$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft File: Y35CcZzKBnZlOgprNKBujlSsBe8.mft (raw, json) Hash identifier: A8/LbrxLieu7hwdOR+e09y2GUhmLvHL/YK/B16hBf6s= Subject key identifier: 4F:57:64:27:42:26:BA:91:9A:BD:0A:7F:49:70:86:41:57:01:1B:C7 Authority key identifier: 63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF Certificate issuer: /CN=A91FECFD/serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Certificate serial: 090A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft Manifest number: 0904 Signing time: Fri 22 Aug 2025 20:27:15 +0000 Manifest this update: Fri 22 Aug 2025 20:27:15 +0000 Manifest next update: Fri 29 Aug 2025 20:27:15 +0000 Files and hashes: 1: Y35CcZzKBnZlOgprNKBujlSsBe8.crl (hash: j6ENzYmBxc3OnwqmDB+QIBys2BTglO9H0hpY+B6TBvI=) 2: 995F3DCEAF7811EABCA9AC1DC4F9AE02.roa (hash: ZNkH5Sj7XHBs6ufHKPHidPlMntGP72EIG2BMLfQDnC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECFD, serialNumber=637E42719CCA0676653A0A6B34A06E8E54AC05EF Validity Not Before: Aug 22 20:27:15 2025 GMT Not After : Aug 29 20:27:15 2025 GMT Subject: CN=68a8d2a3-e7c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7e:bb:6f:f2:d8:c9:22:66:fa:2f:31:28:8e: 2d:1a:a1:6a:89:86:16:6f:41:82:94:bd:41:6e:45: 74:36:2e:5f:68:c0:bb:04:6c:97:1e:cd:4e:b5:80: f3:ef:3e:11:4a:92:30:bb:56:bd:3d:e6:c5:a4:f4: 2b:7c:55:40:bf:ec:03:f0:e5:be:c3:b9:a6:23:58: e6:56:7c:41:e8:bc:1a:d3:95:91:6c:73:97:fd:69: ab:aa:84:a7:02:77:91:f3:8b:22:ce:a9:b6:5a:16: 93:11:b8:4e:3c:e5:89:05:00:86:34:a7:e2:7b:88: e6:3a:e7:55:9b:48:46:e2:8e:c4:41:aa:3f:85:0f: 3d:8d:1b:9e:69:bc:1f:03:62:b0:0c:32:da:9c:be: e5:09:90:e6:2a:8b:9c:c0:a0:43:33:3f:7c:4e:9b: 8b:c4:39:3d:82:08:a8:de:bb:11:e3:b9:61:ee:83: 37:4a:61:37:5c:62:0b:a1:a4:d3:da:97:6f:4d:a5: a5:c3:7b:4a:27:62:03:3a:34:5a:69:57:22:5b:61: 4d:05:87:3e:cb:24:dd:c3:69:c1:cb:45:42:79:4b: 14:b7:10:d2:f3:82:a9:78:e0:78:a0:70:70:32:6c: f1:0a:b1:1a:df:27:40:33:ac:32:ee:7d:aa:95:46: 51:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:57:64:27:42:26:BA:91:9A:BD:0A:7F:49:70:86:41:57:01:1B:C7 X509v3 Authority Key Identifier: keyid:63:7E:42:71:9C:CA:06:76:65:3A:0A:6B:34:A0:6E:8E:54:AC:05:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y35CcZzKBnZlOgprNKBujlSsBe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECFD/37A04264AF7711EA8118311BC4F9AE02/Y35CcZzKBnZlOgprNKBujlSsBe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:e7:8d:de:5c:37:ba:3f:1a:73:ee:f9:31:07:64:3c:67:7b: 8f:60:62:d4:e9:27:39:cf:e9:20:45:8a:af:88:59:19:13:9e: 3c:36:b4:b9:95:d3:0e:a2:47:1d:26:79:3e:63:1e:f7:d4:37: c8:e8:a5:62:fb:af:62:80:b7:08:67:e1:7b:62:bf:2a:c4:a5: 7b:8f:4c:3e:cb:d2:c5:a0:c4:28:7f:cb:d3:c4:97:a7:2b:7e: 35:ec:3b:1c:09:c3:c5:ce:da:a2:32:2c:ce:ff:e2:a1:e9:29: b3:2c:a3:44:56:3f:bc:3b:02:97:a6:57:06:37:ad:87:f4:bc: 54:d3:7a:6e:38:e2:39:1b:38:99:da:d2:ab:c3:b7:96:2d:a2: ca:5c:31:57:85:b5:54:8e:60:a4:70:1c:92:f4:6c:f6:bb:88: 85:de:9c:31:bc:cc:6f:4c:e5:25:af:b2:35:d0:e9:07:db:e7: ce:15:ad:6a:ad:9d:a4:ac:50:85:68:4d:f5:e1:4b:c3:bc:3b: 56:40:0e:88:1e:f5:3a:e2:bc:18:9a:29:49:a9:71:75:a9:b0: 45:a0:03:ea:56:82:55:c1:f1:2c:b3:ca:be:e3:b2:08:f2:3a: aa:2a:6f:ed:6a:a7:1a:af:f0:7a:f8:50:28:56:32:c2:1d:65: d4:df:36:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDRkQxMTAvBgNVBAUTKDYzN0U0MjcxOUNDQTA2NzY2NTNBMEE2QjM0QTA2RThF NTRBQzA1RUYwHhcNMjUwODIyMjAyNzE1WhcNMjUwODI5MjAyNzE1WjAYMRYwFAYD VQQDEw02OGE4ZDJhMy1lN2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH67b/LYySJm+i8xKI4tGqFqiYYWb0GClL1BbkV0Ni5faMC7BGyXHs1OtYDz 7z4RSpIwu1a9PebFpPQrfFVAv+wD8OW+w7mmI1jmVnxB6Lwa05WRbHOX/WmrqoSn AneR84sizqm2WhaTEbhOPOWJBQCGNKfie4jmOudVm0hG4o7EQao/hQ89jRueabwf A2KwDDLanL7lCZDmKoucwKBDMz98TpuLxDk9ggio3rsR47lh7oM3SmE3XGILoaTT 2pdvTaWlw3tKJ2IDOjRaaVciW2FNBYc+yyTdw2nBy0VCeUsUtxDS84KpeOB4oHBw MmzxCrEa3ydAM6wy7n2qlUZRCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9XZCdC JrqRmr0Kf0lwhkFXARvHMB8GA1UdIwQYMBaAFGN+QnGcygZ2ZToKazSgbo5UrAXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNGRC8zN0EwNDI2NEFG NzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0JuWmxPZ3ByTktCdWpsU3NC ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzNUNjWnpLQm5abE9ncHJOS0J1amxTc0JlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNGRC8zN0EwNDI2NEFGNzcxMUVBODExODMxMUJDNEY5QUUwMi9ZMzVDY1p6S0Ju WmxPZ3ByTktCdWpsU3NCZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV543eXDe6Pxpz7vkxB2Q8Z3uPYGLU6Sc5z+kgRYqviFkZE548NrS5 ldMOokcdJnk+Yx731DfI6KVi+69igLcIZ+F7Yr8qxKV7j0w+y9LFoMQof8vTxJen K3417DscCcPFztqiMizO/+Kh6SmzLKNEVj+8OwKXplcGN62H9LxU03puOOI5GziZ 2tKrw7eWLaLKXDFXhbVUjmCkcByS9Gz2u4iF3pwxvMxvTOUlr7I10OkH2+fOFa1q rZ2krFCFaE314UvDvDtWQA6IHvU64rwYmilJqXF1qbBFoAPqVoJVwfEss8q+47II 8jqqKm/taqcar/B6+FAoVjLCHWXU3zav -----END CERTIFICATE-----Generated at Sat Aug 23 14:26:46 2025 by rpki-client