$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: L77mmnpt5tlwrqr41BVQEenHiJUtbaRXV+Hd8y0GOeg= Subject key identifier: AE:6F:7B:9C:30:15:53:62:62:EB:BD:EF:A6:38:18:58:A0:C6:32:C0 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: AA Signing time: Sat 23 Aug 2025 06:21:09 +0000 Manifest this update: Sat 23 Aug 2025 06:21:09 +0000 Manifest next update: Sat 30 Aug 2025 06:21:09 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: gdPcZKIr6fWV4Zd9TT/ll/9MjZywAptW1BflBxhEAjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Aug 23 06:21:09 2025 GMT Not After : Aug 30 06:21:09 2025 GMT Subject: CN=68a95dd5-a205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a8:e1:fe:71:6e:29:27:c2:02:fc:f5:a2:e7: e2:ac:13:83:11:87:67:87:ea:18:47:a4:12:4e:a9: 12:4a:af:c7:07:a3:80:10:45:8a:cf:f0:6c:e3:56: 86:65:7b:5d:ca:96:66:b4:ea:3e:4a:bc:b9:ad:c1: 9c:df:b6:da:3b:54:ba:e6:25:ca:7b:82:f1:db:2c: 68:d5:42:2a:6c:20:67:41:1f:0c:27:0e:0b:46:b9: 4f:b9:4d:a7:51:a2:75:98:d2:a2:a8:c1:98:ff:85: f9:8a:99:75:75:93:0d:75:3e:cb:18:3f:9c:c6:7e: 7a:a8:d1:db:81:2d:da:1c:1f:10:25:6b:45:28:d9: fa:59:f5:30:60:e9:f8:f8:29:19:39:13:a6:33:83: 6b:ee:b6:98:04:44:73:7a:b2:44:3e:ee:9f:b7:7d: 75:70:65:31:3a:a3:dd:41:74:58:6f:64:78:3e:7a: c9:b8:d0:67:9b:c4:0c:50:3b:0d:b7:3c:89:5f:88: 09:09:d6:b2:9c:00:55:65:10:0c:ca:ef:da:d4:42: cf:f6:a7:52:7d:e2:9f:1c:73:9e:c6:0e:05:4f:73: 12:3f:6b:63:df:e1:b8:91:19:04:f9:9c:97:6e:5c: 62:72:c7:28:51:c4:77:66:00:63:32:33:57:0b:d0: ae:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6F:7B:9C:30:15:53:62:62:EB:BD:EF:A6:38:18:58:A0:C6:32:C0 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:bd:20:05:ec:0f:a0:c3:93:71:62:07:91:13:ed:03:a5:70: 3a:fa:a0:45:78:02:68:b9:03:2e:cb:1d:ff:35:64:92:59:5e: a7:98:fb:d6:3b:23:8b:d0:98:22:7b:84:40:b3:63:d8:25:0c: 3a:d1:2f:41:ca:12:ef:0f:cb:e9:18:dc:e8:42:87:b5:fc:a3: 9e:58:10:ff:e1:88:2a:e8:d0:ba:77:2d:1c:80:60:da:9c:10: 6b:06:ba:bf:c8:48:0c:c3:43:a5:d1:f9:d4:15:1c:47:3a:8c: cf:90:1b:66:69:9a:a1:99:41:2e:68:5c:9c:9e:e2:59:e1:8b: bc:7a:0d:7c:b6:40:36:df:d8:82:d4:f3:b8:8c:8b:fa:4d:71: 92:e7:2c:d9:29:92:66:0d:f4:72:bc:62:a4:df:dd:c7:90:cf: 7f:8f:27:0a:c8:b4:d4:07:68:8a:e7:ff:c5:8c:73:08:b5:bc: 85:a8:b7:17:69:83:54:96:02:90:05:5c:c5:94:8b:9d:8d:70: d3:8e:ad:6d:e6:38:66:23:e5:12:f9:41:d3:33:28:c3:88:b7: a0:32:34:ba:2f:f7:ed:d5:0c:ab:ab:06:f1:e8:8b:ce:9e:99: 86:1c:e6:f9:68:80:93:78:36:76:52:7d:b8:07:20:54:51:19: fb:e8:50:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUwODIzMDYyMTA5WhcNMjUwODMwMDYyMTA5WjAYMRYwFAYD VQQDEw02OGE5NWRkNS1hMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Kjh/nFuKSfCAvz1oufirBODEYdnh+oYR6QSTqkSSq/HB6OAEEWKz/Bs41aG ZXtdypZmtOo+Sry5rcGc37baO1S65iXKe4Lx2yxo1UIqbCBnQR8MJw4LRrlPuU2n UaJ1mNKiqMGY/4X5ipl1dZMNdT7LGD+cxn56qNHbgS3aHB8QJWtFKNn6WfUwYOn4 +CkZOROmM4Nr7raYBERzerJEPu6ft311cGUxOqPdQXRYb2R4PnrJuNBnm8QMUDsN tzyJX4gJCdaynABVZRAMyu/a1ELP9qdSfeKfHHOexg4FT3MSP2tj3+G4kRkE+ZyX blxicscoUcR3ZgBjMjNXC9CuKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5ve5ww FVNiYuu976Y4GFigxjLAMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1vSAF7A+gw5NxYgeRE+0DpXA6+qBFeAJouQMuyx3/NWSSWV6nmPvW OyOL0Jgie4RAs2PYJQw60S9ByhLvD8vpGNzoQoe1/KOeWBD/4Ygq6NC6dy0cgGDa nBBrBrq/yEgMw0Ol0fnUFRxHOozPkBtmaZqhmUEuaFycnuJZ4Yu8eg18tkA239iC 1PO4jIv6TXGS5yzZKZJmDfRyvGKk393HkM9/jycKyLTUB2iK5//FjHMItbyFqLcX aYNUlgKQBVzFlIudjXDTjq1t5jhmI+US+UHTMyjDiLegMjS6L/ft1Qyrqwbx6IvO npmGHOb5aICTeDZ2Un24ByBUURn76FBh -----END CERTIFICATE-----Generated at Sat Aug 23 21:21:23 2025 by rpki-client