$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: LBBQUqE8TCCIUjRe53LnZKjX3AiZv08qJRxEeE181TU= Subject key identifier: FD:72:DB:FB:AF:27:29:AC:5D:DA:FB:82:5E:28:D3:68:18:09:06:D0 Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: 37 Signing time: Sat 23 Aug 2025 07:49:36 +0000 Manifest this update: Sat 23 Aug 2025 07:49:36 +0000 Manifest next update: Sat 30 Aug 2025 07:49:36 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: Rv042us25rN3AscaR9+wLZ1jP8r7QTnt4H5dWqKtogw=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: c58CHJdQfloT8cjooayoSNCaLkxE9yxaVBgoB9VE0Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Aug 23 07:49:36 2025 GMT Not After : Aug 30 07:49:36 2025 GMT Subject: CN=68a97290-80c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:d8:c2:a9:6b:92:08:01:fb:b5:53:88:79: 2f:f5:fd:83:20:a8:de:16:e9:52:63:66:5c:ff:06: a7:c6:e4:ab:55:47:73:1e:f4:f4:7c:0d:b2:21:38: 67:ae:ea:28:6a:a8:90:5d:56:23:6a:f6:06:60:37: 0e:9a:e7:61:4e:f5:b6:f2:39:b1:f4:5c:e6:c2:db: 93:f1:b6:66:d4:3e:33:5a:50:bf:bc:ef:d9:72:be: 1e:e0:09:e9:28:eb:25:f5:a0:8e:95:10:86:bc:7d: 8a:69:43:17:af:c8:9d:2f:5b:f2:ab:31:ab:20:4d: e3:06:c4:15:04:58:20:bd:36:3e:1e:87:a5:3b:3c: 5c:ff:cd:65:14:03:44:13:7d:be:bb:ed:2d:ba:53: e6:1d:ba:fa:56:3e:07:e1:98:d9:c8:d1:2b:54:01: bb:41:6f:e2:89:1a:f8:cf:b2:a0:ea:b2:a1:fa:1f: bc:c1:73:75:37:b3:82:c2:01:bf:03:4d:7a:30:57: 11:1f:d9:de:7f:be:36:17:86:f7:eb:c2:ab:d9:4c: 96:06:18:4f:11:d1:54:c4:07:0a:2f:5f:a2:0e:49: 43:36:1d:36:5b:3d:d1:05:c2:66:ae:e8:2f:3b:c8: 0d:f7:fa:d6:33:91:bc:34:83:10:5a:48:8c:92:3e: 07:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:72:DB:FB:AF:27:29:AC:5D:DA:FB:82:5E:28:D3:68:18:09:06:D0 X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:2a:5d:88:0e:a9:00:a9:86:35:f0:b2:9c:df:e3:11:dd:80: f0:79:3a:f8:48:6b:65:92:c6:26:34:51:d8:21:53:d6:c8:f6: 3a:52:f7:38:1d:04:0e:ef:50:e8:5a:c7:73:ba:6f:5a:82:c8: 12:25:9d:f5:b6:6c:79:d7:8f:72:56:af:e7:95:91:72:e7:78: 6a:50:5c:a5:43:3a:6a:48:50:ca:1f:6d:05:5c:ad:a3:10:3f: 75:27:02:3c:39:aa:b6:fc:c3:46:38:f0:8d:76:43:34:0b:5b: 69:a5:35:74:bb:ac:ba:74:8b:11:8e:ab:8f:a5:63:f0:2e:b5: 33:b2:38:a8:b3:7a:77:b7:56:75:92:ef:ce:4a:b3:21:cc:71: a1:cb:c6:7b:d1:c0:ce:7d:67:1d:44:b3:11:ed:d9:c0:1f:08: 9f:c7:01:74:63:d3:51:0d:9d:59:ab:95:c5:a1:dc:29:d6:34: 18:d8:c6:ea:47:21:99:fd:72:df:b9:e0:f5:aa:8e:e2:c1:4d: d3:8c:31:91:c1:33:92:3d:03:bd:79:64:75:d7:68:a0:91:9a: 19:98:87:eb:0c:5d:e4:40:c9:1b:50:d4:ab:5c:9e:e0:13:88: 92:71:26:5b:9b:7f:dd:44:be:b0:5c:69:f2:d3:0a:fe:7a:46: 77:7d:31:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkI2NjExMC8GA1UEBRMoRTE4RDBBRDE4MzEzRTIwMjIwREVBMUI4NzE2REZCREY1 RDA5Q0NGODAeFw0yNTA4MjMwNzQ5MzZaFw0yNTA4MzAwNzQ5MzZaMBgxFjAUBgNV BAMTDTY4YTk3MjkwLTgwYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC939jCqWuSCAH7tVOIeS/1/YMgqN4W6VJjZlz/BqfG5KtVR3Me9PR8DbIhOGeu 6ihqqJBdViNq9gZgNw6a52FO9bbyObH0XObC25PxtmbUPjNaUL+879lyvh7gCeko 6yX1oI6VEIa8fYppQxevyJ0vW/KrMasgTeMGxBUEWCC9Nj4eh6U7PFz/zWUUA0QT fb677S26U+YduvpWPgfhmNnI0StUAbtBb+KJGvjPsqDqsqH6H7zBc3U3s4LCAb8D TXowVxEf2d5/vjYXhvfrwqvZTJYGGE8R0VTEBwovX6IOSUM2HTZbPdEFwmau6C87 yA33+tYzkbw0gxBaSIySPgedAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/XLb+68n Kaxd2vuCXijTaBgJBtAwHwYDVR0jBBgwFoAU4Y0K0YMT4gIg3qG4cW37310JzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQjY2LzBDMEQ4MERFMkZB QzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFkwSzBZTVQ0Z0lnM3FHNGNXMzczMTBKelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QjY2LzBDMEQ4MERFMkZBQzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJ ZzNxRzRjVzM3MzEwSnpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFIqXYgOqQCphjXwspzf4xHdgPB5OvhIa2WSxiY0UdghU9bI9jpS9zgd BA7vUOhax3O6b1qCyBIlnfW2bHnXj3JWr+eVkXLneGpQXKVDOmpIUMofbQVcraMQ P3UnAjw5qrb8w0Y48I12QzQLW2mlNXS7rLp0ixGOq4+lY/AutTOyOKizene3VnWS 785KsyHMcaHLxnvRwM59Zx1EsxHt2cAfCJ/HAXRj01ENnVmrlcWh3CnWNBjYxupH IZn9ct+54PWqjuLBTdOMMZHBM5I9A715ZHXXaKCRmhmYh+sMXeRAyRtQ1KtcnuAT iJJxJlubf91EvrBcafLTCv56Rnd9Me8= -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:34 2025 by rpki-client