$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: tLecSJpbUYOHsVLW2ntkSYxOLaag6S5Pxbr1JYt/Hwg= Subject key identifier: 57:67:58:53:DD:5D:ED:13:4E:40:C1:2F:78:4D:C6:6B:27:65:C3:B5 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B61 Signing time: Fri 22 Aug 2025 19:14:12 +0000 Manifest this update: Fri 22 Aug 2025 19:14:12 +0000 Manifest next update: Fri 29 Aug 2025 19:14:12 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: tCUG96f9CVnNnKG7LPXhNGN7l0o2PHFuANb42ta94dI=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Aug 22 19:14:12 2025 GMT Not After : Aug 29 19:14:12 2025 GMT Subject: CN=68a8c184-fab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:14:a0:d0:51:1b:91:2c:1e:59:0f:9d:a3:8f: 91:c3:f5:80:58:53:0a:c9:f2:4e:e1:ea:35:03:f9: 91:c4:82:3d:77:1a:74:68:e1:a8:7d:f7:6f:95:9d: 15:3a:6e:29:4b:cb:a0:97:50:1a:a8:a9:45:8d:a0: 59:dd:f5:d9:02:fe:2d:1a:7b:9b:ed:06:79:b1:f5: 4b:d5:fe:9c:f3:d8:4c:5e:f5:6a:14:28:42:ff:9a: e9:76:b6:9a:cf:8c:c5:4b:c8:89:6c:52:46:94:77: 6d:cb:e9:0f:92:2c:cb:5a:a5:91:be:c5:1f:41:5e: e1:91:0d:7e:94:37:d2:44:9f:c2:4a:d4:ed:b8:1c: df:90:99:9d:21:7a:14:f3:23:55:a3:6e:97:d2:1a: ba:f0:95:ec:a0:3b:be:12:b2:73:99:f4:d7:88:ca: 64:24:96:78:7f:f5:82:a8:dd:1e:be:f7:89:c5:73: 0e:94:3f:ff:54:b5:23:33:db:6b:71:ad:b9:75:c1: 17:c0:69:01:2d:7d:3c:f8:c2:c0:e9:ff:57:5c:95: 74:ad:e7:4f:f6:d0:b2:64:cb:3a:90:7a:19:aa:97: 5b:21:9e:80:32:f6:1e:1e:1d:81:30:a5:06:94:01: 0a:a4:07:1c:fd:64:e2:eb:71:9a:82:4b:e4:a0:56: c2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:67:58:53:DD:5D:ED:13:4E:40:C1:2F:78:4D:C6:6B:27:65:C3:B5 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:a0:55:f7:6d:97:c9:cf:bf:62:c2:d6:17:a0:bf:67:e5:db: 81:14:5a:7a:bc:5b:29:bf:e7:89:85:d8:c3:72:41:48:3f:7c: f1:15:9b:02:8e:52:6a:53:fd:93:06:5f:12:2f:5c:20:12:a2: 39:52:ed:6e:ea:1f:2a:e6:06:64:1a:24:af:d8:91:e8:90:86: f8:2d:cc:1a:8e:10:cf:8d:ba:45:91:3e:82:c0:e1:97:6d:76: 03:2a:af:c8:bb:cb:b8:c2:32:09:63:e0:2a:55:3d:94:19:eb: ff:d8:a3:f6:73:22:04:03:7a:ef:7b:26:eb:d3:10:55:7a:78: 7a:0a:1f:19:1a:8c:c2:fe:b1:b7:f6:5d:48:09:a5:aa:28:33: fc:a7:6d:b8:f7:d5:34:f2:b0:da:5e:de:ad:7c:32:8b:15:90: f0:f2:7b:c9:bc:c5:2e:64:60:cb:fc:55:eb:ff:87:d6:20:06: a0:12:05:8f:a2:b2:4b:60:0f:01:ee:ab:2d:42:e9:6e:2a:e9: 35:3a:43:96:68:50:cc:be:81:56:89:7e:0b:43:4c:ae:da:d9: 47:87:f4:fa:4d:01:c2:06:f0:67:b6:e9:fa:97:c4:18:b2:cb: 5f:42:43:ae:b0:4c:f7:b6:c2:e7:b4:ac:16:81:f7:e2:55:d4: 41:f5:05:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUwODIyMTkxNDEyWhcNMjUwODI5MTkxNDEyWjAYMRYwFAYD VQQDEw02OGE4YzE4NC1mYWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRSg0FEbkSweWQ+do4+Rw/WAWFMKyfJO4eo1A/mRxII9dxp0aOGoffdvlZ0V Om4pS8ugl1AaqKlFjaBZ3fXZAv4tGnub7QZ5sfVL1f6c89hMXvVqFChC/5rpdraa z4zFS8iJbFJGlHdty+kPkizLWqWRvsUfQV7hkQ1+lDfSRJ/CStTtuBzfkJmdIXoU 8yNVo26X0hq68JXsoDu+ErJzmfTXiMpkJJZ4f/WCqN0evveJxXMOlD//VLUjM9tr ca25dcEXwGkBLX08+MLA6f9XXJV0redP9tCyZMs6kHoZqpdbIZ6AMvYeHh2BMKUG lAEKpAcc/WTi63GagkvkoFbCxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdnWFPd Xe0TTkDBL3hNxmsnZcO1MB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYoFX3bZfJz79iwtYXoL9n5duBFFp6vFspv+eJhdjDckFIP3zxFZsC jlJqU/2TBl8SL1wgEqI5Uu1u6h8q5gZkGiSv2JHokIb4LcwajhDPjbpFkT6CwOGX bXYDKq/Iu8u4wjIJY+AqVT2UGev/2KP2cyIEA3rveybr0xBVenh6Ch8ZGozC/rG3 9l1ICaWqKDP8p22499U08rDaXt6tfDKLFZDw8nvJvMUuZGDL/FXr/4fWIAagEgWP orJLYA8B7qstQuluKuk1OkOWaFDMvoFWiX4LQ0yu2tlHh/T6TQHCBvBntun6l8QY sstfQkOusEz3tsLntKwWgffiVdRB9QXQ -----END CERTIFICATE-----Generated at Sat Aug 23 22:33:51 2025 by rpki-client