$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: AnjUD9OjvU0+5aZpyQC/CZCLEq2MoFBjbbasHhSr5Zw= Subject key identifier: F2:7B:C3:79:88:B6:50:2A:E9:17:1B:A1:56:A1:03:64:E6:B6:97:6B Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 180D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 1803 Signing time: Sun 10 Aug 2025 16:31:08 +0000 Manifest this update: Sun 10 Aug 2025 16:31:07 +0000 Manifest next update: Sun 17 Aug 2025 16:31:07 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: oBiKtTp2D6s4oNRkDVAAYkS/MJ/7G+f8UgdTg6P9hC0=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: FXxg8JbRyxhX/govLjKDj9hLX7J7czh75q9/plpdJE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6157 (0x180d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Aug 10 16:31:07 2025 GMT Not After : Aug 17 16:31:07 2025 GMT Subject: CN=6898c94b-a06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b5:51:5b:0e:73:62:0a:6a:e7:bb:ac:16:eb: 24:44:3d:f5:8f:b9:b4:12:0b:bc:86:80:b9:b0:51: 93:ba:8a:99:52:d6:e6:a1:c0:fa:3a:f3:8a:97:4e: bb:97:38:b1:c1:70:dd:cc:fe:17:2b:26:b9:77:9d: cf:9d:70:5a:03:9e:14:f0:21:5c:ea:0d:35:27:5d: 98:06:0e:2e:dd:0e:52:f8:c9:d7:72:0c:74:d4:ea: d5:e2:f7:28:2a:8c:00:e3:b9:63:9f:af:a1:6f:6d: 45:3e:9a:e4:11:95:06:e1:d4:96:bb:e3:c2:72:9a: 8f:cb:8f:ee:ac:e8:fb:03:d9:01:d8:d9:f6:68:69: 24:65:2f:d5:c8:29:56:23:51:b1:7a:e5:52:67:6a: 3b:4c:cd:a3:d4:0e:97:22:c3:8a:88:4b:a6:7d:24: 7d:1f:62:b8:6b:5c:34:5d:92:c0:b9:15:4d:05:ff: 75:90:76:01:5b:84:dc:61:cd:36:78:53:6e:ac:98: 2e:21:c7:96:fb:15:6c:46:79:a8:6c:31:62:a3:1e: fa:38:38:26:05:0b:be:a2:d6:b3:e0:52:12:68:25: 13:45:be:30:65:a5:e5:d7:62:59:d3:f5:a9:b5:b8: 47:89:e3:0b:f2:e7:92:22:58:9d:35:5f:b0:ef:85: ae:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7B:C3:79:88:B6:50:2A:E9:17:1B:A1:56:A1:03:64:E6:B6:97:6B X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:14:d9:23:ae:7f:6e:65:3e:55:41:f0:d1:d8:28:2a:34:64: 21:27:2f:84:49:dd:e3:3b:81:d9:3f:9e:2e:87:d0:b3:f2:84: 18:96:6d:8d:ea:9b:b7:32:fa:41:3e:d9:ac:7f:b1:da:17:1e: bc:cb:eb:85:22:b9:ae:dd:bf:2e:27:2f:2d:e2:1f:ec:76:3f: 37:dd:09:c0:86:2f:cd:77:9a:b5:11:8b:60:f7:c9:db:9f:2e: f0:0e:3b:bd:2a:7c:c1:74:ff:21:c6:65:2a:c9:05:44:f1:15: ff:b1:ad:4c:83:3a:bc:9b:0b:c5:7d:ac:23:c3:2b:da:2b:84: 4e:ee:74:28:c1:8e:5a:97:00:d4:0e:ae:b2:64:80:dd:fe:76: ff:e0:fb:d9:2e:f5:66:96:18:8d:9d:fa:65:4e:ec:68:4f:03: ea:46:ec:45:a3:7c:ad:77:26:38:2d:52:ee:28:dd:e0:4e:ab: 92:64:6b:a7:3d:38:a8:55:a9:c3:67:7d:f2:63:cf:71:28:da: 20:12:2f:e6:e2:86:aa:dc:1f:eb:6e:81:8d:a3:43:94:76:28: cd:a5:96:78:b9:bf:23:76:31:4a:e7:e9:02:67:b3:e3:ce:89: 7c:dc:05:8a:18:6c:34:f6:2e:c0:dc:e1:a2:f6:ae:b3:1b:24: cb:09:4f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwODEwMTYzMTA3WhcNMjUwODE3MTYzMTA3WjAYMRYwFAYD VQQDEw02ODk4Yzk0Yi1hMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurVRWw5zYgpq57usFuskRD31j7m0Egu8hoC5sFGTuoqZUtbmocD6OvOKl067 lzixwXDdzP4XKya5d53PnXBaA54U8CFc6g01J12YBg4u3Q5S+MnXcgx01OrV4vco KowA47ljn6+hb21FPprkEZUG4dSWu+PCcpqPy4/urOj7A9kB2Nn2aGkkZS/VyClW I1GxeuVSZ2o7TM2j1A6XIsOKiEumfSR9H2K4a1w0XZLAuRVNBf91kHYBW4TcYc02 eFNurJguIceW+xVsRnmobDFiox76ODgmBQu+otaz4FISaCUTRb4wZaXl12JZ0/Wp tbhHieML8ueSIlidNV+w74Wu6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ7w3mI tlAq6RcboVahA2TmtpdrMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+FNkjrn9uZT5VQfDR2CgqNGQhJy+ESd3jO4HZP54uh9Cz8oQYlm2N 6pu3MvpBPtmsf7HaFx68y+uFIrmu3b8uJy8t4h/sdj833QnAhi/Nd5q1EYtg98nb ny7wDju9KnzBdP8hxmUqyQVE8RX/sa1Mgzq8mwvFfawjwyvaK4RO7nQowY5alwDU Dq6yZIDd/nb/4PvZLvVmlhiNnfplTuxoTwPqRuxFo3ytdyY4LVLuKN3gTquSZGun PTioVanDZ33yY89xKNogEi/m4oaq3B/rboGNo0OUdijNpZZ4ub8jdjFK5+kCZ7Pj zol83AWKGGw09i7A3OGi9q6zGyTLCU9B -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:59 2025 by rpki-client