$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: rurHBVm6VLUc75xlLARRpnbYLzW+70xlT6zNyKnnR9g= Subject key identifier: 1A:BD:CC:E3:70:94:93:16:5B:61:1C:E9:08:33:F7:C9:13:ED:33:62 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01D9 Signing time: Tue 05 Aug 2025 03:11:37 +0000 Manifest this update: Tue 05 Aug 2025 03:11:37 +0000 Manifest next update: Tue 12 Aug 2025 03:11:37 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: we6q/8tJVrqYTeKqnGzSDWOj0rBW++R635KJVyYj2+E=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Aug 5 03:11:37 2025 GMT Not After : Aug 12 03:11:37 2025 GMT Subject: CN=68917669-a89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:54:91:6f:0a:09:73:f5:69:5e:37:7a:81:7f: 81:70:4a:76:da:18:4c:20:9a:a2:12:b0:fe:34:32: 0e:95:f4:0f:17:82:ad:18:91:4b:f0:65:6a:5b:b2: 08:ab:f5:b0:9e:fd:cf:77:32:e8:b7:af:07:ed:8f: 77:33:c8:1f:76:88:ed:6a:54:0c:19:27:b2:f2:91: 39:a8:1f:a3:43:42:97:2a:59:da:c6:a2:df:f6:a1: 00:b7:21:24:f2:cc:62:21:5c:98:11:5e:8c:4f:a2: 68:d1:ba:ac:64:ed:72:3c:ac:8c:05:04:fc:07:34: 17:11:7b:73:51:91:de:03:b3:6d:89:22:6d:41:0d: b7:2f:e3:4f:45:2e:61:2b:cb:ec:94:3d:a8:f7:7d: e5:0c:39:49:4f:be:33:c0:8c:d7:46:24:0e:1a:fd: f8:7a:55:8c:2a:23:b8:ba:0c:8d:b3:7c:1a:43:2f: 85:75:e0:03:8b:ae:57:6c:04:ca:03:84:0b:22:2e: f2:56:25:9c:10:97:ed:0a:cb:d4:12:29:39:c4:3a: 0a:54:45:43:88:aa:f2:b4:05:4a:11:e2:90:80:41: 39:6b:f6:ac:89:69:c5:ae:77:03:5a:7c:85:2a:2a: fd:7b:ba:c0:5d:db:c7:50:99:5d:f3:90:b0:c7:01: 6a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BD:CC:E3:70:94:93:16:5B:61:1C:E9:08:33:F7:C9:13:ED:33:62 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:75:32:82:3e:97:54:1a:22:0c:c7:2e:a9:1b:91:b8:3e:f2: 4a:97:d0:2d:e8:49:ff:54:08:31:1d:9f:94:9c:e2:e0:c1:78: f2:a5:b9:8f:27:e3:2a:c6:50:b2:50:3f:ed:24:6c:0f:eb:59: 88:2c:f2:91:5c:fa:7e:d6:17:77:54:ac:c4:ba:d9:94:68:13: 33:c9:6b:3d:93:5b:be:fa:7d:b8:72:4a:d2:bc:9a:a6:9f:13: ee:30:2b:16:23:13:1b:5a:72:21:7d:60:67:d5:5c:fa:14:5a: 82:30:a4:e7:3f:8a:e6:21:eb:df:7b:a9:9e:f6:a4:77:df:6c: c3:b6:3e:8d:0c:db:e6:e3:97:17:24:41:e5:ab:22:a3:af:0b: bc:1d:7a:a6:87:fa:0f:84:b7:7f:92:26:45:ec:93:fc:cb:67: 02:1c:c5:01:f7:a6:b6:65:cb:23:31:e6:9b:ac:71:3b:76:8a: 5c:ac:6b:54:67:85:6d:b9:83:e3:ea:e5:f6:98:b0:48:50:b7: 27:18:be:f0:73:0d:50:94:ec:7b:6c:de:c3:64:2a:11:f7:0c: 0c:94:16:0a:94:64:ed:13:37:dd:54:99:ba:16:63:d0:bb:0b: 98:bc:58:9b:b6:89:2b:66:7a:6d:9e:ff:9f:d8:29:29:8b:7d: 83:0a:49:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwODA1MDMxMTM3WhcNMjUwODEyMDMxMTM3WjAYMRYwFAYD VQQDEw02ODkxNzY2OS1hODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21SRbwoJc/VpXjd6gX+BcEp22hhMIJqiErD+NDIOlfQPF4KtGJFL8GVqW7II q/Wwnv3PdzLot68H7Y93M8gfdojtalQMGSey8pE5qB+jQ0KXKlnaxqLf9qEAtyEk 8sxiIVyYEV6MT6Jo0bqsZO1yPKyMBQT8BzQXEXtzUZHeA7NtiSJtQQ23L+NPRS5h K8vslD2o933lDDlJT74zwIzXRiQOGv34elWMKiO4ugyNs3waQy+FdeADi65XbATK A4QLIi7yViWcEJftCsvUEik5xDoKVEVDiKrytAVKEeKQgEE5a/asiWnFrncDWnyF Kir9e7rAXdvHUJld85CwxwFqxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq9zONw lJMWW2Ec6Qgz98kT7TNiMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARdTKCPpdUGiIMxy6pG5G4PvJKl9At6En/VAgxHZ+UnOLgwXjypbmP J+MqxlCyUD/tJGwP61mILPKRXPp+1hd3VKzEutmUaBMzyWs9k1u++n24ckrSvJqm nxPuMCsWIxMbWnIhfWBn1Vz6FFqCMKTnP4rmIevfe6me9qR332zDtj6NDNvm45cX JEHlqyKjrwu8HXqmh/oPhLd/kiZF7JP8y2cCHMUB96a2ZcsjMeabrHE7dopcrGtU Z4VtuYPj6uX2mLBIULcnGL7wcw1QlOx7bN7DZCoR9wwMlBYKlGTtEzfdVJm6FmPQ uwuYvFibtokrZnptnv+f2Ckpi32DCkn9 -----END CERTIFICATE-----Generated at Wed Aug 6 05:52:01 2025 by rpki-client