$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: J3OiMk6UXE0hjUWT3tWBoimfJFylwEtaE7dqfLc4QAs= Subject key identifier: 20:AF:5B:88:5F:39:0A:F6:62:CB:10:72:AE:1F:80:49:0E:79:A7:0B Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02B2 Signing time: Sat 23 Aug 2025 01:45:48 +0000 Manifest this update: Sat 23 Aug 2025 01:45:48 +0000 Manifest next update: Sat 30 Aug 2025 01:45:48 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: UdUtfSJ28LBJ34uPQw1X0CrwfYNGTYnmOfApGtrPH8c=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Aug 23 01:45:48 2025 GMT Not After : Aug 30 01:45:48 2025 GMT Subject: CN=68a91d4c-3dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:df:48:b1:3c:cf:a9:4e:83:9a:a3:86:39:f2: 32:8f:6a:a9:9f:c9:69:02:3e:92:b2:88:c2:b1:e1: b3:8b:f1:4c:35:ef:1b:a9:a5:94:ed:39:7d:0d:2a: c6:0f:b2:71:98:e4:fa:ef:8c:dc:ff:34:ae:9b:6c: 80:97:e1:18:df:d2:11:5d:ad:f8:7d:5e:7c:d4:d4: f7:0c:df:5b:00:6a:20:df:a8:de:14:36:1e:42:35: 56:f9:8b:79:ae:29:61:ff:f2:2b:6d:50:31:fa:e2: ec:de:86:28:28:96:f4:aa:6f:f5:78:f7:d5:27:73: dd:c0:8f:0f:f4:c9:e8:27:e8:04:f7:89:d7:f2:e8: 6e:60:fd:f5:ce:81:d3:76:e3:bb:41:88:bf:b3:0e: a2:9e:bc:32:e4:96:7c:fd:97:f1:dd:c9:fc:ab:5e: 86:0e:0c:c0:3e:51:36:4d:41:05:11:a3:ab:d4:12: 28:4a:c9:d5:97:f1:c2:bc:99:83:0e:bf:67:0f:78: 36:3e:d2:0e:c6:6c:ae:bb:22:0e:ea:80:53:5a:08: 98:fa:43:d2:db:58:01:9a:f7:6c:d8:af:f5:7c:9f: 1c:c2:b0:b1:75:64:b2:36:ac:0b:ec:86:93:07:b0: 42:0c:de:6c:5e:ab:70:d1:28:94:f5:67:3b:1c:df: 7a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AF:5B:88:5F:39:0A:F6:62:CB:10:72:AE:1F:80:49:0E:79:A7:0B X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:95:b5:1c:01:51:37:54:6d:ab:cc:3e:19:80:91:ab:0b:df: f0:27:60:7d:a9:77:18:a9:64:8a:77:01:34:45:9f:6b:9e:6b: fb:c5:29:f6:98:6d:93:36:54:88:81:38:4f:8d:1b:f4:f7:22: e0:56:b7:77:20:59:e7:fc:61:11:45:45:b2:29:53:65:e1:21: 15:2d:7c:49:a6:41:a1:5e:97:2d:b8:95:35:f3:f4:e4:91:8c: 4c:12:37:51:16:92:a6:52:92:0a:42:e1:1b:91:de:1c:a2:d6: 37:e1:97:28:d1:38:e4:ac:eb:f1:86:b6:69:92:f1:e0:ed:b4: 63:fe:14:0a:85:4a:c8:8d:60:c3:83:50:7b:fe:c2:19:e2:55: 97:fd:a5:4a:3f:6f:7a:0a:48:a3:22:e4:8d:ce:2d:e6:d8:84: 5a:43:e6:95:7b:96:62:0c:7f:59:7e:76:b7:8c:fb:f3:e8:ab: f7:24:89:0b:7d:56:72:f9:0a:25:e6:1b:ea:6e:fd:3a:8c:42: d1:c3:a7:c3:11:7b:56:e4:d2:47:5f:4a:9d:be:a1:88:5e:22: be:2f:e4:4e:be:21:30:5d:78:c6:9e:d3:81:00:a2:fc:96:af: 16:ab:1b:a4:3d:af:ca:be:3f:9d:43:17:3f:d1:c8:7a:a3:12: ae:c9:0f:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwODIzMDE0NTQ4WhcNMjUwODMwMDE0NTQ4WjAYMRYwFAYD VQQDEw02OGE5MWQ0Yy0zZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN9IsTzPqU6DmqOGOfIyj2qpn8lpAj6SsojCseGzi/FMNe8bqaWU7Tl9DSrG D7JxmOT674zc/zSum2yAl+EY39IRXa34fV581NT3DN9bAGog36jeFDYeQjVW+Yt5 rilh//IrbVAx+uLs3oYoKJb0qm/1ePfVJ3PdwI8P9MnoJ+gE94nX8uhuYP31zoHT duO7QYi/sw6inrwy5JZ8/Zfx3cn8q16GDgzAPlE2TUEFEaOr1BIoSsnVl/HCvJmD Dr9nD3g2PtIOxmyuuyIO6oBTWgiY+kPS21gBmvds2K/1fJ8cwrCxdWSyNqwL7IaT B7BCDN5sXqtw0SiU9Wc7HN96aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCvW4hf OQr2YssQcq4fgEkOeacLMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFlbUcAVE3VG2rzD4ZgJGrC9/wJ2B9qXcYqWSKdwE0RZ9rnmv7xSn2 mG2TNlSIgThPjRv09yLgVrd3IFnn/GERRUWyKVNl4SEVLXxJpkGhXpctuJU18/Tk kYxMEjdRFpKmUpIKQuEbkd4cotY34Zco0TjkrOvxhrZpkvHg7bRj/hQKhUrIjWDD g1B7/sIZ4lWX/aVKP296CkijIuSNzi3m2IRaQ+aVe5ZiDH9Zfna3jPvz6Kv3JIkL fVZy+Qol5hvqbv06jELRw6fDEXtW5NJHX0qdvqGIXiK+L+ROviEwXXjGntOBAKL8 lq8WqxukPa/Kvj+dQxc/0ch6oxKuyQ8Q -----END CERTIFICATE-----Generated at Sat Aug 23 17:11:20 2025 by rpki-client