$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: q1kPXxczbtt9Bsc9hAVFCqpZQ3L70Jx+mrHOlH3wyq8= Subject key identifier: 0D:7D:99:29:76:BB:E4:E9:22:51:AB:F5:AD:D7:D5:B0:C6:A5:56:71 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 0151 Signing time: Mon 11 Aug 2025 04:19:37 +0000 Manifest this update: Mon 11 Aug 2025 04:19:37 +0000 Manifest next update: Mon 18 Aug 2025 04:19:37 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: 2AFVSU51ad4Qtc6lrWsuZOEBmDyfYYtviW1rZP2mfZs=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Aug 11 04:19:37 2025 GMT Not After : Aug 18 04:19:37 2025 GMT Subject: CN=68996f59-27bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:92:05:a0:b7:c4:6d:6f:16:58:b2:b8:fa: 36:00:f8:84:5a:29:f1:3e:1a:6e:9e:f4:f8:76:a2: 60:a9:91:4b:e7:da:30:4c:f8:69:f3:a6:ac:6d:e0: fa:5d:ef:d4:33:38:d7:11:0e:7e:2b:2e:2c:c7:86: c3:26:74:4b:72:99:08:1a:31:c3:e9:83:b4:03:62: 0a:9b:84:ca:94:a2:6b:af:da:06:c2:48:de:26:2d: b3:90:e9:36:05:d4:7e:9e:bc:27:2f:c1:8a:35:69: d9:51:2e:6d:7c:ac:1e:fe:28:43:93:67:e9:3e:0f: be:c6:8b:a7:34:2b:fe:a8:7b:4c:83:85:92:c3:f0: 9d:1d:b5:9d:11:22:e9:ce:f6:ad:c4:a2:58:c1:b5: 34:fd:a8:a3:9d:50:28:7f:57:23:51:f1:44:80:4b: 42:80:ef:c8:18:da:19:ba:38:6c:cd:21:0f:1d:cf: e1:9c:af:96:e6:1e:af:e4:23:a8:0b:d7:3f:d1:87: c7:5d:ba:3c:c0:1d:ea:1a:bb:51:d5:46:cd:47:3f: 4b:f4:50:68:f3:9f:07:58:da:f6:83:77:45:51:cc: af:54:4c:9c:fa:3a:02:97:23:31:be:57:d1:57:47: 1e:6d:4d:00:ac:16:e1:a3:e0:71:75:52:58:bf:e8: 93:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7D:99:29:76:BB:E4:E9:22:51:AB:F5:AD:D7:D5:B0:C6:A5:56:71 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:38:20:91:53:6d:3b:9b:9c:e1:82:ac:a6:95:43:13:69:a9: 7c:9b:43:9e:c1:34:a8:54:2e:97:7d:b1:6c:3d:2d:40:0c:25: 10:84:f1:29:48:e1:1c:cd:a4:f7:b7:6b:37:4d:51:b1:72:34: 0c:75:10:d6:f0:86:da:82:b0:92:45:fd:84:10:a7:c8:fe:0c: ce:e6:2d:24:3e:fe:5a:39:81:3f:53:ad:b6:10:65:c0:6e:13: fe:f9:a6:f6:fa:e9:eb:cd:2c:ec:eb:b2:fa:c9:4b:97:62:a9: df:4f:9d:26:19:42:59:13:6c:88:96:70:eb:a6:47:64:d3:01: ef:24:10:40:46:01:fe:9f:c7:b9:d0:3f:70:f3:40:03:24:1c: 22:f8:ea:ec:6e:73:2c:2d:ae:59:4e:5d:0a:61:b1:7e:b0:3a: 6c:f8:bc:0b:e3:86:70:d6:92:75:ef:bd:fc:b3:73:cf:0b:36: 2b:26:bb:f1:f4:23:72:3f:08:6a:5d:b7:25:aa:02:b1:c8:a1: 85:0b:fe:53:ec:81:5e:00:f7:b2:c0:ce:24:25:67:7c:f4:c8: e4:df:95:a1:69:80:7c:ed:39:33:b1:06:5b:66:cb:33:12:64: 3e:94:90:9d:d0:f9:7a:84:d8:33:ac:91:bc:79:15:0a:5d:2e: e9:70:cc:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUwODExMDQxOTM3WhcNMjUwODE4MDQxOTM3WjAYMRYwFAYD VQQDEw02ODk5NmY1OS0yN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo2SBaC3xG1vFliyuPo2APiEWinxPhpunvT4dqJgqZFL59owTPhp86asbeD6 Xe/UMzjXEQ5+Ky4sx4bDJnRLcpkIGjHD6YO0A2IKm4TKlKJrr9oGwkjeJi2zkOk2 BdR+nrwnL8GKNWnZUS5tfKwe/ihDk2fpPg++xounNCv+qHtMg4WSw/CdHbWdESLp zvatxKJYwbU0/aijnVAof1cjUfFEgEtCgO/IGNoZujhszSEPHc/hnK+W5h6v5COo C9c/0YfHXbo8wB3qGrtR1UbNRz9L9FBo858HWNr2g3dFUcyvVEyc+joClyMxvlfR V0cebU0ArBbho+BxdVJYv+iTEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA19mSl2 u+TpIlGr9a3X1bDGpVZxMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsOCCRU207m5zhgqymlUMTaal8m0OewTSoVC6XfbFsPS1ADCUQhPEp SOEczaT3t2s3TVGxcjQMdRDW8IbagrCSRf2EEKfI/gzO5i0kPv5aOYE/U622EGXA bhP++ab2+unrzSzs67L6yUuXYqnfT50mGUJZE2yIlnDrpkdk0wHvJBBARgH+n8e5 0D9w80ADJBwi+OrsbnMsLa5ZTl0KYbF+sDps+LwL44Zw1pJ17738s3PPCzYrJrvx 9CNyPwhqXbclqgKxyKGFC/5T7IFeAPeywM4kJWd89Mjk35WhaYB87TkzsQZbZssz EmQ+lJCd0Pl6hNgzrJG8eRUKXS7pcMx8 -----END CERTIFICATE-----Generated at Tue Aug 12 18:56:04 2025 by rpki-client