$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: fmgdf5Rn/0FoAxoG/rabJ/WglxQ1eZlfYOBtVvQWyTM= Subject key identifier: 22:CF:05:C4:11:25:E4:29:49:C9:27:0F:0B:5B:E0:73:78:3E:A0:DA Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 015D Signing time: Sat 23 Aug 2025 04:12:38 +0000 Manifest this update: Sat 23 Aug 2025 04:12:37 +0000 Manifest next update: Sat 30 Aug 2025 04:12:37 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: gZOZVxZWS3GCd1xiKmBxuSsC1afCk/r1JbOG7KjOmKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Aug 23 04:12:37 2025 GMT Not After : Aug 30 04:12:37 2025 GMT Subject: CN=68a93fb6-d98f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8a:41:73:20:ea:69:71:8f:8f:b3:06:cc:71: dd:8e:87:1e:cd:e4:57:ab:82:65:f6:f2:d4:1e:76: 5b:f0:ad:86:89:1d:ed:40:db:2a:7f:14:d2:1f:69: 3a:ba:d7:7a:8e:77:0f:5c:22:e0:6c:f6:10:da:dd: 32:8b:5d:fa:45:5f:6b:72:06:66:0e:4d:5c:e5:ec: f8:94:11:e4:8e:11:f1:7d:b8:d6:78:2e:71:42:7b: db:22:0b:c2:0d:99:11:63:3c:7d:00:fd:cb:8c:21: 91:b3:73:ab:64:4e:63:48:73:6f:8f:3e:15:5d:f6: c8:a9:14:1c:6a:cd:9c:cb:0e:3e:f8:0f:bd:ec:2c: 1f:62:ca:4d:4b:b2:71:8f:86:30:a4:68:06:23:a9: 86:4c:00:ff:11:91:04:8a:d9:cc:c7:4a:70:3f:4d: ec:ee:c0:f2:a8:ec:97:18:76:3e:59:31:75:ac:c7: 28:0b:0b:0f:3b:2f:c0:c6:2f:54:49:40:45:06:58: 91:39:93:5b:8e:62:fb:60:10:7c:2f:8e:36:81:9a: d7:ac:3f:d8:f9:51:0b:b2:b7:e3:10:ab:7d:82:5d: 92:9d:d8:f1:14:d8:a6:d5:28:03:cd:1c:04:c8:88: 4d:0e:0d:e5:f6:ae:39:9b:c8:0e:cc:62:73:ad:09: 86:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CF:05:C4:11:25:E4:29:49:C9:27:0F:0B:5B:E0:73:78:3E:A0:DA X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:b5:92:1a:f7:be:f2:01:27:27:33:89:68:1d:78:3b:c6:d6: 93:ab:1c:5e:a6:ae:8c:0f:56:2b:82:1d:c6:0e:f2:64:2f:d5: 12:66:9d:fd:00:31:f5:24:94:7e:d5:38:64:d9:09:e0:2e:8b: 54:48:2e:b3:09:79:17:5c:88:b1:bc:c4:36:20:59:c6:36:3a: 13:74:9f:90:87:38:71:ec:c9:5f:2e:5b:c2:e4:2f:09:00:2b: a8:c8:09:56:7b:a3:dc:c5:22:08:d4:e4:68:23:59:2a:3d:71: 84:a1:ea:b4:71:4e:bb:e1:1f:4d:a7:80:46:de:54:b8:79:5d: 50:7d:57:81:fc:a9:5c:ba:e7:f0:f5:18:6a:79:f1:a2:67:8c: 26:8e:5c:f4:df:5c:83:74:dc:8d:86:f4:a5:e3:92:c7:88:a2: d2:41:2a:0b:91:fb:84:3f:3c:bd:db:f3:af:ec:15:cd:5b:a4: e9:77:ae:ef:40:58:0a:e9:ed:bb:0f:24:6c:1e:c3:7c:c4:17: 3e:3d:46:aa:ec:0e:35:df:e3:06:b2:c9:4c:f7:b4:93:d0:bc: be:e8:4a:91:a0:88:47:7c:6a:61:f1:7a:1f:35:a3:c0:55:79: a8:77:52:1b:0f:12:bf:64:a8:ab:68:9b:af:21:b7:52:7c:a2: f2:38:97:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwODIzMDQxMjM3WhcNMjUwODMwMDQxMjM3WjAYMRYwFAYD VQQDEw02OGE5M2ZiNi1kOThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYpBcyDqaXGPj7MGzHHdjocezeRXq4Jl9vLUHnZb8K2GiR3tQNsqfxTSH2k6 utd6jncPXCLgbPYQ2t0yi136RV9rcgZmDk1c5ez4lBHkjhHxfbjWeC5xQnvbIgvC DZkRYzx9AP3LjCGRs3OrZE5jSHNvjz4VXfbIqRQcas2cyw4++A+97CwfYspNS7Jx j4YwpGgGI6mGTAD/EZEEitnMx0pwP03s7sDyqOyXGHY+WTF1rMcoCwsPOy/Axi9U SUBFBliROZNbjmL7YBB8L442gZrXrD/Y+VELsrfjEKt9gl2SndjxFNim1SgDzRwE yIhNDg3l9q45m8gOzGJzrQmGDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLPBcQR JeQpScknDwtb4HN4PqDaMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8tZIa977yAScnM4loHXg7xtaTqxxepq6MD1Yrgh3GDvJkL9USZp39 ADH1JJR+1Thk2QngLotUSC6zCXkXXIixvMQ2IFnGNjoTdJ+Qhzhx7MlfLlvC5C8J ACuoyAlWe6PcxSII1ORoI1kqPXGEoeq0cU674R9Np4BG3lS4eV1QfVeB/Klcuufw 9RhqefGiZ4wmjlz031yDdNyNhvSl45LHiKLSQSoLkfuEPzy92/Ov7BXNW6Tpd67v QFgK6e27DyRsHsN8xBc+PUaq7A413+MGsslM97ST0Ly+6EqRoIhHfGph8XofNaPA VXmod1IbDxK/ZKiraJuvIbdSfKLyOJdJ -----END CERTIFICATE-----Generated at Sat Aug 23 12:43:39 2025 by rpki-client