$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: 7tS+VNsqDvsXbSOf1EtJT93oc/eH/3/sv7O5KVLJBsM= Subject key identifier: AC:AF:69:64:54:C4:8B:EB:92:C0:D6:8D:63:9A:23:82:7B:59:0A:F0 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0499 Signing time: Sun 03 Aug 2025 00:30:04 +0000 Manifest this update: Sun 03 Aug 2025 00:30:04 +0000 Manifest next update: Sun 10 Aug 2025 00:30:04 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: bmK58PNo4JT+cYhITGWIb7G0XCIckqIeO2JEL9RQJvg=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: 4by10ick3aOPoEwL9MxmYZych/O61DB95JCCfpjs2l0=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: zdWwyK62ezTqtldMx3AFhd08v1ee56JEEEGh/b+1bK8=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: yt5ul2v37If2OMAgvwlcXNvNlpOeU9vk4N82gRjp7ro=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: tkC8VFhPaMMB7xHukmlTC8vVY5Lai1noTB/JDIdLAEc=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: ofwlwfDv/f2slgSdPa6hT78BUtn3LBZ837QvOITSXas=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Aug 3 00:30:04 2025 GMT Not After : Aug 10 00:30:04 2025 GMT Subject: CN=688ead8c-433c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:71:fc:2f:fe:d4:96:1a:50:52:9a:1e:f3: 10:a7:75:31:c7:d1:b3:d6:91:f8:a4:47:2d:62:ae: df:5e:44:a9:f9:40:ca:d5:8a:62:47:bd:82:76:00: f0:05:89:52:ae:4e:75:9d:2b:e8:82:d5:80:c3:7a: ec:a4:39:23:ac:46:08:ad:eb:61:1e:4d:32:79:32: 90:c8:3f:7e:a8:92:5c:6c:ed:14:71:20:03:f4:a2: 84:9e:1b:5f:44:e8:08:21:f5:f0:01:c3:8c:4d:8d: 8f:41:c5:91:87:f2:e3:68:cf:e4:4b:ea:1c:88:3c: 36:68:cb:3a:66:61:c8:e4:c9:49:07:ed:6f:3c:fe: ab:4e:d3:9f:aa:21:70:a2:5a:18:10:a0:9c:87:e7: 49:51:01:8f:bf:d4:76:07:f3:3a:da:34:5a:5e:f8: 3e:00:d4:a8:40:f0:09:09:c6:06:9b:97:b2:6c:15: ac:02:de:e8:d2:cb:23:fb:37:ac:af:37:a4:3a:be: 4a:99:53:3d:9a:39:d6:83:77:12:21:a5:5d:9f:91: 84:cf:79:93:92:50:76:67:38:cc:77:6a:5e:f3:a2: 22:e0:77:67:1e:0e:39:7c:4b:dd:e3:c1:09:d3:90: f8:50:c2:a0:4e:a3:8d:29:f7:2b:d0:7a:10:3a:1a: c9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:AF:69:64:54:C4:8B:EB:92:C0:D6:8D:63:9A:23:82:7B:59:0A:F0 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f5:e3:53:6b:5a:a4:b5:92:64:a8:3a:2d:9c:0b:14:4c:b5: 16:b1:69:90:b9:b0:74:16:62:db:43:fe:19:88:b2:63:22:02: 6a:a3:7d:57:9b:e0:6c:ce:26:e0:59:10:0d:a1:58:3a:94:99: fd:eb:83:2b:4a:bc:ac:79:99:92:d6:7f:f2:a6:85:98:de:06: 36:0e:6c:b5:26:60:3a:59:75:ed:b4:8e:9c:1b:77:1c:ba:0c: 8a:49:95:3b:24:c1:06:31:db:98:38:01:14:28:0e:f6:b3:0e: 2c:a0:c4:cc:0f:b6:1f:7e:da:c4:b3:db:cf:81:f0:c5:27:75: 02:58:ad:92:3c:6c:f2:b1:99:1e:3f:3e:72:84:6d:04:77:c3: 83:e2:26:dc:c4:28:a7:d2:fc:29:ea:1c:aa:ca:23:8e:5a:f8: 32:66:ab:3f:82:31:ba:41:c8:5d:c6:a4:51:5b:b4:06:4b:b3: b9:06:6a:4e:c3:f1:fd:57:15:6d:19:cc:10:2f:88:82:bf:54: be:1e:43:a1:c0:f5:cd:9c:6b:20:38:e8:d0:cb:d4:fc:58:2c: ff:f5:63:24:5f:0e:38:b3:27:38:f8:e1:65:09:2f:e4:db:3c: a1:f5:d7:72:4f:aa:b3:8d:bc:66:b1:00:0e:9c:e0:76:e7:dd: eb:a0:dd:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUwODAzMDAzMDA0WhcNMjUwODEwMDAzMDA0WjAYMRYwFAYD VQQDEw02ODhlYWQ4Yy00MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzFx/C/+1JYaUFKaHvMQp3Uxx9Gz1pH4pEctYq7fXkSp+UDK1YpiR72CdgDw BYlSrk51nSvogtWAw3rspDkjrEYIrethHk0yeTKQyD9+qJJcbO0UcSAD9KKEnhtf ROgIIfXwAcOMTY2PQcWRh/LjaM/kS+ociDw2aMs6ZmHI5MlJB+1vPP6rTtOfqiFw oloYEKCch+dJUQGPv9R2B/M62jRaXvg+ANSoQPAJCcYGm5eybBWsAt7o0ssj+zes rzekOr5KmVM9mjnWg3cSIaVdn5GEz3mTklB2ZzjMd2pe86Ii4HdnHg45fEvd48EJ 05D4UMKgTqONKfcr0HoQOhrJDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyvaWRU xIvrksDWjWOaI4J7WQrwMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt9eNTa1qktZJkqDotnAsUTLUWsWmQubB0FmLbQ/4ZiLJjIgJqo31X m+BszibgWRANoVg6lJn964MrSryseZmS1n/ypoWY3gY2Dmy1JmA6WXXttI6cG3cc ugyKSZU7JMEGMduYOAEUKA72sw4soMTMD7YfftrEs9vPgfDFJ3UCWK2SPGzysZke Pz5yhG0Ed8OD4ibcxCin0vwp6hyqyiOOWvgyZqs/gjG6QchdxqRRW7QGS7O5BmpO w/H9VxVtGcwQL4iCv1S+HkOhwPXNnGsgOOjQy9T8WCz/9WMkXw44syc4+OFlCS/k 2zyh9ddyT6qzjbxmsQAOnOB2593roN3r -----END CERTIFICATE-----Generated at Mon Aug 4 04:05:51 2025 by rpki-client