$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: RBt8AbUXR1mIONpfVoPamQ352GlBlIrvfo/4dDivOqY= Subject key identifier: E8:3F:FD:E5:8A:DE:66:DF:A7:91:C7:FE:40:F0:E1:81:7F:FD:E8:5B Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1A7D Signing time: Sun 10 Aug 2025 16:18:29 +0000 Manifest this update: Sun 10 Aug 2025 16:18:28 +0000 Manifest next update: Sun 17 Aug 2025 16:18:28 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: aB/Jmgu6ir8k/GpOt+TTMs/Z0mTHoNX6LeeOO+e3ifA=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6796 (0x1a8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Aug 10 16:18:28 2025 GMT Not After : Aug 17 16:18:28 2025 GMT Subject: CN=6898c654-ec26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:d1:f5:ee:bd:df:9f:a9:46:cc:97:09:fb: b3:31:fa:34:a3:5b:a3:95:55:c8:de:24:77:da:90: 12:92:99:a6:df:51:dc:0d:70:88:8c:34:91:f4:5d: 89:ce:64:4e:e2:28:91:1b:dc:4f:d8:d7:3f:70:fb: b2:71:66:e4:2e:21:e4:02:6d:c6:d5:06:e8:ec:c9: 0e:81:01:6f:a9:4b:b9:b7:02:b6:82:29:8b:dd:b7: 7d:ae:e8:18:3d:be:01:d8:01:42:19:66:8b:c1:bf: 12:c3:85:c6:38:d5:74:a1:4e:ef:7e:09:23:ef:06: 4c:c3:76:4a:9d:93:e7:29:f0:58:78:9c:6f:f0:4c: 22:0a:80:3d:a4:d0:66:cd:ef:80:45:76:fa:7c:32: b8:6b:b7:5d:df:88:6f:bf:68:6d:5b:87:e6:97:7e: b5:f1:13:df:16:d3:6d:d2:a6:42:65:68:1f:7b:ef: 6b:fe:d2:a8:fa:35:92:57:8c:bd:a0:f0:18:fd:5a: 86:b2:9e:7f:1a:4c:e7:e8:36:d4:9c:ca:dd:ae:27: 30:52:3a:5a:a8:f8:e3:90:8b:93:e2:cd:18:1d:0d: 9a:a1:3f:c3:78:05:9c:1b:d8:79:06:9e:54:77:be: 74:08:f1:76:dd:24:81:79:fc:44:09:ce:bb:e3:53: b6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3F:FD:E5:8A:DE:66:DF:A7:91:C7:FE:40:F0:E1:81:7F:FD:E8:5B X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ab:b6:59:0f:42:5c:46:d2:2c:14:66:fa:5b:f4:6c:67:73: e5:e2:81:70:05:e7:50:0b:97:a5:b7:52:0b:aa:6b:ff:2e:cf: 6d:f6:99:01:25:1c:f2:d2:c2:ad:18:d9:5b:ad:20:99:35:6d: ea:a5:2a:d8:b4:b3:76:34:94:89:80:8e:57:ba:95:df:21:f3: 4c:3d:bf:3c:b8:e7:bf:a1:e9:d2:9c:5f:0e:5e:eb:0b:08:9d: 34:b1:53:84:be:2e:ec:71:7f:a8:71:14:4d:1d:24:75:87:cf: 3d:59:16:9b:02:51:95:fa:5a:ae:2b:69:0b:19:c5:5e:6c:a3: 29:eb:1d:29:fd:18:56:f1:74:5a:19:95:67:97:52:9b:61:e6: ce:b4:36:f7:79:7b:78:88:08:a7:8e:d0:23:10:be:b7:86:0e: bd:4d:7c:06:58:68:13:a9:5f:36:98:d7:b5:2e:78:69:34:af: ad:2f:f7:3e:ab:b4:84:4e:0e:80:1b:66:25:40:da:f4:5e:7b: 9f:42:57:ff:63:0b:71:25:18:70:88:de:3f:e1:fd:61:0f:85: 04:d7:0d:ea:c7:43:7d:84:da:d3:eb:59:64:99:cc:96:04:9a: 9c:79:32:a1:d2:65:1b:2e:96:4b:e4:b2:97:6d:2e:30:bc:86: 9b:98:2a:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwODEwMTYxODI4WhcNMjUwODE3MTYxODI4WjAYMRYwFAYD VQQDEw02ODk4YzY1NC1lYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBzR9e6935+pRsyXCfuzMfo0o1ujlVXI3iR32pASkpmm31HcDXCIjDSR9F2J zmRO4iiRG9xP2Nc/cPuycWbkLiHkAm3G1Qbo7MkOgQFvqUu5twK2gimL3bd9rugY Pb4B2AFCGWaLwb8Sw4XGONV0oU7vfgkj7wZMw3ZKnZPnKfBYeJxv8EwiCoA9pNBm ze+ARXb6fDK4a7dd34hvv2htW4fml3618RPfFtNt0qZCZWgfe+9r/tKo+jWSV4y9 oPAY/VqGsp5/Gkzn6DbUnMrdricwUjpaqPjjkIuT4s0YHQ2aoT/DeAWcG9h5Bp5U d750CPF23SSBefxECc6741O2+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOg//eWK 3mbfp5HH/kDw4YF//ehbMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiq7ZZD0JcRtIsFGb6W/RsZ3Pl4oFwBedQC5elt1ILqmv/Ls9t9pkB JRzy0sKtGNlbrSCZNW3qpSrYtLN2NJSJgI5XupXfIfNMPb88uOe/oenSnF8OXusL CJ00sVOEvi7scX+ocRRNHSR1h889WRabAlGV+lquK2kLGcVebKMp6x0p/RhW8XRa GZVnl1KbYebOtDb3eXt4iAinjtAjEL63hg69TXwGWGgTqV82mNe1LnhpNK+tL/c+ q7SETg6AG2YlQNr0XnufQlf/YwtxJRhwiN4/4f1hD4UE1w3qx0N9hNrT61lkmcyW BJqceTKh0mUbLpZL5LKXbS4wvIabmCrw -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:51 2025 by rpki-client