$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft File: ypDU0hJfAza1OY7gmXcpby5AkrQ.mft (raw, json) Hash identifier: IgyqFqTst1BIJT5JyzY5ThvSgj5CMNgu+jggblFXht8= Subject key identifier: 71:FD:A2:E9:26:E0:3C:C1:E7:83:65:57:6B:FB:8C:DA:2E:4E:AF:C3 Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Certificate serial: 02B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft Manifest number: 029D Signing time: Sat 09 Aug 2025 02:14:54 +0000 Manifest this update: Sat 09 Aug 2025 02:14:54 +0000 Manifest next update: Sat 16 Aug 2025 02:14:54 +0000 Files and hashes: 1: ypDU0hJfAza1OY7gmXcpby5AkrQ.crl (hash: 4vrV7zMeFciu8bOGpCZH3FPYmTjT3DAbujMulI5mTtU=) 2: 69F7328030A611F0BBA4642EC4F9AE02.roa (hash: LeMbdehFC4fTf/TGuaoRSnOw0VY+BgZy7lQOEpG5vyc=) 3: 39FCB4EC4F4E11EDB169BF33C4F9AE02.roa (hash: 0dIG8fQMRzlILpkTDJVo/XSoC64SAKbRto45S4Eicvs=) 4: 4D608CC0800211EF81167A23C4F9AE02.roa (hash: ZQQKFp5iiDEIGLxVFz3G6lECRRriefFnadRp8yKcQoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580D2, serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Validity Not Before: Aug 9 02:14:54 2025 GMT Not After : Aug 16 02:14:54 2025 GMT Subject: CN=6896af1e-8db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:6a:17:ea:3b:80:2e:fb:10:7a:bb:e3:69: a3:21:cb:40:4b:50:ce:10:e6:3d:4a:f8:ad:f3:6e: 1a:a5:36:0e:a6:64:67:70:7b:ba:61:e2:99:14:0c: 20:38:8b:59:40:ef:53:6a:ee:e1:dc:de:6b:bb:fa: 91:1b:69:a0:87:01:b0:37:39:ce:f3:c7:cd:d4:bd: cd:89:e3:23:f2:59:22:00:5f:74:8e:69:ae:ac:27: a7:50:d8:0b:4f:ef:d6:aa:b8:6e:66:5a:e3:f6:b5: 41:e7:aa:16:23:ba:43:3a:72:2b:91:d6:01:30:68: 1a:fd:ae:21:14:03:3c:b9:eb:bd:d0:ca:cf:8f:21: 1e:1f:2a:d6:e9:2b:0a:7d:44:48:89:48:5c:38:87: a7:08:b4:4a:fd:2d:47:fb:e2:fe:da:c1:ad:b5:db: 02:fb:66:6a:91:e1:c3:49:32:b0:5b:fc:db:5f:ab: 39:ae:26:90:f1:ea:e0:ce:12:cb:6d:cf:88:6e:dc: a6:59:91:d1:4e:9b:48:4a:2f:74:22:e2:8c:df:d0: 96:41:75:1f:b3:94:eb:e6:f0:f1:a8:35:8f:e6:e7: fc:45:75:eb:93:08:c4:83:39:27:65:48:4c:0a:e3: 04:cf:d8:d6:0c:76:59:96:69:bf:a9:ea:0f:63:87: 25:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FD:A2:E9:26:E0:3C:C1:E7:83:65:57:6B:FB:8C:DA:2E:4E:AF:C3 X509v3 Authority Key Identifier: keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:7a:de:8a:6a:03:90:8e:ee:cd:e1:b9:fd:38:17:36:6c:31: cb:00:ab:ed:08:63:f3:c5:d2:0d:4c:05:de:ae:e5:43:6b:c9: 9b:7c:c6:21:22:b7:b5:b4:d7:28:7c:d9:15:2f:1b:1f:c8:a2: 61:e5:a7:7f:c2:ff:df:7e:76:f5:00:c9:5d:95:71:8a:bd:5f: 37:5a:fa:f9:8f:43:c2:82:c5:ef:92:df:67:be:18:82:e1:0c: 42:3e:28:23:03:47:63:df:43:3f:30:8f:12:f9:30:4b:d3:76: f0:2c:fb:f2:07:08:54:5f:b6:b2:6b:d5:66:50:bd:0a:d7:84: 30:e0:c3:54:d9:74:75:0b:e7:94:55:5d:2f:f7:67:aa:dc:db: e1:4e:a7:be:97:04:3c:a7:d1:4a:37:92:7e:fd:9b:75:94:62: 13:34:13:59:5a:bc:6f:e2:6f:01:04:3b:67:c8:dd:a4:4b:76: b4:37:6b:f2:83:b7:55:46:70:0d:b6:cf:25:24:47:66:a4:67: 2b:7b:79:c5:55:be:51:8c:cf:37:27:47:c0:ee:74:2a:57:15: 58:18:11:19:73:19:cc:09:84:e5:d9:62:4c:43:c8:af:34:92: 08:89:c6:e5:5b:4e:c3:fe:12:29:86:d5:bf:5c:e4:56:9e:dc: 6f:5b:7d:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG MkU0MDkyQjQwHhcNMjUwODA5MDIxNDU0WhcNMjUwODE2MDIxNDU0WjAYMRYwFAYD VQQDEw02ODk2YWYxZS04ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSxqF+o7gC77EHq742mjIctAS1DOEOY9Svit824apTYOpmRncHu6YeKZFAwg OItZQO9Tau7h3N5ru/qRG2mghwGwNznO88fN1L3NieMj8lkiAF90jmmurCenUNgL T+/WqrhuZlrj9rVB56oWI7pDOnIrkdYBMGga/a4hFAM8ueu90MrPjyEeHyrW6SsK fURIiUhcOIenCLRK/S1H++L+2sGttdsC+2ZqkeHDSTKwW/zbX6s5riaQ8ergzhLL bc+IbtymWZHRTptISi90IuKM39CWQXUfs5Tr5vDxqDWP5uf8RXXrkwjEgzknZUhM CuMEz9jWDHZZlmm/qeoPY4clQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH9oukm 4DzB54NlV2v7jNouTq/DMB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4 NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBEMi9FQkMxQUMyQzE4NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6 YTFPWTdnbVhjcGJ5NUFrclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwet6KagOQju7N4bn9OBc2bDHLAKvtCGPzxdINTAXeruVDa8mbfMYh Ire1tNcofNkVLxsfyKJh5ad/wv/ffnb1AMldlXGKvV83Wvr5j0PCgsXvkt9nvhiC 4QxCPigjA0dj30M/MI8S+TBL03bwLPvyBwhUX7aya9VmUL0K14Qw4MNU2XR1C+eU VV0v92eq3NvhTqe+lwQ8p9FKN5J+/Zt1lGITNBNZWrxv4m8BBDtnyN2kS3a0N2vy g7dVRnANts8lJEdmpGcre3nFVb5RjM83J0fA7nQqVxVYGBEZcxnMCYTl2WJMQ8iv NJIIicblW07D/hIphtW/XORWntxvW322 -----END CERTIFICATE-----Generated at Sun Aug 10 05:44:59 2025 by rpki-client