$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: wDA7SgY/Cnuh/mXBkrdSjahyRLL1rI8FRb/kUwc+mRI= Subject key identifier: D1:CD:1D:62:ED:28:C5:3B:60:B7:AA:C5:83:3B:2B:34:FA:9F:23:45 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 4B Signing time: Sat 23 Aug 2025 07:35:43 +0000 Manifest this update: Sat 23 Aug 2025 07:35:43 +0000 Manifest next update: Sat 30 Aug 2025 07:35:43 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: cRT3uqBGq18OKknpGc1P0a9+ffmGuzGelbsQxFxM2CM=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Aug 23 07:35:43 2025 GMT Not After : Aug 30 07:35:43 2025 GMT Subject: CN=68a96f4f-8978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:23:87:42:c8:1b:94:84:fb:90:8f:08:a0: 37:0d:fe:3b:dd:23:b8:4b:e2:96:6f:54:a1:d6:47: a6:cc:d1:9d:38:ce:d1:a0:28:6b:b1:77:5e:66:4a: 0f:58:fa:79:07:ba:c5:18:b7:e3:89:fe:9a:68:81: d5:1b:65:e5:64:54:98:f3:f5:db:5f:10:36:85:44: 69:55:bb:0e:06:ee:6b:fb:9f:53:ea:77:b9:c8:1e: 6a:39:19:6d:c2:f1:1f:89:c7:5a:8a:40:ad:75:fa: cc:e3:88:ed:0e:68:fe:e8:9e:3b:ac:4d:c4:75:b4: 82:02:51:0e:2a:db:b9:84:8e:ff:38:6a:41:71:c2: 16:ca:18:b3:82:91:8b:47:5f:f3:8a:31:cb:6d:d9: 2a:a4:01:a3:5c:28:9b:8a:72:02:5c:7a:b1:5a:11: 1f:e6:26:01:4a:75:ab:62:03:a3:e4:cb:8e:4c:34: df:6a:4c:58:82:bb:bf:23:8b:f3:ec:2c:7f:87:c7: 13:2d:d0:16:02:77:ba:60:0c:4d:b3:18:0a:68:fd: c1:65:6f:e0:6d:53:db:4d:b6:b3:a5:71:cf:60:81: da:9e:95:ce:3e:cf:40:6d:13:70:50:69:88:b2:51: 8c:3d:69:d0:d3:bd:7f:1d:54:91:a7:8f:86:c7:fc: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CD:1D:62:ED:28:C5:3B:60:B7:AA:C5:83:3B:2B:34:FA:9F:23:45 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d3:61:61:22:69:a3:51:02:36:a9:43:b9:d7:22:25:4b:76: e9:15:23:55:bf:18:93:f3:16:3b:50:59:e1:53:4d:d4:92:ec: 57:f2:dd:a4:07:eb:88:e1:68:b7:42:a0:4b:ce:0e:a4:bf:de: 6c:a5:8e:c8:53:05:ec:78:59:a7:b8:6e:35:18:a9:78:57:24: a6:4a:f7:77:cc:f0:2d:e1:bf:7b:f7:2d:f0:d4:84:64:e6:93: 00:83:07:e9:f1:ac:d7:aa:b0:db:71:7e:3c:4d:27:b3:6f:f0: 9f:de:84:1b:8c:ea:0e:bb:44:b1:12:69:2a:10:3c:00:72:e2: 9a:39:08:2e:31:2c:82:a0:29:ed:1f:b8:38:ea:b9:13:c3:21: f1:08:24:b5:e6:23:d7:81:64:23:6a:8f:c1:a9:65:12:42:4b: 55:c0:a5:86:a3:53:96:ef:9d:ed:c8:b2:1a:ec:4f:27:bf:b0: 71:13:8d:49:a7:95:18:8f:ad:5d:43:6c:48:43:8b:f3:cc:10: 39:bb:10:83:47:28:1a:c0:3c:6b:3a:4d:d1:46:85:ed:94:07: 3e:4c:7d:42:fe:4c:1a:42:20:1b:f9:8a:91:1d:84:a4:f9:4d: 3c:2d:d0:f0:62:15:c9:62:da:e1:75:83:7a:a2:39:0c:40:68: 34:c0:49:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTA4MjMwNzM1NDNaFw0yNTA4MzAwNzM1NDNaMBgxFjAUBgNV BAMTDTY4YTk2ZjRmLTg5NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC25yOHQsgblIT7kI8IoDcN/jvdI7hL4pZvVKHWR6bM0Z04ztGgKGuxd15mSg9Y +nkHusUYt+OJ/ppogdUbZeVkVJjz9dtfEDaFRGlVuw4G7mv7n1Pqd7nIHmo5GW3C 8R+Jx1qKQK11+szjiO0OaP7onjusTcR1tIICUQ4q27mEjv84akFxwhbKGLOCkYtH X/OKMctt2SqkAaNcKJuKcgJcerFaER/mJgFKdatiA6Pky45MNN9qTFiCu78ji/Ps LH+HxxMt0BYCd7pgDE2zGApo/cFlb+BtU9tNtrOlcc9ggdqelc4+z0BtE3BQaYiy UYw9adDTvX8dVJGnj4bH/FENAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0c0dYu0o xTtgt6rFgzsrNPqfI0UwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbTYWEiaaNRAjapQ7nXIiVLdukVI1W/GJPzFjtQWeFTTdSS7Ffy3aQH 64jhaLdCoEvODqS/3myljshTBex4Wae4bjUYqXhXJKZK93fM8C3hv3v3LfDUhGTm kwCDB+nxrNeqsNtxfjxNJ7Nv8J/ehBuM6g67RLESaSoQPABy4po5CC4xLIKgKe0f uDjquRPDIfEIJLXmI9eBZCNqj8GpZRJCS1XApYajU5bvne3IshrsTye/sHETjUmn lRiPrV1DbEhDi/PMEDm7EINHKBrAPGs6TdFGhe2UBz5MfUL+TBpCIBv5ipEdhKT5 TTwt0PBiFcli2uF1g3qiOQxAaDTASR4= -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:24 2025 by rpki-client