$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: bH8SZ+XdpEn/cuPcSDPg2VQ95m4tMfE/4F+gpJUU0qs= Subject key identifier: EA:E6:37:4D:96:D1:F6:C5:53:8D:B0:58:2B:1B:B7:19:34:FE:26:38 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C6B Signing time: Sun 10 Aug 2025 18:21:48 +0000 Manifest this update: Sun 10 Aug 2025 18:21:48 +0000 Manifest next update: Sun 17 Aug 2025 18:21:48 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: 8XdJ8LuANYhFV5CCKFLC1GSP8foqZloxzw5qSXZzNXU=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: JpCVaZ9JZD1Afq3DjPUJqYLTP1v40h6qnEBodBPkfj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Aug 10 18:21:48 2025 GMT Not After : Aug 17 18:21:48 2025 GMT Subject: CN=6898e33c-9c02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:10:28:3e:40:23:b2:95:91:6c:3e:d7:a4:c9: 3d:50:72:ed:02:0f:01:58:0a:1f:8b:16:ab:21:15: 11:f1:51:a0:19:cd:7a:3a:9e:45:c7:a0:92:94:52: 42:50:a4:10:21:40:5a:ea:0a:56:98:c1:0c:e3:36: 87:2b:78:d9:00:42:0e:ef:d6:5b:e7:56:b6:f5:7e: 34:c8:ea:0d:9c:1b:6c:0b:e5:11:1c:9e:97:00:ae: 04:2c:fc:f1:af:42:68:0a:45:63:79:bf:e0:f5:e2: a5:38:31:4f:db:8c:7e:e2:a7:29:85:11:ff:80:9f: c9:e0:29:d6:52:4b:cd:ed:89:d8:3f:47:0a:d3:ad: 24:c9:d6:01:b1:12:d1:ad:4b:35:b2:9e:88:a8:36: 7a:6d:e4:97:67:16:38:2a:92:cc:7b:15:16:f2:05: e8:a5:e7:c6:df:91:79:0d:9d:1f:6a:52:19:9a:90: c8:18:10:07:66:09:0a:57:e9:76:51:1d:c2:2a:cf: d5:10:cd:2d:f3:2a:8e:b9:d3:fb:5d:3f:34:85:43: 4c:66:98:6b:a8:b0:c7:52:48:64:82:b6:c3:94:18: ca:d7:3c:9c:ff:5c:68:27:35:48:58:66:5e:f4:36: c4:74:1e:96:cf:16:e4:46:1c:c5:69:8d:99:4d:eb: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E6:37:4D:96:D1:F6:C5:53:8D:B0:58:2B:1B:B7:19:34:FE:26:38 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:3b:f2:dc:19:f7:c9:20:48:d2:dc:6f:8a:04:b7:c9:ec:70: ce:fd:9d:67:f3:95:4d:62:7b:e6:8b:3c:43:2d:7d:23:87:59: 21:c2:33:34:0b:f8:22:79:99:fd:61:68:10:2e:df:04:72:28: 50:70:f6:08:01:82:0a:75:7c:24:19:29:95:e8:6d:0b:57:7c: 43:c4:c2:d8:1c:75:fe:37:85:f8:d2:7e:c0:ca:c9:07:a2:a6: 1b:b0:46:f2:80:0e:42:65:73:e9:94:c4:7b:0c:bf:5a:a6:ad: 09:48:ce:45:fe:58:84:26:6e:da:f6:97:71:71:22:7d:64:6a: cf:c5:9e:2c:12:81:6e:c4:13:b9:8a:1d:95:24:34:0d:e8:2a: ea:ba:87:64:4a:68:32:28:bf:40:ef:8b:16:74:d7:a5:de:55: e0:c3:38:f7:6f:69:14:22:11:95:ba:4b:66:9e:4e:be:e0:d1: 02:e8:c6:5b:66:3e:83:84:a6:41:28:55:0e:d8:4e:bc:17:4d: 8d:62:d3:e7:05:11:5b:5b:6e:3c:78:75:b7:6a:c8:01:24:bb: b4:81:d1:2a:a4:ab:b3:93:c9:f6:d7:1b:e7:ec:32:bd:e2:87: cd:e5:68:a2:4b:a1:4a:dd:07:89:44:ae:b1:95:b5:ac:2d:86: 9f:eb:5c:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUwODEwMTgyMTQ4WhcNMjUwODE3MTgyMTQ4WjAYMRYwFAYD VQQDEw02ODk4ZTMzYy05YzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hAoPkAjspWRbD7XpMk9UHLtAg8BWAofixarIRUR8VGgGc16Op5Fx6CSlFJC UKQQIUBa6gpWmMEM4zaHK3jZAEIO79Zb51a29X40yOoNnBtsC+URHJ6XAK4ELPzx r0JoCkVjeb/g9eKlODFP24x+4qcphRH/gJ/J4CnWUkvN7YnYP0cK060kydYBsRLR rUs1sp6IqDZ6beSXZxY4KpLMexUW8gXopefG35F5DZ0falIZmpDIGBAHZgkKV+l2 UR3CKs/VEM0t8yqOudP7XT80hUNMZphrqLDHUkhkgrbDlBjK1zyc/1xoJzVIWGZe 9DbEdB6WzxbkRhzFaY2ZTet/9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrmN02W 0fbFU42wWCsbtxk0/iY4MB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrO/LcGffJIEjS3G+KBLfJ7HDO/Z1n85VNYnvmizxDLX0jh1khwjM0 C/gieZn9YWgQLt8EcihQcPYIAYIKdXwkGSmV6G0LV3xDxMLYHHX+N4X40n7AyskH oqYbsEbygA5CZXPplMR7DL9apq0JSM5F/liEJm7a9pdxcSJ9ZGrPxZ4sEoFuxBO5 ih2VJDQN6CrquodkSmgyKL9A74sWdNel3lXgwzj3b2kUIhGVuktmnk6+4NEC6MZb Zj6DhKZBKFUO2E68F02NYtPnBRFbW248eHW3asgBJLu0gdEqpKuzk8n21xvn7DK9 4ofN5WiiS6FK3QeJRK6xlbWsLYaf61xL -----END CERTIFICATE-----Generated at Sun Aug 10 21:04:37 2025 by rpki-client