$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: +qgjdFxg4+11s73BlnjroV2C67dSsXi+oKywCVSzges= Subject key identifier: 7E:A3:49:FC:AD:02:99:2F:85:89:53:5F:10:F4:64:C5:03:26:DA:5D Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0B15 Signing time: Fri 22 Aug 2025 19:27:32 +0000 Manifest this update: Fri 22 Aug 2025 19:27:32 +0000 Manifest next update: Fri 29 Aug 2025 19:27:32 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: 8vTbM5XGpsZImjy6UjBjmEHMZ7LdnJh+gJQ8KAh+zsA=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: +JzejbKc1NZP24NoPrMtMcVkZZ9hm7s276rW0zhe0b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Aug 22 19:27:32 2025 GMT Not After : Aug 29 19:27:32 2025 GMT Subject: CN=68a8c4a4-5f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:b1:25:77:0b:93:1e:7a:4e:78:0b:14:30:50: 5e:61:1a:9f:31:d1:9a:fe:22:eb:77:a3:03:a6:73: 70:6b:91:0d:7d:60:c8:a4:95:90:20:30:92:60:63: 4a:3d:4f:49:7b:90:54:9a:29:e4:c7:19:b4:44:6b: cf:c4:fc:6f:06:9f:c2:84:ce:d1:4f:61:b0:6f:6b: 40:b5:b3:a5:06:eb:5e:ce:86:55:73:93:00:45:cd: 63:e4:80:f6:b7:a6:0c:e2:86:53:46:61:5e:d5:ec: d5:7a:6a:f7:00:d9:54:63:c5:d5:13:20:06:76:4d: ad:93:ba:1a:5f:72:ab:ab:7c:32:f2:51:72:15:85: f0:86:e9:4b:6c:08:3a:98:f1:58:75:5e:bb:ec:6d: da:32:96:ea:d6:eb:5a:db:ca:fd:f2:91:98:17:5b: e3:97:7c:eb:85:e5:45:c7:a3:54:c9:9d:0a:53:3b: 05:3c:1a:00:2a:a3:85:6e:ec:b3:e5:c8:d1:73:be: 4b:ce:66:10:20:20:9b:b7:e2:ec:9b:d0:ac:6e:31: 06:3a:b7:ca:b7:18:91:e3:55:11:ad:14:bf:0c:91: 51:0d:14:07:22:94:16:76:d0:07:04:b6:6d:d0:dd: 99:b4:2a:50:6e:95:06:b4:35:33:4f:c1:68:3b:a4: cb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A3:49:FC:AD:02:99:2F:85:89:53:5F:10:F4:64:C5:03:26:DA:5D X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:9c:fc:d1:22:88:a8:c2:d2:8b:15:de:30:dd:35:a5:ad:f6: da:ea:1b:85:a8:2d:cb:28:09:7e:9e:50:11:a3:6f:08:e8:7d: a3:a5:0d:0f:ac:8e:3d:f4:d7:a7:a8:ea:75:c1:e8:2c:64:f5: 76:21:3e:c6:41:b9:97:2b:18:01:26:92:41:6b:63:81:b4:22: 71:57:f1:ce:13:f2:50:f8:87:cf:ad:f3:62:81:84:f1:33:7f: ac:07:bc:8c:b5:a1:71:9d:dc:d3:e1:75:87:7e:c8:8d:79:8d: 35:ec:08:5c:b7:e5:4a:5d:04:8a:82:24:01:26:1b:e7:97:11: 9a:ab:fe:0e:e1:c8:67:18:51:4a:3a:b7:1d:8d:da:2d:0c:26: 9b:0b:b7:c3:ce:d4:13:ef:22:cc:5a:91:7f:89:d8:30:47:3a: 2f:cd:be:56:4a:b1:21:3a:f5:c0:4c:3a:fe:6a:ec:b9:79:26: 78:07:f4:6a:91:1a:32:5e:62:ce:fb:40:bf:91:91:af:0d:78: 6a:e9:fc:9a:c1:30:91:4f:6b:1b:69:52:0b:23:70:04:25:61: f1:2c:bd:9c:93:ad:11:0d:75:d1:49:61:1a:8b:16:85:1c:ad: 86:73:ce:46:af:11:f3:03:ce:da:51:12:e4:fa:d7:a8:11:d2: 33:0b:59:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUwODIyMTkyNzMyWhcNMjUwODI5MTkyNzMyWjAYMRYwFAYD VQQDEw02OGE4YzRhNC01ZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/rEldwuTHnpOeAsUMFBeYRqfMdGa/iLrd6MDpnNwa5ENfWDIpJWQIDCSYGNK PU9Je5BUminkxxm0RGvPxPxvBp/ChM7RT2Gwb2tAtbOlButezoZVc5MARc1j5ID2 t6YM4oZTRmFe1ezVemr3ANlUY8XVEyAGdk2tk7oaX3Krq3wy8lFyFYXwhulLbAg6 mPFYdV677G3aMpbq1uta28r98pGYF1vjl3zrheVFx6NUyZ0KUzsFPBoAKqOFbuyz 5cjRc75LzmYQICCbt+Lsm9CsbjEGOrfKtxiR41URrRS/DJFRDRQHIpQWdtAHBLZt 0N2ZtCpQbpUGtDUzT8FoO6TL4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6jSfyt ApkvhYlTXxD0ZMUDJtpdMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJnPzRIoiowtKLFd4w3TWlrfba6huFqC3LKAl+nlARo28I6H2jpQ0P rI499NenqOp1wegsZPV2IT7GQbmXKxgBJpJBa2OBtCJxV/HOE/JQ+IfPrfNigYTx M3+sB7yMtaFxndzT4XWHfsiNeY017Ahct+VKXQSKgiQBJhvnlxGaq/4O4chnGFFK OrcdjdotDCabC7fDztQT7yLMWpF/idgwRzovzb5WSrEhOvXATDr+auy5eSZ4B/Rq kRoyXmLO+0C/kZGvDXhq6fyawTCRT2sbaVILI3AEJWHxLL2ck60RDXXRSWEaixaF HK2Gc85GrxHzA87aURLk+teoEdIzC1lS -----END CERTIFICATE-----Generated at Sun Aug 24 05:16:49 2025 by rpki-client