$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: 2Un0lRrNeq6inB5vW3BDv6TY+92/yd/CUsqkJwVVrJI= Subject key identifier: 1C:D5:32:69:77:09:02:19:CC:9B:AB:C3:95:F2:FF:37:D7:A9:A6:A0 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01D3 Signing time: Sat 09 Aug 2025 03:12:43 +0000 Manifest this update: Sat 09 Aug 2025 03:12:43 +0000 Manifest next update: Sat 16 Aug 2025 03:12:43 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: z31ww0JfxNQa9GUbzVCwiWbrsPLkOeURqdMR26gaQqI=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Aug 9 03:12:43 2025 GMT Not After : Aug 16 03:12:43 2025 GMT Subject: CN=6896bcab-8bbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3e:ad:eb:cb:97:ae:90:3a:58:b9:27:3e:d1: 07:11:97:b4:3d:38:69:6f:2a:c9:6d:e2:1c:71:e4: ef:eb:2a:7d:66:bd:fc:d2:d4:5f:d8:34:43:c3:17: 6f:84:2a:fd:d3:3e:6e:39:af:35:f4:88:b0:59:e7: fc:95:26:50:fa:3b:8b:57:82:67:2d:73:5f:31:6f: dc:0e:c0:bd:c1:24:20:9e:82:e7:fd:e6:f6:a9:55: 48:bb:f0:59:3e:38:54:fa:64:c3:28:49:3c:63:98: 14:22:60:e4:72:ac:44:e7:ed:70:50:a5:33:25:6a: 0c:0b:0c:80:e2:f8:fa:83:3d:93:68:d6:f3:2d:46: dd:74:19:73:e2:05:c4:ae:77:e6:e5:53:2b:65:55: 25:d3:6c:c4:b5:de:3f:80:0b:69:14:25:dd:47:3a: 04:a9:65:05:a7:2c:21:5a:3e:dc:cf:10:95:2e:37: d7:a0:23:be:da:b9:05:c6:fb:1d:fa:1a:74:bb:56: 46:3a:90:1f:f2:65:2e:69:60:c8:67:47:7a:ed:84: 15:d7:80:39:31:38:8a:f6:9e:a7:a5:aa:1f:d0:60: ab:0e:41:72:b1:f8:17:81:5f:0e:b0:9d:c6:f3:94: 31:85:d5:fc:e5:b3:b8:bf:f1:3a:ad:fb:97:d2:ad: 02:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D5:32:69:77:09:02:19:CC:9B:AB:C3:95:F2:FF:37:D7:A9:A6:A0 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:0e:96:21:f4:08:2c:5d:42:8f:62:98:7d:9e:3b:11:d0:91: dd:39:2c:21:e2:29:1f:3c:e1:5b:d0:05:29:5d:1a:02:0e:ee: 82:35:ae:2c:bc:c2:27:1a:9c:0f:f1:55:69:a9:f2:fe:5b:74: ac:f9:d1:ec:4a:a8:57:66:50:ea:94:9f:bd:6c:3a:89:86:75: 3e:81:c1:a5:38:1d:3d:bc:50:6b:1a:2e:82:3e:35:0f:20:77: 8e:aa:20:fe:af:78:ca:6f:12:66:d0:9e:dd:07:d8:ec:55:a3: 37:a1:d2:36:10:98:41:87:12:45:2f:17:cd:28:d6:8c:5f:5d: d7:1c:73:b0:c1:88:9b:ec:1b:af:25:08:13:6b:7a:28:b7:92: 6b:94:1f:3d:55:6a:a0:4e:71:e3:17:26:1e:9d:69:d1:01:49: a9:97:34:3c:98:e8:ed:76:f3:50:d7:15:04:f4:1a:da:60:0f: 80:71:0a:56:6e:59:08:4a:04:88:9b:77:64:26:00:e4:e6:42: b3:9d:a6:58:6e:3b:39:9d:4b:42:46:c6:ac:b3:d8:ef:91:6b: 0c:96:a6:71:a5:83:18:f8:35:3d:bf:0e:7e:61:f1:0f:fa:a6: 78:a2:af:c8:dd:d8:de:f5:dc:91:ad:5e:ba:d0:c7:12:7d:ad: 8e:40:2e:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwODA5MDMxMjQzWhcNMjUwODE2MDMxMjQzWjAYMRYwFAYD VQQDEw02ODk2YmNhYi04YmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzT6t68uXrpA6WLknPtEHEZe0PThpbyrJbeIcceTv6yp9Zr380tRf2DRDwxdv hCr90z5uOa819IiwWef8lSZQ+juLV4JnLXNfMW/cDsC9wSQgnoLn/eb2qVVIu/BZ PjhU+mTDKEk8Y5gUImDkcqxE5+1wUKUzJWoMCwyA4vj6gz2TaNbzLUbddBlz4gXE rnfm5VMrZVUl02zEtd4/gAtpFCXdRzoEqWUFpywhWj7czxCVLjfXoCO+2rkFxvsd +hp0u1ZGOpAf8mUuaWDIZ0d67YQV14A5MTiK9p6npaof0GCrDkFysfgXgV8OsJ3G 85QxhdX85bO4v/E6rfuX0q0CQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzVMml3 CQIZzJurw5Xy/zfXqaagMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/DpYh9AgsXUKPYph9njsR0JHdOSwh4ikfPOFb0AUpXRoCDu6CNa4s vMInGpwP8VVpqfL+W3Ss+dHsSqhXZlDqlJ+9bDqJhnU+gcGlOB09vFBrGi6CPjUP IHeOqiD+r3jKbxJm0J7dB9jsVaM3odI2EJhBhxJFLxfNKNaMX13XHHOwwYib7Buv JQgTa3oot5JrlB89VWqgTnHjFyYenWnRAUmplzQ8mOjtdvNQ1xUE9BraYA+AcQpW blkISgSIm3dkJgDk5kKznaZYbjs5nUtCRsass9jvkWsMlqZxpYMY+DU9vw5+YfEP +qZ4oq/I3dje9dyRrV660McSfa2OQC5r -----END CERTIFICATE-----Generated at Sat Aug 9 05:41:42 2025 by rpki-client