$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft File: u99YzWESke9boarLayzE7VCwEVc.mft (raw, json) Hash identifier: nVRbrLoOYolr1gNaPEj9+EqvUOlprPP9siWBQLjZjDs= Subject key identifier: C3:ED:1C:73:9D:AD:5E:94:46:7D:D1:F1:BE:F5:B3:31:31:B9:14:28 Authority key identifier: BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 Certificate issuer: /CN=A91D46FD/serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Certificate serial: 045C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft Manifest number: 0443 Signing time: Sat 23 Aug 2025 00:33:08 +0000 Manifest this update: Sat 23 Aug 2025 00:33:08 +0000 Manifest next update: Sat 30 Aug 2025 00:33:08 +0000 Files and hashes: 1: u99YzWESke9boarLayzE7VCwEVc.crl (hash: 6g3S2NOd/nAUbpmcftl6/rIQgM9Wi5t9WaMpIkkyt8c=) 2: 08241A166B1111EE99759439C4F9AE02.roa (hash: ySASg3k7OY7oJkXL5Ws/83THPGLSCp+zucNat555hyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46FD, serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Validity Not Before: Aug 23 00:33:08 2025 GMT Not After : Aug 30 00:33:08 2025 GMT Subject: CN=68a90c44-a157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fc:75:61:99:ad:10:dd:f5:57:07:6e:90:b9: 13:41:e8:f0:e2:0e:20:5a:60:0c:ab:e3:a3:4d:2d: be:56:06:ab:69:db:3a:b5:ee:d6:f7:f3:19:24:c4: 66:8b:fc:7e:1f:3c:b6:dd:e7:99:b7:5a:13:88:26: 88:43:a5:ae:e3:62:5f:ee:2f:a7:2e:86:7a:7c:30: 76:d5:2f:3c:f5:ae:ab:1f:c3:c8:83:19:84:c4:2a: bd:67:4a:1b:f6:47:0d:db:1e:87:fd:78:18:9e:39: 52:5d:1f:4c:1b:37:0f:43:0a:aa:06:45:8e:90:21: 4b:45:b8:da:a3:4e:dd:a4:b1:85:41:36:cf:11:70: c4:61:bf:9d:ee:fd:1d:39:ff:88:08:7f:da:a8:5a: be:70:04:1b:04:e5:1b:9c:14:2e:21:f2:2a:6e:ac: 23:f9:f1:c2:ce:7b:f5:14:64:39:51:af:94:60:a4: d8:3b:12:82:61:7c:57:2c:99:61:b8:9a:88:2a:d4: e2:18:29:dd:10:07:42:28:53:e5:ba:b9:09:e5:9e: 78:02:67:8d:08:4d:d7:b1:c2:5b:6f:a5:d8:70:a6: 73:9c:4b:f3:6e:70:58:0d:7d:fa:83:c2:d2:ea:14: 8a:4a:f3:40:e3:36:6a:87:e3:5f:a6:38:44:41:8d: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:ED:1C:73:9D:AD:5E:94:46:7D:D1:F1:BE:F5:B3:31:31:B9:14:28 X509v3 Authority Key Identifier: keyid:BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:af:0f:df:41:a7:51:64:3c:01:ef:07:5d:bf:ac:60:be:ab: 66:f0:84:9a:9a:09:45:a5:d3:ef:31:0e:bd:91:81:ec:62:0e: 3c:88:9b:e2:a7:f5:6f:86:11:f6:d5:e5:46:5b:13:0a:1e:57: ea:c3:cb:35:98:21:46:e4:fe:4c:cf:84:81:bc:9d:3e:d6:f1: 40:4b:3b:06:63:49:fa:d9:99:c3:b0:99:23:63:9e:0d:e7:c6: 98:09:cc:4d:f1:79:23:50:b9:56:8f:ea:82:ac:3a:17:e5:b1: f9:4c:6c:1b:34:b7:32:47:03:e9:c4:d3:ff:56:70:c0:0e:1f: 90:5b:58:56:14:70:77:4a:9f:c6:13:ad:d2:62:fb:23:8f:03: cd:a6:05:0b:40:ed:89:22:0b:8f:ab:b8:e6:69:8e:1c:aa:81: 01:29:e3:38:2f:73:d0:de:fb:0f:1f:4d:6e:87:67:e7:62:09: 28:af:7a:2b:83:5b:33:c4:44:ba:d1:bd:13:ec:4e:a6:f6:80: 59:29:5f:0f:69:c8:29:fd:9b:5d:c3:0f:f9:c0:5b:35:8a:7e: 5c:15:cd:6b:7f:7f:37:a3:86:2b:78:68:be:08:d8:36:a1:db: 3f:b3:f4:0b:0a:1a:f1:c4:70:82:06:1c:28:9d:4d:57:e4:06: dd:c2:d6:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2RkQxMTAvBgNVBAUTKEJCREY1OENENjExMjkxRUY1QkExQUFDQjZCMkNDNEVE NTBCMDExNTcwHhcNMjUwODIzMDAzMzA4WhcNMjUwODMwMDAzMzA4WjAYMRYwFAYD VQQDEw02OGE5MGM0NC1hMTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/x1YZmtEN31VwdukLkTQejw4g4gWmAMq+OjTS2+Vgarads6te7W9/MZJMRm i/x+Hzy23eeZt1oTiCaIQ6Wu42Jf7i+nLoZ6fDB21S889a6rH8PIgxmExCq9Z0ob 9kcN2x6H/XgYnjlSXR9MGzcPQwqqBkWOkCFLRbjao07dpLGFQTbPEXDEYb+d7v0d Of+ICH/aqFq+cAQbBOUbnBQuIfIqbqwj+fHCznv1FGQ5Ua+UYKTYOxKCYXxXLJlh uJqIKtTiGCndEAdCKFPlurkJ5Z54AmeNCE3XscJbb6XYcKZznEvzbnBYDX36g8LS 6hSKSvNA4zZqh+NfpjhEQY1pQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPtHHOd rV6URn3R8b71szExuRQoMB8GA1UdIwQYMBaAFLvfWM1hEpHvW6Gqy2ssxO1QsBFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZGRC81OUJGMjE0RTc0 NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tlOWJvYXJMYXl6RTdWQ3dF VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5OVl6V0VTa2U5Ym9hckxheXpFN1ZDd0VWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDZGRC81OUJGMjE0RTc0NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tl OWJvYXJMYXl6RTdWQ3dFVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3rw/fQadRZDwB7wddv6xgvqtm8ISamglFpdPvMQ69kYHsYg48iJvi p/VvhhH21eVGWxMKHlfqw8s1mCFG5P5Mz4SBvJ0+1vFASzsGY0n62ZnDsJkjY54N 58aYCcxN8XkjULlWj+qCrDoX5bH5TGwbNLcyRwPpxNP/VnDADh+QW1hWFHB3Sp/G E63SYvsjjwPNpgULQO2JIguPq7jmaY4cqoEBKeM4L3PQ3vsPH01uh2fnYgkor3or g1szxES60b0T7E6m9oBZKV8Pacgp/Ztdww/5wFs1in5cFc1rf383o4YreGi+CNg2 ods/s/QLChrxxHCCBhwonU1X5AbdwtY3 -----END CERTIFICATE-----Generated at Sat Aug 23 18:38:05 2025 by rpki-client