$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: NtNEvFRIN43tHT64riYXF4VluB7yk4BnLUxpR3Wsy8c= Subject key identifier: 00:DE:ED:F2:C1:21:D8:98:44:1F:B4:94:EC:E3:11:39:EB:AB:3F:64 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 033C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 11AF Signing time: Fri 22 Aug 2025 17:49:49 +0000 Manifest this update: Fri 22 Aug 2025 17:49:49 +0000 Manifest next update: Fri 29 Aug 2025 17:49:49 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: ve3ukxyZth+StZXUkM+xBNZGvAKuRyYt7VKHjSc/rz8=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Aug 22 17:49:49 2025 GMT Not After : Aug 29 17:49:49 2025 GMT Subject: CN=68a8adbd-d8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:c4:7c:bd:07:eb:b1:0b:54:4a:0f:52:44: 2c:a0:06:45:be:9a:7b:ca:2c:83:92:f1:8d:01:cf: c4:16:25:e5:82:19:f0:c2:17:83:b7:ab:11:82:85: 7e:62:d2:9b:02:e6:c4:82:53:35:a3:ac:c4:49:ef: 14:9e:32:82:81:0f:9f:3e:e3:e7:3b:b6:d6:ed:d9: f6:76:9c:82:b4:e6:13:b3:3b:36:45:4c:97:75:40: c2:8b:4f:cf:23:02:72:39:85:93:2c:36:af:cb:80: 02:7e:74:35:ce:ce:f7:67:62:44:c4:94:68:e2:b8: ac:16:a8:a9:bd:59:99:3c:5a:72:d7:e7:e3:88:f1: 9d:99:78:02:f3:a8:30:25:02:e1:f6:40:26:84:b3: d7:c4:2a:62:5a:b2:5c:55:d1:ae:55:c7:3c:11:71: 8f:05:b4:22:ff:c5:4d:e5:ce:05:ba:fc:ed:32:95: 9f:83:99:60:77:07:2f:31:b8:a6:3a:2e:67:2a:24: 90:7e:6f:2d:d8:06:bd:38:a5:ef:27:6d:7e:0a:72: 0d:9a:a9:53:73:ec:67:ca:aa:fc:5b:b0:c5:74:45: 72:53:43:4b:69:15:2f:fb:1e:ee:60:4a:14:ad:95: 25:df:cc:b7:5a:c9:0e:77:9c:52:b2:e9:12:90:b5: 9f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DE:ED:F2:C1:21:D8:98:44:1F:B4:94:EC:E3:11:39:EB:AB:3F:64 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:fc:0a:de:fa:54:49:30:da:e8:26:5c:4e:80:23:6a:8c:91: ce:ff:b6:f1:61:88:a7:a9:5a:09:32:67:44:45:2b:c5:d2:7e: 11:f9:fc:f7:1e:9c:e2:e1:a5:52:55:9d:7c:3c:62:9f:1f:7c: 9d:88:ab:f1:b3:73:46:49:6d:14:42:88:8b:5d:f6:4b:8d:ee: 76:4a:bc:35:24:02:75:11:65:92:21:35:3a:56:fe:5c:6d:28: 87:ab:e1:33:67:92:56:a5:29:0c:0b:2a:3b:b7:ab:1f:b4:24: 05:15:5f:94:91:e0:3f:90:da:61:54:89:0c:94:0a:89:b7:11: bf:0c:03:cb:b0:38:cd:6d:7d:18:56:78:c7:5a:7c:16:c7:e5: 9b:dd:35:06:49:94:2f:34:e2:ff:6f:ba:bf:3d:cc:6e:7e:71: fe:f5:b3:e6:a4:d6:0e:43:fb:f0:37:01:eb:3d:a4:77:c2:5b: 52:fe:21:7a:f4:a5:42:1b:12:ca:bf:8d:ae:99:52:65:46:76: 4c:cb:cc:87:33:de:64:0c:ff:ac:94:e3:5a:f8:57:02:9a:e6: 82:73:63:cc:5a:73:1c:e1:59:e3:1e:f9:09:8b:82:5f:c6:c2: ae:be:f7:af:97:5b:cb:64:4e:34:bd:79:73:6b:c6:90:35:aa: 49:5f:45:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwODIyMTc0OTQ5WhcNMjUwODI5MTc0OTQ5WjAYMRYwFAYD VQQDEw02OGE4YWRiZC1kOGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbvEfL0H67ELVEoPUkQsoAZFvpp7yiyDkvGNAc/EFiXlghnwwheDt6sRgoV+ YtKbAubEglM1o6zESe8UnjKCgQ+fPuPnO7bW7dn2dpyCtOYTszs2RUyXdUDCi0/P IwJyOYWTLDavy4ACfnQ1zs73Z2JExJRo4risFqipvVmZPFpy1+fjiPGdmXgC86gw JQLh9kAmhLPXxCpiWrJcVdGuVcc8EXGPBbQi/8VN5c4FuvztMpWfg5lgdwcvMbim Oi5nKiSQfm8t2Aa9OKXvJ21+CnINmqlTc+xnyqr8W7DFdEVyU0NLaRUv+x7uYEoU rZUl38y3WskOd5xSsukSkLWfUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADe7fLB IdiYRB+0lOzjETnrqz9kMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz/Are+lRJMNroJlxOgCNqjJHO/7bxYYinqVoJMmdERSvF0n4R+fz3 Hpzi4aVSVZ18PGKfH3ydiKvxs3NGSW0UQoiLXfZLje52Srw1JAJ1EWWSITU6Vv5c bSiHq+EzZ5JWpSkMCyo7t6sftCQFFV+UkeA/kNphVIkMlAqJtxG/DAPLsDjNbX0Y VnjHWnwWx+Wb3TUGSZQvNOL/b7q/PcxufnH+9bPmpNYOQ/vwNwHrPaR3wltS/iF6 9KVCGxLKv42umVJlRnZMy8yHM95kDP+slONa+FcCmuaCc2PMWnMc4VnjHvkJi4Jf xsKuvvevl1vLZE40vXlza8aQNapJX0VM -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:23 2025 by rpki-client