$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: zdypH3DhtSG6Qqh+WVf3VSRSBoSUsAYnHXqv9iipBbk= Subject key identifier: D6:0E:55:3D:47:D2:91:68:E1:91:0C:0C:F9:37:B1:DF:A2:D4:56:2F Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: B8 Signing time: Sat 23 Aug 2025 06:09:39 +0000 Manifest this update: Sat 23 Aug 2025 06:09:38 +0000 Manifest next update: Sat 30 Aug 2025 06:09:38 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: gJx1S/BbOu5FpSOv/6iqxIbV/Spy8gNguelBwhxCJ8A=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Aug 23 06:09:38 2025 GMT Not After : Aug 30 06:09:38 2025 GMT Subject: CN=68a95b23-0223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:60:81:c0:44:20:96:45:77:7a:9d:d2:11:67: 8b:0c:e5:90:74:70:ca:ff:ce:87:9c:de:76:87:90: 9e:73:7a:65:34:cb:46:8f:63:10:0b:8c:8c:0c:dc: c7:cc:ab:9e:cb:28:c5:90:3a:f7:cb:86:b2:56:6a: 18:04:8f:f4:7b:44:26:d3:01:40:e9:fa:d9:29:de: 74:23:4e:fa:a1:5e:1f:17:9c:da:0c:5f:d3:09:6c: 0a:cd:11:7e:c0:df:ab:f8:af:de:1a:c5:53:bf:7c: 4c:28:6d:ce:18:58:b9:5e:13:f9:f4:b1:0b:0b:aa: f6:11:a4:c3:03:f3:ed:85:08:e7:52:7a:66:47:04: 95:7d:19:d9:0c:54:48:d4:b6:99:78:38:11:c8:16: 8b:de:11:1b:33:d4:4d:e2:93:9c:38:e6:a5:4d:79: c2:70:23:0c:3d:3e:d3:57:7d:0a:77:55:66:f4:b2: 4e:80:66:ba:3b:08:5f:bc:9c:a9:b8:23:40:9f:04: 37:06:97:37:bb:07:35:c1:34:c8:ec:48:10:cc:ad: d9:eb:94:d8:52:7b:ae:02:b5:16:02:38:0d:f8:ff: 49:3f:79:68:08:28:59:4c:56:0d:ca:aa:da:0f:de: e7:a5:6b:a6:e1:20:f6:c4:29:af:64:13:22:76:ed: b8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0E:55:3D:47:D2:91:68:E1:91:0C:0C:F9:37:B1:DF:A2:D4:56:2F X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:59:02:24:5f:2b:df:35:f5:df:6f:fb:ac:f1:a2:ed:e8:e7: 60:68:b0:2b:50:fb:3e:d6:82:cf:7c:f2:2b:46:b0:94:14:28: 9a:70:e8:c8:72:7a:13:50:bb:22:22:61:f2:d6:9e:cc:a5:ab: 63:14:62:ff:76:f2:c5:d5:c9:80:15:b4:86:9b:bb:95:29:fe: 86:af:5a:ef:c8:9b:a0:72:02:e4:40:c1:e3:e7:a9:5e:d0:6f: 09:4a:98:7f:22:12:50:88:a9:89:50:91:0a:60:08:21:b4:41: 9a:5f:f6:8a:5c:57:8f:8a:d8:b6:1e:aa:3f:92:26:7a:a7:b2: df:9e:46:ab:25:98:97:86:a3:1d:05:24:4d:03:23:d3:c9:c8: bc:63:df:4a:1d:28:70:97:c2:64:f5:ca:18:f0:87:a0:ba:76: 56:2d:c3:45:8a:5e:db:25:08:01:0f:73:df:37:60:5f:b6:bf: a6:9c:02:e0:62:cc:2d:ad:70:dc:27:20:1d:d5:19:43:1c:c5: a9:75:c9:21:eb:c7:7a:4c:59:21:c8:b2:a0:f1:69:45:16:eb: 11:93:a9:a4:8f:19:78:40:d6:80:5a:86:bd:26:30:21:3e:7f: 60:b1:9e:87:60:3a:91:b0:17:5b:cc:40:bb:fa:6f:7d:ad:03: d6:4a:f1:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUwODIzMDYwOTM4WhcNMjUwODMwMDYwOTM4WjAYMRYwFAYD VQQDEw02OGE5NWIyMy0wMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WCBwEQglkV3ep3SEWeLDOWQdHDK/86HnN52h5Cec3plNMtGj2MQC4yMDNzH zKueyyjFkDr3y4ayVmoYBI/0e0Qm0wFA6frZKd50I076oV4fF5zaDF/TCWwKzRF+ wN+r+K/eGsVTv3xMKG3OGFi5XhP59LELC6r2EaTDA/PthQjnUnpmRwSVfRnZDFRI 1LaZeDgRyBaL3hEbM9RN4pOcOOalTXnCcCMMPT7TV30Kd1Vm9LJOgGa6OwhfvJyp uCNAnwQ3Bpc3uwc1wTTI7EgQzK3Z65TYUnuuArUWAjgN+P9JP3loCChZTFYNyqra D97npWum4SD2xCmvZBMidu24FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYOVT1H 0pFo4ZEMDPk3sd+i1FYvMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5WQIkXyvfNfXfb/us8aLt6OdgaLArUPs+1oLPfPIrRrCUFCiacOjI cnoTULsiImHy1p7MpatjFGL/dvLF1cmAFbSGm7uVKf6Gr1rvyJugcgLkQMHj56le 0G8JSph/IhJQiKmJUJEKYAghtEGaX/aKXFePiti2Hqo/kiZ6p7LfnkarJZiXhqMd BSRNAyPTyci8Y99KHShwl8Jk9coY8IegunZWLcNFil7bJQgBD3PfN2Bftr+mnALg YswtrXDcJyAd1RlDHMWpdckh68d6TFkhyLKg8WlFFusRk6mkjxl4QNaAWoa9JjAh Pn9gsZ6HYDqRsBdbzEC7+m99rQPWSvHA -----END CERTIFICATE-----Generated at Sat Aug 23 19:14:18 2025 by rpki-client