$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: 1d2Q4dFUutMS9Nf59yLS/uwNBxfF+tGBDzQj4BZkUHs= Subject key identifier: D1:9D:3D:D1:D1:9D:71:AF:2A:B0:96:2E:80:BD:08:A8:61:74:70:59 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07B9 Signing time: Fri 22 Aug 2025 21:23:09 +0000 Manifest this update: Fri 22 Aug 2025 21:23:08 +0000 Manifest next update: Fri 29 Aug 2025 21:23:08 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: 2nRcpD1sW42KftZXRYp0Iz6hfS6oKfdFhC9WCVZxFtA=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1984 (0x7c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Aug 22 21:23:08 2025 GMT Not After : Aug 29 21:23:08 2025 GMT Subject: CN=68a8dfbc-7df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:20:24:4f:9a:21:80:15:2e:0c:cf:ff:6c: 33:46:68:e5:5e:d0:b3:96:42:8f:a0:65:e1:34:e3: 12:48:17:ad:19:46:00:7d:13:b0:1d:58:87:73:1b: a7:e9:f9:1b:c3:c6:80:c3:82:bb:60:de:6c:7a:48: 50:dc:28:e4:a5:8f:f3:6a:30:37:57:3e:75:88:4d: 02:1d:78:e1:1f:de:28:66:f5:e3:6e:bb:00:3b:42: 85:7d:e4:8d:bb:95:ca:16:e3:55:c7:2c:2d:b1:80: f8:cb:85:d2:73:ca:70:d7:60:bc:84:0a:35:13:ad: 14:73:4f:67:68:42:c8:37:93:fa:30:39:1e:0a:89: 3b:00:e5:ca:1b:df:af:05:af:5e:98:af:b9:84:d9: 48:4d:fc:18:a3:a5:bf:8a:6d:c3:9a:ff:0e:c9:05: 76:9c:bc:c3:2e:a1:0e:f9:c2:ff:bd:d1:ad:7c:87: e0:18:40:0f:0a:60:e9:a7:2e:20:08:78:96:c4:0b: 94:87:0e:1b:7e:26:bd:64:fc:80:53:1a:4f:72:61: f9:03:a2:35:65:94:b5:e4:b4:99:04:65:fc:98:5f: 27:07:c8:a3:ba:50:1d:e8:f3:4f:47:ad:c2:ad:ad: 15:af:5c:04:44:98:4e:d2:01:c6:d6:a8:66:75:d7: b1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9D:3D:D1:D1:9D:71:AF:2A:B0:96:2E:80:BD:08:A8:61:74:70:59 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e8:98:96:6c:eb:fc:7b:c2:a0:c5:4b:87:f8:50:fa:9c:69: 80:12:56:fb:c6:1b:2c:5b:b5:71:fa:02:07:7f:ec:af:5f:a1: b9:be:09:d8:d3:17:d0:a3:ca:98:90:f4:ae:f3:ef:da:21:a4: 53:7d:94:7a:0f:1c:c0:b5:db:78:99:51:c8:36:61:be:39:d3: ed:10:06:20:c6:17:24:d6:4b:f2:31:ff:ab:34:92:5e:65:59: ae:c8:90:22:ef:fd:2f:ea:97:8c:c4:41:ca:60:99:d0:f6:49: 91:90:56:f9:b1:c3:ab:54:f6:1f:fa:5d:92:84:6c:f4:55:47: b1:fa:56:5a:40:19:52:84:00:60:f5:d9:41:c5:c4:ad:3c:8e: 8e:49:ad:18:8e:e3:41:07:eb:07:2b:78:ff:7f:0b:65:67:0f: 6d:02:c1:aa:48:4b:c8:c6:6c:02:ad:18:83:6a:cb:b9:d3:8e: 67:71:b0:10:b8:81:3f:4f:80:dc:32:32:a1:bb:29:40:20:d9: 57:06:8f:df:a7:72:59:6e:43:d5:11:66:d2:46:86:42:7a:c2: 0e:d8:a3:f9:82:0a:b6:3e:49:88:38:29:a4:c7:49:c7:56:91: 66:94:8c:8e:53:47:53:ea:da:ea:99:da:32:39:d2:87:04:98: 1c:2b:cd:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwODIyMjEyMzA4WhcNMjUwODI5MjEyMzA4WjAYMRYwFAYD VQQDEw02OGE4ZGZiYy03ZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHsgJE+aIYAVLgzP/2wzRmjlXtCzlkKPoGXhNOMSSBetGUYAfROwHViHcxun 6fkbw8aAw4K7YN5sekhQ3CjkpY/zajA3Vz51iE0CHXjhH94oZvXjbrsAO0KFfeSN u5XKFuNVxywtsYD4y4XSc8pw12C8hAo1E60Uc09naELIN5P6MDkeCok7AOXKG9+v Ba9emK+5hNlITfwYo6W/im3Dmv8OyQV2nLzDLqEO+cL/vdGtfIfgGEAPCmDppy4g CHiWxAuUhw4bfia9ZPyAUxpPcmH5A6I1ZZS15LSZBGX8mF8nB8ijulAd6PNPR63C ra0Vr1wERJhO0gHG1qhmddexKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGdPdHR nXGvKrCWLoC9CKhhdHBZMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA86JiWbOv8e8KgxUuH+FD6nGmAElb7xhssW7Vx+gIHf+yvX6G5vgnY 0xfQo8qYkPSu8+/aIaRTfZR6DxzAtdt4mVHINmG+OdPtEAYgxhck1kvyMf+rNJJe ZVmuyJAi7/0v6peMxEHKYJnQ9kmRkFb5scOrVPYf+l2ShGz0VUex+lZaQBlShABg 9dlBxcStPI6OSa0YjuNBB+sHK3j/fwtlZw9tAsGqSEvIxmwCrRiDasu5045ncbAQ uIE/T4DcMjKhuylAINlXBo/fp3JZbkPVEWbSRoZCesIO2KP5ggq2PkmIOCmkx0nH VpFmlIyOU0dT6trqmdoyOdKHBJgcK83o -----END CERTIFICATE-----Generated at Sat Aug 23 19:40:16 2025 by rpki-client