$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: HQdaKcbav/HXU4vvqU3m1bJrxHhM8gOxNzx6gTGGoIg= Subject key identifier: 2A:E0:B7:F6:00:E5:C5:14:3F:6E:8A:4D:CE:E7:5F:86:D7:0E:FA:30 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 73 Signing time: Sat 23 Aug 2025 07:14:27 +0000 Manifest this update: Sat 23 Aug 2025 07:14:26 +0000 Manifest next update: Sat 30 Aug 2025 07:14:26 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: Ray4SZJ2dYLtSuAPbo6pGDA4u2q7b054uw7QVrMyZVo=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Aug 23 07:14:26 2025 GMT Not After : Aug 30 07:14:26 2025 GMT Subject: CN=68a96a52-1ecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b9:71:fa:54:fc:ee:41:5f:40:bc:55:48:e3: 02:a3:cd:95:f8:97:33:29:f9:e9:5a:c1:b0:9e:a6: df:7b:99:50:80:2b:f3:f4:12:ed:ba:d2:07:1c:39: 28:50:b7:30:4e:45:0a:c4:63:93:ba:ec:84:c8:da: 5c:85:02:a4:07:4d:98:22:05:f3:49:bc:14:75:9b: 69:e7:e6:38:f6:bb:4e:19:7d:b3:c2:ae:f5:bf:d2: 55:ad:42:6b:7f:ce:bc:65:9d:bd:eb:b0:ef:9c:fc: 6d:cc:3b:9d:88:f4:88:3a:42:07:d6:27:45:14:e8: ee:0f:8f:e2:86:2a:96:d4:a7:46:91:e9:b2:34:e9: 67:51:8d:f2:f7:66:a8:a6:79:3f:79:85:73:53:f6: b7:17:f6:9e:d1:b2:d7:94:42:22:8e:e5:74:ef:1d: d8:23:d6:c4:e5:d1:ab:36:4a:18:54:7a:47:21:19: 19:83:e9:72:1c:87:2f:2d:38:e5:f7:53:ab:29:37: d5:c0:ef:0c:f8:7c:63:be:46:6d:02:a9:35:8e:03: ac:b1:28:0e:17:80:28:78:b5:c6:30:32:e7:fd:9f: d1:ee:d7:91:c4:d1:ac:eb:26:3e:18:3f:3a:c3:82: 37:98:44:79:19:6d:f0:5c:87:13:19:f8:ba:d3:d4: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E0:B7:F6:00:E5:C5:14:3F:6E:8A:4D:CE:E7:5F:86:D7:0E:FA:30 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f8:32:90:43:ec:91:70:26:ce:a7:4e:f5:65:75:ff:e4:83: 36:58:94:db:22:8b:f2:38:80:0f:a2:9e:fa:ae:d3:56:bd:d8: fd:bd:56:bb:f8:e0:26:83:5a:73:3d:39:42:e9:b4:3c:df:4d: 59:5a:b0:2b:9e:ab:e2:93:d8:6c:9e:8c:0b:8e:a7:03:57:d2: 5e:05:0a:db:bc:ce:dd:64:68:ab:7a:76:d8:87:cf:a9:b6:0a: 31:17:fa:35:7f:30:4e:4d:3f:54:8a:06:5d:ec:11:10:f9:5e: 55:1d:cc:82:da:99:ef:82:10:30:af:41:2f:04:36:8d:0b:64: b9:72:2e:35:8b:96:9e:bf:82:28:22:48:a6:0a:ec:d5:ea:4e: 7f:ec:a3:20:04:88:b1:d4:9e:b2:50:e4:ca:85:01:99:db:1c: e4:0a:16:4a:c2:f5:5f:3b:cb:01:0a:f5:6c:13:46:64:a3:2c: 95:61:e7:99:a6:04:7b:3b:2c:64:3f:60:5b:83:d2:49:4d:9e: ef:4c:e0:2f:fb:8c:91:f3:b6:df:a6:db:f8:44:e9:d6:15:70: f7:ec:fc:ce:07:e3:9f:5c:98:b2:0c:75:c2:3d:86:8d:07:a9: 3d:ec:bc:65:19:9b:ba:b4:18:14:76:4b:a0:b2:37:2b:b8:8b: 24:69:12:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA4MjMwNzE0MjZaFw0yNTA4MzAwNzE0MjZaMBgxFjAUBgNV BAMTDTY4YTk2YTUyLTFlY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfuXH6VPzuQV9AvFVI4wKjzZX4lzMp+elawbCept97mVCAK/P0Eu260gccOShQ tzBORQrEY5O67ITI2lyFAqQHTZgiBfNJvBR1m2nn5jj2u04ZfbPCrvW/0lWtQmt/ zrxlnb3rsO+c/G3MO52I9Ig6QgfWJ0UU6O4Pj+KGKpbUp0aR6bI06WdRjfL3Zqim eT95hXNT9rcX9p7RsteUQiKO5XTvHdgj1sTl0as2ShhUekchGRmD6XIchy8tOOX3 U6spN9XA7wz4fGO+Rm0CqTWOA6yxKA4XgCh4tcYwMuf9n9Hu15HE0azrJj4YPzrD gjeYRHkZbfBchxMZ+LrT1HWBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKuC39gDl xRQ/bopNzudfhtcO+jAwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIH4MpBD7JFwJs6nTvVldf/kgzZYlNsii/I4gA+invqu01a92P29Vrv4 4CaDWnM9OULptDzfTVlasCueq+KT2GyejAuOpwNX0l4FCtu8zt1kaKt6dtiHz6m2 CjEX+jV/ME5NP1SKBl3sERD5XlUdzILame+CEDCvQS8ENo0LZLlyLjWLlp6/gigi SKYK7NXqTn/soyAEiLHUnrJQ5MqFAZnbHOQKFkrC9V87ywEK9WwTRmSjLJVh55mm BHs7LGQ/YFuD0klNnu9M4C/7jJHztt+m2/hE6dYVcPfs/M4H459cmLIMdcI9ho0H qT3svGUZm7q0GBR2S6CyNyu4iyRpEr0= -----END CERTIFICATE-----Generated at Sat Aug 23 16:28:53 2025 by rpki-client