$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: TOUmw7ARjDuHXkXHtpujY36I+6HiJ8LfSU6cnc++dLM= Subject key identifier: 2E:17:9F:0C:22:BA:9C:2F:3C:12:88:BD:46:79:34:2B:FD:D6:2A:31 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0EB2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0EA1 Signing time: Fri 22 Aug 2025 17:48:04 +0000 Manifest this update: Fri 22 Aug 2025 17:48:03 +0000 Manifest next update: Fri 29 Aug 2025 17:48:03 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: TAF3AYVpR5wucO66hJhxjJHNzSpOJ/gXpmgGEtOc1fY=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:48:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3762 (0xeb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Aug 22 17:48:03 2025 GMT Not After : Aug 29 17:48:03 2025 GMT Subject: CN=68a8ad54-c713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:32:57:70:a2:9e:11:96:1a:82:83:b7:cd:0e: bd:70:32:b4:37:fd:86:3f:75:c4:85:f5:a6:ab:51: a5:3e:7d:d0:bc:13:1d:93:2e:1e:d4:43:c8:be:8a: c9:25:d9:ad:00:75:74:86:f0:23:5d:28:00:f2:47: e4:b5:ca:0d:2f:82:ef:e7:af:fc:4c:b9:a4:b5:5a: 56:5d:6c:30:32:b3:05:9c:9f:30:ca:28:1c:82:98: 93:48:d9:df:0c:58:93:af:49:6c:8a:7c:dd:35:d7: 0a:c5:be:7c:24:49:79:33:ba:1a:bf:fe:18:93:67: b9:7e:80:90:e2:3a:bb:ab:f0:3d:02:dd:f0:fc:b8: f6:46:12:a3:3e:fa:6b:20:c2:e0:9c:65:e9:fd:9a: d3:34:35:da:4a:4e:c7:7b:f8:40:e2:95:68:99:23: 85:9a:02:86:24:24:c2:fe:c1:12:cb:07:d5:27:d7: a0:9c:af:d3:57:6c:59:22:27:36:84:a7:55:2e:e6: 4e:ab:ad:0a:04:8a:49:b8:70:0d:48:c7:bb:3c:1f: 84:4d:96:4d:a9:c9:87:b0:ef:18:13:8f:f4:cc:fb: 3b:af:b2:65:36:37:63:be:3e:23:1b:26:2a:da:f6: 0d:b1:d1:4b:ec:5a:5b:f3:6a:10:6c:39:3c:8c:e0: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:17:9F:0C:22:BA:9C:2F:3C:12:88:BD:46:79:34:2B:FD:D6:2A:31 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:03:a6:a6:12:7d:1c:d7:23:ae:42:c5:4d:d1:d2:96:b9:c7: 83:96:7f:04:1c:f6:3e:f3:85:66:75:1f:2c:13:da:e4:67:64: f6:92:4c:e7:99:fb:72:9f:f2:c1:19:cd:16:5c:cc:b4:d8:48: cd:12:8e:fd:23:97:f0:97:31:10:f6:51:3f:80:1f:aa:e2:e6: db:9f:58:79:04:cd:20:96:0c:94:29:74:d1:2a:3d:d7:11:bd: 05:9a:16:9b:63:06:aa:f4:85:b0:55:b7:9d:9a:d8:12:df:2f: 23:c9:e1:f6:ad:92:bb:aa:1c:bb:2f:bb:a2:20:2d:34:39:f8: d1:ed:75:6e:f1:55:16:29:ae:60:89:57:c8:ca:ac:0f:0d:35: 0d:f7:00:44:45:1b:b2:69:a9:ae:40:2a:43:97:8c:11:16:94: 51:e0:78:35:15:3e:f9:f2:3a:6b:f3:b3:9a:51:bb:c3:aa:e3: 4c:5a:34:cd:56:a7:bd:75:04:e5:c3:25:d0:7e:97:55:bc:b6: 6b:b0:18:6a:c6:96:ef:81:02:5c:45:97:46:96:a3:e1:69:bb: ca:4d:f8:ea:ab:e1:89:84:98:49:51:f8:d8:fc:76:99:54:08: 54:10:4b:1e:25:3b:60:e0:88:79:34:3c:fc:9b:32:ad:2a:73: d6:c9:ac:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUwODIyMTc0ODAzWhcNMjUwODI5MTc0ODAzWjAYMRYwFAYD VQQDEw02OGE4YWQ1NC1jNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzJXcKKeEZYagoO3zQ69cDK0N/2GP3XEhfWmq1GlPn3QvBMdky4e1EPIvorJ JdmtAHV0hvAjXSgA8kfktcoNL4Lv56/8TLmktVpWXWwwMrMFnJ8wyigcgpiTSNnf DFiTr0lsinzdNdcKxb58JEl5M7oav/4Yk2e5foCQ4jq7q/A9At3w/Lj2RhKjPvpr IMLgnGXp/ZrTNDXaSk7He/hA4pVomSOFmgKGJCTC/sESywfVJ9egnK/TV2xZIic2 hKdVLuZOq60KBIpJuHANSMe7PB+ETZZNqcmHsO8YE4/0zPs7r7JlNjdjvj4jGyYq 2vYNsdFL7Fpb82oQbDk8jOB1MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4Xnwwi upwvPBKIvUZ5NCv91ioxMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOA6amEn0c1yOuQsVN0dKWuceDln8EHPY+84VmdR8sE9rkZ2T2kkzn mftyn/LBGc0WXMy02EjNEo79I5fwlzEQ9lE/gB+q4ubbn1h5BM0glgyUKXTRKj3X Eb0FmhabYwaq9IWwVbedmtgS3y8jyeH2rZK7qhy7L7uiIC00OfjR7XVu8VUWKa5g iVfIyqwPDTUN9wBERRuyaamuQCpDl4wRFpRR4Hg1FT758jpr87OaUbvDquNMWjTN Vqe9dQTlwyXQfpdVvLZrsBhqxpbvgQJcRZdGlqPhabvKTfjqq+GJhJhJUfjY/HaZ VAhUEEseJTtg4Ih5NDz8mzKtKnPWyax4 -----END CERTIFICATE-----Generated at Sat Aug 23 14:26:29 2025 by rpki-client