$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: XMMsm0aFHdkWr014BzvA2D4GE7VNry5BErgW4N2ZejA= Subject key identifier: F3:76:FC:C8:BC:BE:39:E9:B2:A5:7B:D8:25:3A:88:9F:CA:8E:48:0A Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 0310 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 030C Signing time: Sat 09 Aug 2025 01:45:03 +0000 Manifest this update: Sat 09 Aug 2025 01:45:03 +0000 Manifest next update: Sat 16 Aug 2025 01:45:03 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: RpDi7cKaKaCYbu5T+kBsLc+07a8YXHc0w1TISvBCuC8=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: ipLQrTfxlsH1xbpA5Xtx6FI7FTiCB5Vq0xVbQe7ALKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 784 (0x310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: Aug 9 01:45:03 2025 GMT Not After : Aug 16 01:45:03 2025 GMT Subject: CN=6896a81f-f331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:9c:93:94:18:5f:2c:f9:79:8e:eb:35:c0: 75:3f:8d:77:75:49:e8:2a:bb:c7:fe:de:bd:c5:3a: 7e:28:0e:93:d0:ba:b8:ac:9a:71:7d:a7:fa:cd:39: 34:c4:4b:02:70:eb:3e:ca:90:84:0d:e7:65:2a:36: 76:02:6e:2e:b8:84:eb:ad:7f:63:75:bf:54:c0:a1: 96:6b:77:2e:e2:fe:b3:6a:a3:a0:a8:5f:1f:77:23: 0c:ef:4f:68:3c:6c:36:2b:c7:c6:9c:8b:6a:47:d9: 00:4f:94:7a:a4:0f:41:0c:4a:26:68:2f:10:db:db: bb:fc:73:71:fc:55:a3:ef:7b:69:9a:c1:76:a9:8d: d7:ce:94:a0:57:91:f3:45:3f:fd:89:f9:86:e9:8c: c8:4a:d5:73:87:29:a4:ae:98:b5:bf:9c:3f:7e:01: 15:2b:d2:c0:56:18:f4:c0:c3:4e:f5:69:7d:ea:77: 0e:be:29:56:d0:50:ec:48:6b:9c:a7:bf:b7:18:d4: 4d:4f:a7:77:8c:d1:e7:32:d1:65:de:39:79:6b:76: 2e:c3:e0:2b:69:b8:93:3f:ac:a2:85:fb:aa:2f:c4: 90:2d:5b:c6:92:b7:11:40:d3:c3:04:01:f3:74:c7: 1e:a3:b7:e1:63:75:a2:89:fc:f1:55:ed:17:c6:dd: 99:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:76:FC:C8:BC:BE:39:E9:B2:A5:7B:D8:25:3A:88:9F:CA:8E:48:0A X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d2:15:76:32:90:11:35:fc:e8:57:2d:20:23:49:b4:b9:bb: 8f:d1:56:fa:af:fe:38:0d:bb:ad:cc:a4:e5:c7:8b:39:fc:84: c9:a1:1b:ed:6a:dd:c5:cd:de:82:86:20:1b:8b:e1:47:88:55: da:e9:f2:0c:fb:ca:66:a0:2e:fc:c6:06:94:b6:72:e8:35:ef: a9:7e:d9:d5:5a:66:4c:7a:8b:b3:ae:98:50:3f:e7:b7:26:ed: e7:dd:6e:7a:f9:49:f4:6d:84:f4:29:1d:47:12:22:80:59:13: c5:d4:92:ce:50:a9:11:ee:d1:8e:3d:71:12:b1:7a:74:bd:45: a6:42:76:d2:c1:99:cf:12:e3:72:a2:b4:b8:93:f1:31:a8:5e: ed:be:72:57:90:4c:a6:09:5e:28:74:59:ec:06:53:65:f0:a5: de:51:9c:d8:a0:27:91:cc:ef:20:13:f8:a2:3f:90:00:5f:ef: 89:87:f9:52:54:d2:56:4b:b6:70:45:1e:af:8e:35:64:fe:64: 3f:6b:15:79:05:3b:2f:b6:84:73:ac:66:ff:c1:85:17:88:69: cd:5d:cb:34:9f:dd:3a:18:88:5f:d5:c5:fe:31:64:5c:42:97: 83:f6:ee:51:3d:2c:29:80:7a:e5:a3:71:08:d0:b8:6f:96:e9: d8:20:86:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUwODA5MDE0NTAzWhcNMjUwODE2MDE0NTAzWjAYMRYwFAYD VQQDEw02ODk2YTgxZi1mMzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkGck5QYXyz5eY7rNcB1P413dUnoKrvH/t69xTp+KA6T0Lq4rJpxfaf6zTk0 xEsCcOs+ypCEDedlKjZ2Am4uuITrrX9jdb9UwKGWa3cu4v6zaqOgqF8fdyMM709o PGw2K8fGnItqR9kAT5R6pA9BDEomaC8Q29u7/HNx/FWj73tpmsF2qY3XzpSgV5Hz RT/9ifmG6YzIStVzhymkrpi1v5w/fgEVK9LAVhj0wMNO9Wl96ncOvilW0FDsSGuc p7+3GNRNT6d3jNHnMtFl3jl5a3Yuw+ArabiTP6yihfuqL8SQLVvGkrcRQNPDBAHz dMceo7fhY3WiifzxVe0Xxt2ZvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN2/Mi8 vjnpsqV72CU6iJ/KjkgKMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN0hV2MpARNfzoVy0gI0m0ubuP0Vb6r/44DbutzKTlx4s5/ITJoRvt at3Fzd6ChiAbi+FHiFXa6fIM+8pmoC78xgaUtnLoNe+pftnVWmZMeouzrphQP+e3 Ju3n3W56+Un0bYT0KR1HEiKAWRPF1JLOUKkR7tGOPXESsXp0vUWmQnbSwZnPEuNy orS4k/ExqF7tvnJXkEymCV4odFnsBlNl8KXeUZzYoCeRzO8gE/iiP5AAX++Jh/lS VNJWS7ZwRR6vjjVk/mQ/axV5BTsvtoRzrGb/wYUXiGnNXcs0n906GIhf1cX+MWRc QpeD9u5RPSwpgHrlo3EI0LhvlunYIIaZ -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:29 2025 by rpki-client