhzBLk6GDBv0dbgFDirvawuEC2+7a92AdEJI1Jtns3MQBqhjzq3Vc+kvnpZv Yya7QfaU+Km7u/KFUTJN3sdOUVLZCU4KUJgaMNKyhiMHsss1arKYVLo70wgE0kXz M0slPsVzWzzjym5VxeV3tbWCvm2CIArOzb981p0DoW71GEeGFz2W9Y7dKGBrP3dc gc/RR68cpE34YXMEFxA1AW7+LpHCm85+XomWWqJyFeGTFuLdS0e7aVBW4xv9QTxg 1bYRufqq0lv/TigiiWOYYyGhPXI1a4Xj -----END CERTIFICATE-----Generated at Sat Aug 23 12:38:49 2025 by rpki-client