$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: Tndgafqu19PvjX899fZSnGRINcVVxhwcDaqmJFzr0gc= Subject key identifier: EE:9A:C8:15:45:25:5B:C1:AE:E3:CD:5F:73:5E:4E:B0:BA:D3:D0:16 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 021A Signing time: Sat 23 Aug 2025 02:11:07 +0000 Manifest this update: Sat 23 Aug 2025 02:11:07 +0000 Manifest next update: Sat 30 Aug 2025 02:11:07 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: kTpb27zpeE1+ACccE+3O36IfrquSGiwloyeMAsfWTzQ=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Aug 23 02:11:07 2025 GMT Not After : Aug 30 02:11:07 2025 GMT Subject: CN=68a9233b-d0e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:57:4c:d9:6f:0a:e0:8e:fb:58:c5:a4:82: f7:c9:37:a8:ab:4f:8e:8e:47:66:d6:91:e2:f2:0e: 36:94:2d:ed:1e:df:e5:b3:8f:52:38:f3:d6:df:79: 05:00:86:bd:a0:80:0d:fe:cf:88:d0:ff:85:cb:e2: 1e:be:5b:9c:6b:19:51:8c:ed:59:76:ff:8b:28:ed: 9a:af:53:f5:ff:25:6b:8d:45:e3:28:88:78:bd:95: 97:f0:67:80:f4:12:72:db:d7:52:ee:5e:15:9a:e6: 01:08:cf:c0:be:7d:93:4a:fc:a8:72:4e:13:78:f0: d6:e0:83:cc:db:04:cd:b3:ca:eb:a7:59:3f:97:75: d5:2a:f5:dc:ce:5d:e7:d8:51:1d:ac:8c:7c:c1:7b: 09:0c:a7:bc:87:0f:b6:18:5c:78:1f:9b:7c:16:1d: 3c:f8:53:ef:fc:bb:b8:82:c5:ad:86:54:7d:cf:63: c9:1e:32:44:8f:ee:b5:a8:bf:77:cb:d1:df:27:9a: 56:51:91:1e:51:83:a8:fd:90:e4:d9:15:a8:a5:0d: 1c:c1:22:4c:f1:56:7a:57:09:99:28:f9:67:13:8e: 61:ff:68:ae:1e:e6:5b:bd:cb:d6:fe:06:5d:92:ad: ec:bc:f0:5d:2d:1e:49:26:99:35:85:96:5b:f2:4a: 15:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9A:C8:15:45:25:5B:C1:AE:E3:CD:5F:73:5E:4E:B0:BA:D3:D0:16 X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:32:96:b1:7f:91:fb:3c:cd:48:29:db:34:38:c4:e1:3d:dc: 6d:82:e4:ab:8a:4a:d7:14:9c:4b:85:26:2c:4b:f3:c3:6f:77: 59:72:4c:63:d9:77:41:e3:b4:05:6e:29:f4:d8:ec:80:2c:45: 80:31:26:98:f6:dc:00:9c:dd:dc:9e:dd:7f:5e:38:e6:90:27: 41:83:25:a2:5c:67:5e:f0:18:4e:17:03:a1:11:97:cb:78:c6: a7:ca:2e:b8:f9:05:a6:3e:96:3c:bf:47:be:fa:e6:ce:e4:88: a1:e4:27:1d:c7:fb:95:91:7b:fc:be:92:73:ed:43:d5:ba:61: 83:51:d5:05:39:1f:90:51:cb:29:43:43:fd:2a:3f:81:94:03: ca:f1:71:09:8f:c0:9e:95:82:fd:28:60:ab:46:d3:f2:99:24: 78:f6:02:e7:88:14:2a:57:74:25:84:3b:9f:23:99:e3:a8:fe: 73:2d:d8:0f:08:72:35:bb:33:8a:13:9d:c3:91:cf:72:09:46: a9:3e:e1:2f:5a:9c:79:d5:29:ac:1c:15:b3:4f:42:0e:39:68: 18:44:23:db:67:30:85:1b:6d:3e:44:47:3a:07:42:1d:bc:e2: 80:66:a8:ff:51:90:b2:e7:66:ac:60:5b:ec:45:70:b5:0f:3a: a8:8a:e6:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwODIzMDIxMTA3WhcNMjUwODMwMDIxMTA3WjAYMRYwFAYD VQQDEw02OGE5MjMzYi1kMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26FXTNlvCuCO+1jFpIL3yTeoq0+Ojkdm1pHi8g42lC3tHt/ls49SOPPW33kF AIa9oIAN/s+I0P+Fy+IevlucaxlRjO1Zdv+LKO2ar1P1/yVrjUXjKIh4vZWX8GeA 9BJy29dS7l4VmuYBCM/Avn2TSvyock4TePDW4IPM2wTNs8rrp1k/l3XVKvXczl3n 2FEdrIx8wXsJDKe8hw+2GFx4H5t8Fh08+FPv/Lu4gsWthlR9z2PJHjJEj+61qL93 y9HfJ5pWUZEeUYOo/ZDk2RWopQ0cwSJM8VZ6VwmZKPlnE45h/2iuHuZbvcvW/gZd kq3svPBdLR5JJpk1hZZb8koVlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6ayBVF JVvBruPNX3NeTrC609AWMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEMpaxf5H7PM1IKds0OMThPdxtguSrikrXFJxLhSYsS/PDb3dZckxj 2XdB47QFbin02OyALEWAMSaY9twAnN3cnt1/XjjmkCdBgyWiXGde8BhOFwOhEZfL eManyi64+QWmPpY8v0e++ubO5Iih5Ccdx/uVkXv8vpJz7UPVumGDUdUFOR+QUcsp Q0P9Kj+BlAPK8XEJj8CelYL9KGCrRtPymSR49gLniBQqV3QlhDufI5njqP5zLdgP CHI1uzOKE53Dkc9yCUapPuEvWpx51SmsHBWzT0IOOWgYRCPbZzCFG20+REc6B0Id vOKAZqj/UZCy52asYFvsRXC1DzqoiubX -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:12 2025 by rpki-client