$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft File: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft (raw, json) Hash identifier: FvP4wcUHpMIpVhL5SfnTsbokYJ+TAawAgIgNkOEu44Q= Subject key identifier: E7:FE:D2:95:AB:6F:03:C3:5D:7B:6E:6D:99:AC:D1:85:1B:17:C4:24 Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft Manifest number: 68 Signing time: Sat 23 Aug 2025 07:39:32 +0000 Manifest this update: Sat 23 Aug 2025 07:39:32 +0000 Manifest next update: Sat 30 Aug 2025 07:39:31 +0000 Files and hashes: 1: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl (hash: q/xxNlqgca9JhZNNV/KherOLv4csuo2XLqBTB3/1EMI=) 2: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (hash: 61Maf4HdTVjL1p15SmMO0sDKtCDOS9JEKlRjMIwn4Cg=) 3: 151DF27C622811F0B73BE516C4F9AE02.roa (hash: ryWZk4WLGGcXKcudFMNiB3yA26BHUntG7BSh+vyHPp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Aug 23 07:39:32 2025 GMT Not After : Aug 30 07:39:31 2025 GMT Subject: CN=68a97034-bd4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:4e:38:e8:9e:ee:17:a5:1c:11:97:fe:65:68: 39:21:ec:c4:b7:4f:2a:5a:73:9c:37:98:38:76:1e: b2:07:62:10:61:3b:4f:85:25:e0:14:65:2c:45:7d: f5:e1:fb:d7:76:b3:c1:27:d7:1f:85:7e:be:3d:fb: 1f:f4:9d:5e:6e:6f:fd:57:d0:5f:ba:5e:49:ce:e3: 3e:df:2d:f6:26:bf:0f:cf:74:00:6d:5d:9d:cc:de: 0b:1b:29:5d:51:21:3d:0d:2a:b1:f9:b0:16:bc:0a: b7:f8:67:05:82:d5:0b:e3:57:ff:02:80:88:ad:00: f0:1a:49:6f:b5:c7:91:7e:5b:4f:7e:8c:b0:c2:e9: 04:b5:6d:a1:8c:80:03:b2:99:b3:28:a1:0a:1a:8a: ad:1c:d2:40:07:2e:cd:9c:0a:22:ca:7f:ae:61:6d: 7b:6a:7b:21:94:89:59:a8:c7:3d:d9:fb:57:08:96: b2:48:ab:18:67:17:77:09:99:3a:b3:41:98:c6:25: 78:ce:db:d6:06:2d:bc:24:6b:66:ec:f5:5c:d9:05: de:4a:b2:f0:21:72:57:c6:97:4a:2c:0c:f5:6d:89: b5:77:9f:3e:59:6d:97:ec:e3:11:9b:53:2e:55:67: 34:d0:2a:e6:05:b8:ee:49:b3:3a:2c:74:7d:cf:83: 12:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FE:D2:95:AB:6F:03:C3:5D:7B:6E:6D:99:AC:D1:85:1B:17:C4:24 X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:66:d4:73:fa:11:fd:73:ad:4b:b5:62:ca:80:dc:5f:2d:55: ba:4b:43:6a:e4:54:c4:c1:5b:2c:4d:92:e9:17:a1:d3:54:ad: 86:e7:be:13:58:4e:01:63:5f:7a:0d:4a:be:48:b6:52:f4:26: 9f:d1:5f:07:33:29:b7:d9:51:4f:75:83:b4:74:58:58:5c:ad: 97:59:ee:da:5e:f4:0b:51:75:d4:24:4f:0d:a7:5b:78:14:d2: be:01:6e:7b:1c:e8:48:56:c1:06:8d:13:69:c2:53:30:de:8a: 2e:c2:7e:f4:0d:f5:0a:a8:e1:28:69:e9:34:84:66:3e:9f:ab: b1:4d:f9:a5:d9:04:07:0a:5e:f5:61:59:db:ba:cd:7d:e7:57: 96:be:45:3d:9c:bc:fd:14:ca:4a:cf:5d:02:38:cb:e6:78:06: 10:64:48:ab:5e:c9:86:26:2e:b5:0a:5a:ca:8d:8f:12:4d:b5: 79:6a:d3:31:af:48:d4:8c:f9:57:47:e9:db:67:60:95:4e:65: 89:c6:53:11:85:eb:76:89:c9:ab:c2:83:f5:af:33:e5:a0:c7: 26:96:a3:d8:ce:35:5a:f8:9d:c3:2d:28:de:cb:a3:36:1e:e4: 2b:e5:2c:bb:73:f5:b6:a6:d0:ad:9b:cf:a0:5f:d0:f6:91:b5: 73:d2:29:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0FBNTExMC8GA1UEBRMoRjcyNjdFODBCRTgxN0YwNDNEMjhGQjdFNzMwNUY0QzQ4 OEE4MzkxQTAeFw0yNTA4MjMwNzM5MzJaFw0yNTA4MzAwNzM5MzFaMBgxFjAUBgNV BAMTDTY4YTk3MDM0LWJkNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUTjjonu4XpRwRl/5laDkh7MS3Typac5w3mDh2HrIHYhBhO0+FJeAUZSxFffXh +9d2s8En1x+Ffr49+x/0nV5ub/1X0F+6XknO4z7fLfYmvw/PdABtXZ3M3gsbKV1R IT0NKrH5sBa8Crf4ZwWC1QvjV/8CgIitAPAaSW+1x5F+W09+jLDC6QS1baGMgAOy mbMooQoaiq0c0kAHLs2cCiLKf65hbXtqeyGUiVmoxz3Z+1cIlrJIqxhnF3cJmTqz QZjGJXjO29YGLbwka2bs9VzZBd5KsvAhclfGl0osDPVtibV3nz5ZbZfs4xGbUy5V ZzTQKuYFuO5JszosdH3PgxJhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5/7Slatv A8Nde25tmazRhRsXxCQwHwYDVR0jBBgwFoAU9yZ+gL6BfwQ9KPt+cwX0xIioORow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QUE1L0JBRkIzNTc0MTVC QjExRjBCRkQ1NDg4MUM0RjlBRTAyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09S by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOXlaLWdMNkJmd1E5S1B0LWN3WDB4SWlvT1JvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 QUE1L0JBRkIzNTc0MTVCQjExRjBCRkQ1NDg4MUM0RjlBRTAyLzl5Wi1nTDZCZndR OUtQdC1jd1gweElpb09Sby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKxm1HP6Ef1zrUu1YsqA3F8tVbpLQ2rkVMTBWyxNkukXodNUrYbnvhNY TgFjX3oNSr5ItlL0Jp/RXwczKbfZUU91g7R0WFhcrZdZ7tpe9AtRddQkTw2nW3gU 0r4Bbnsc6EhWwQaNE2nCUzDeii7CfvQN9Qqo4Shp6TSEZj6fq7FN+aXZBAcKXvVh Wdu6zX3nV5a+RT2cvP0UykrPXQI4y+Z4BhBkSKteyYYmLrUKWsqNjxJNtXlq0zGv SNSM+VdH6dtnYJVOZYnGUxGF63aJyavCg/WvM+WgxyaWo9jONVr4ncMtKN7LozYe 5CvlLLtz9bam0K2bz6Bf0PaRtXPSKWc= -----END CERTIFICATE-----Generated at Sat Aug 23 21:00:30 2025 by rpki-client