$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft File: YmfJfrSg3wHtvW-dQahqh54CeX8.mft (raw, json) Hash identifier: KA5sb/Ze2C0QC3s583mT91xCqJ5qc0MWEclVGdEd0WI= Subject key identifier: 9F:04:7F:68:C8:DE:F7:20:8A:45:44:AD:67:DA:84:5C:A9:75:3C:FA Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft Manifest number: 01CF Signing time: Sat 23 Aug 2025 03:01:33 +0000 Manifest this update: Sat 23 Aug 2025 03:01:32 +0000 Manifest next update: Sat 30 Aug 2025 03:01:32 +0000 Files and hashes: 1: YmfJfrSg3wHtvW-dQahqh54CeX8.crl (hash: eZ7jvMk55BKeie1o+ItN1rlWbW9I2INtfZolAaiPZtE=) 2: B2DE2498C4FD11ED909F2770C4F9AE02.roa (hash: sz+mmIZs/29Io2xKT3w1Go850hnuQbV97uqO5OCD7zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B, serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: Aug 23 03:01:32 2025 GMT Not After : Aug 30 03:01:32 2025 GMT Subject: CN=68a92f0d-4f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:12:11:4f:b9:51:e1:1b:f4:bd:90:f5:2c: 67:fd:d1:6d:c6:d4:ee:fb:d4:4a:3f:52:97:9a:3d: 40:50:10:ad:3c:b4:52:f1:40:9a:ce:ba:81:0d:43: c7:9f:cc:d0:66:86:53:b0:ed:a2:45:85:5b:8a:74: 61:e6:fe:f6:f5:ee:71:05:55:b1:09:61:62:92:ba: 53:2d:84:d8:ef:5c:45:16:e0:f4:2e:f8:97:b8:be: 03:60:0a:a7:f0:f2:18:f2:2d:32:5e:3d:c5:89:72: 95:7b:17:cd:e2:92:ca:79:ca:e6:26:ea:f1:a3:fa: 2f:01:43:3c:5b:62:c9:f3:2a:93:88:e5:c4:df:50: ec:0d:1c:e5:df:13:ee:97:58:d7:30:d6:26:d3:d6: 72:23:d1:55:68:ef:24:bc:16:32:cf:01:dc:24:84: b6:84:3e:33:9e:fa:43:de:2b:c6:c2:e2:ad:d4:31: a6:75:f7:c0:92:9b:6b:61:93:9b:73:ab:52:fe:7e: 1b:f7:20:e0:ea:fd:f3:4e:fc:06:76:37:7d:29:21: cd:77:80:49:d6:63:58:cb:ac:38:d9:48:c1:d3:d7: 36:30:79:38:8c:7e:05:47:88:db:d6:59:53:08:5a: 69:1e:ae:f8:0f:dd:3c:9e:23:47:83:6b:f7:73:54: a6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:04:7F:68:C8:DE:F7:20:8A:45:44:AD:67:DA:84:5C:A9:75:3C:FA X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:4f:82:62:61:2b:aa:f0:20:70:c6:24:8a:41:92:9d:d1:b9: 1a:a0:2d:f3:6c:54:2e:da:0e:bc:4f:44:fe:0b:cc:0e:23:4c: 50:01:95:58:d6:f1:16:fd:15:0c:0f:9c:60:fc:a8:b3:c7:99: fe:1b:9e:e4:ac:f7:96:52:7a:f2:b3:b7:07:c1:e7:7e:e2:46: f4:93:cf:28:32:c4:d1:2c:59:d8:31:68:7c:eb:21:7c:b5:2a: 90:12:8b:da:31:f9:28:3a:83:92:92:10:2a:17:ef:7c:38:bc: a4:20:6b:6e:87:05:0e:77:fa:00:5c:7d:f4:05:ce:e7:43:07: 9f:84:79:04:7b:33:f1:a2:76:eb:b8:a9:e3:31:fa:28:8c:c3: 1a:fc:55:4a:91:c3:30:fb:0e:d4:7f:22:71:2b:b9:43:af:9a: ff:70:ea:45:50:80:fb:d2:c5:0c:56:d0:4b:bc:48:18:1d:6e: 93:87:40:01:ed:3b:0d:f3:04:2c:63:38:f5:79:18:83:f8:de: 89:15:bb:dd:12:5d:90:27:ac:02:f5:9a:28:1a:2d:40:4c:27: f4:7e:25:c6:03:ae:02:01:9d:5f:dd:d3:91:06:d1:e2:b4:b3: 48:f4:20:cd:8c:d4:42:ac:c0:00:d8:44:08:fb:ce:36:66:08: f8:cc:61:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjUwODIzMDMwMTMyWhcNMjUwODMwMDMwMTMyWjAYMRYwFAYD VQQDEw02OGE5MmYwZC00ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdwSEU+5UeEb9L2Q9Sxn/dFtxtTu+9RKP1KXmj1AUBCtPLRS8UCazrqBDUPH n8zQZoZTsO2iRYVbinRh5v729e5xBVWxCWFikrpTLYTY71xFFuD0LviXuL4DYAqn 8PIY8i0yXj3FiXKVexfN4pLKecrmJurxo/ovAUM8W2LJ8yqTiOXE31DsDRzl3xPu l1jXMNYm09ZyI9FVaO8kvBYyzwHcJIS2hD4znvpD3ivGwuKt1DGmdffAkptrYZOb c6tS/n4b9yDg6v3zTvwGdjd9KSHNd4BJ1mNYy6w42UjB09c2MHk4jH4FR4jb1llT CFppHq74D908niNHg2v3c1Sm+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8Ef2jI 3vcgikVErWfahFypdTz6MB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY2Qi8xNDJCQ0I5NkM0RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3 SHR2Vy1kUWFocWg1NENlWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4T4JiYSuq8CBwxiSKQZKd0bkaoC3zbFQu2g68T0T+C8wOI0xQAZVY 1vEW/RUMD5xg/Kizx5n+G57krPeWUnrys7cHwed+4kb0k88oMsTRLFnYMWh86yF8 tSqQEovaMfkoOoOSkhAqF+98OLykIGtuhwUOd/oAXH30Bc7nQwefhHkEezPxonbr uKnjMfoojMMa/FVKkcMw+w7UfyJxK7lDr5r/cOpFUID70sUMVtBLvEgYHW6Th0AB 7TsN8wQsYzj1eRiD+N6JFbvdEl2QJ6wC9ZooGi1ATCf0fiXGA64CAZ1f3dORBtHi tLNI9CDNjNRCrMAA2EQI+842Zgj4zGEv -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:28 2025 by rpki-client