$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: oQGAkRn0+W87y34VMPBFeRWLaIK2jgXj6IYl1xx3unA= Subject key identifier: A9:EA:E9:EA:31:FC:BA:92:A2:4D:FA:2D:89:B4:0A:FD:9E:0F:07:77 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: C7 Signing time: Sat 09 Aug 2025 06:11:53 +0000 Manifest this update: Sat 09 Aug 2025 06:11:53 +0000 Manifest next update: Sat 16 Aug 2025 06:11:53 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: /qxJdkIg+MX5MHDI4GruaweUdGVTURkBm3xkKHvBK7g=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Aug 9 06:11:53 2025 GMT Not After : Aug 16 06:11:53 2025 GMT Subject: CN=6896e6a9-7182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e3:fc:d5:37:12:a2:cd:5e:53:8d:c8:06:a8: b5:95:c4:99:b9:a5:6d:21:19:ed:30:35:4d:ca:68: 81:07:e9:c9:cc:2f:be:7d:ae:47:8f:d6:08:40:52: 5f:7c:a2:b1:88:39:83:4a:64:c7:9e:8a:97:b3:ad: f6:21:3c:14:4e:74:15:02:0b:a3:e7:86:97:07:12: 2c:6e:89:ce:05:ab:9d:15:4a:a8:ce:e5:1c:d0:12: ee:a6:1a:25:6e:57:da:36:c0:24:02:ff:83:19:51: a6:f2:4b:74:e3:4f:68:30:21:d9:6c:d0:b8:ca:25: e5:79:88:95:ed:60:10:23:aa:e1:6b:a1:0d:bb:98: 74:96:d0:db:3a:20:aa:4e:fc:ca:7d:3f:cb:a8:ff: 59:d5:eb:97:2f:5c:9a:06:5d:53:2d:f4:27:df:56: 44:5b:92:dc:58:4a:94:bc:36:96:37:22:07:57:ee: 53:08:22:c6:3b:7a:dc:cc:90:3c:58:c2:cf:47:7e: c9:13:cf:ce:49:36:b0:d5:66:37:0e:13:65:f9:34: f2:c1:0a:49:96:fd:14:30:1d:7a:a4:2a:35:e7:48: 77:17:06:25:9b:e0:b1:1c:9a:86:8a:fc:43:92:e2: 46:2c:51:25:ec:8b:67:e7:6a:48:f8:b2:97:71:64: fd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:E9:EA:31:FC:BA:92:A2:4D:FA:2D:89:B4:0A:FD:9E:0F:07:77 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:58:79:e6:0f:6a:83:13:61:68:5e:ca:5a:60:75:a9:9e:39: 8a:7e:4f:93:f3:b9:b2:65:1c:20:86:06:fc:ac:fb:07:80:c5: e4:fe:77:18:ab:4d:8b:f5:71:ca:91:c7:cd:91:3e:c0:09:49: cb:29:28:3d:a5:47:33:21:65:d7:12:b7:8c:4e:65:11:f7:ad: bc:86:c6:4f:d3:c7:50:1f:b2:c4:5d:d8:09:34:ad:18:e4:5a: 56:0d:cc:85:32:8c:37:be:d1:98:9b:05:44:a2:cd:f0:ec:1f: fc:78:95:00:28:e7:1b:8e:4e:a9:ae:ac:b5:1e:01:21:d2:52: 24:c4:50:73:0d:08:dd:a9:34:a7:35:1a:a0:f3:b7:48:f8:1f: 41:11:2c:17:0a:74:c7:4b:5d:41:b6:9e:ad:8d:de:33:75:9c: 28:9d:b7:89:78:3a:7e:74:07:20:f6:8e:d7:9d:5b:18:22:cc: 94:f5:f9:eb:aa:9b:9e:0e:19:59:62:c6:c6:97:ca:64:73:53: ac:6d:fe:f8:57:ae:8c:4f:4c:7d:b5:ba:2e:51:08:2f:3d:20: 91:90:07:97:f9:04:dd:6d:64:a2:78:83:b7:9c:84:f6:38:9b: 2e:4b:b7:ee:90:93:9f:96:ba:3e:b1:03:9c:04:3c:12:e7:39: 2d:03:cf:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwODA5MDYxMTUzWhcNMjUwODE2MDYxMTUzWjAYMRYwFAYD VQQDEw02ODk2ZTZhOS03MTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eP81TcSos1eU43IBqi1lcSZuaVtIRntMDVNymiBB+nJzC++fa5Hj9YIQFJf fKKxiDmDSmTHnoqXs632ITwUTnQVAguj54aXBxIsbonOBaudFUqozuUc0BLuphol blfaNsAkAv+DGVGm8kt0409oMCHZbNC4yiXleYiV7WAQI6rha6ENu5h0ltDbOiCq TvzKfT/LqP9Z1euXL1yaBl1TLfQn31ZEW5LcWEqUvDaWNyIHV+5TCCLGO3rczJA8 WMLPR37JE8/OSTaw1WY3DhNl+TTywQpJlv0UMB16pCo150h3FwYlm+CxHJqGivxD kuJGLFEl7Itn52pI+LKXcWT9zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnq6eox /LqSok36LYm0Cv2eDwd3MB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABWHnmD2qDE2FoXspaYHWpnjmKfk+T87myZRwghgb8rPsHgMXk/ncY q02L9XHKkcfNkT7ACUnLKSg9pUczIWXXEreMTmUR9628hsZP08dQH7LEXdgJNK0Y 5FpWDcyFMow3vtGYmwVEos3w7B/8eJUAKOcbjk6prqy1HgEh0lIkxFBzDQjdqTSn NRqg87dI+B9BESwXCnTHS11Btp6tjd4zdZwonbeJeDp+dAcg9o7XnVsYIsyU9fnr qpueDhlZYsbGl8pkc1Osbf74V66MT0x9tbouUQgvPSCRkAeX+QTdbWSieIO3nIT2 OJsuS7fukJOflro+sQOcBDwS5zktA8/F -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:35 2025 by rpki-client