$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: kZPiSKllTAU1+WIyhLQ5MWFjezHnt03Md8HmbFaqCPM= Subject key identifier: B1:46:C6:B8:C0:06:7A:A9:30:F6:E3:A3:30:47:D8:EE:03:E6:50:FB Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 04F2 Signing time: Sun 10 Aug 2025 23:50:01 +0000 Manifest this update: Sun 10 Aug 2025 23:50:01 +0000 Manifest next update: Sun 17 Aug 2025 23:50:01 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: E63LR+TaO0+Ip9CI9DenJrt0ktsNTr3pWm0SV4vJSM4=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 23:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Aug 10 23:50:01 2025 GMT Not After : Aug 17 23:50:01 2025 GMT Subject: CN=68993029-622a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:76:b2:c8:04:9b:e0:51:67:70:47:bf:6c:51: d1:c2:d7:63:66:b1:96:1e:a3:b8:c5:ff:b1:8a:d7: 05:2c:23:20:78:b8:8c:e0:ec:87:bc:e2:b5:46:a3: 22:04:95:71:36:55:d3:79:37:86:66:b6:bd:e5:f8: 75:7d:92:16:c4:f3:24:88:76:21:db:e0:0a:78:d5: 6e:4b:bc:1d:5c:e4:9c:28:6e:00:a1:58:23:69:62: a3:44:77:c0:21:fa:fe:9a:0d:21:87:b6:d1:b7:71: c6:0b:88:22:7c:12:d3:ab:07:59:34:42:45:c5:b5: d2:d5:b3:24:b0:a3:3f:92:9b:2a:52:30:a4:1f:b1: 5a:a6:14:17:e7:3c:62:59:3f:ee:05:a3:12:c3:a9: 55:e9:d7:a0:db:ae:a4:47:6e:51:e2:6b:9d:94:71: f3:dd:d2:ed:4b:c9:bf:1c:c1:06:e7:4a:d1:73:7b: 12:e1:69:03:ba:16:60:2d:bc:b1:55:42:3d:24:1c: cc:79:9a:52:7a:80:96:03:d1:ce:3e:bb:06:9b:59: b3:e4:ea:dc:7f:70:dd:bd:0d:1a:13:33:b4:c9:09: 85:e2:51:82:6c:0c:71:ff:09:43:4d:80:be:20:94: 71:6b:e3:47:88:ce:38:3b:c6:48:62:e4:c3:60:ef: b8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:46:C6:B8:C0:06:7A:A9:30:F6:E3:A3:30:47:D8:EE:03:E6:50:FB X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9d:2e:e3:06:cd:59:e6:f8:0b:58:e0:9c:a6:8c:64:c6:83: 35:ba:68:c4:63:c7:2a:59:36:4f:e4:3c:19:cb:07:91:2f:c1: 35:d8:03:78:42:fc:b9:90:d0:f9:c3:2a:fd:39:0c:70:91:48: 9e:ae:d7:fd:60:59:1a:0f:35:1c:c7:e9:b1:38:5d:31:8d:cd: 8d:1f:c8:dd:48:01:14:2b:49:0c:01:9f:e7:c6:12:d0:7b:58: c8:12:af:e5:b5:8c:49:6d:65:ac:ef:99:69:94:31:68:26:83: 43:1f:89:13:e6:8c:67:70:7c:73:f1:10:8a:12:5c:bd:c9:4e: 2e:35:e0:3a:fd:05:4b:20:dd:7e:62:60:5e:4a:1c:1d:3b:8a: 27:f5:1c:9e:c2:94:23:76:00:5e:79:26:8c:83:c8:c0:0b:83: 77:27:51:80:41:20:16:1d:d6:d7:d4:57:62:3a:fd:13:56:0b: 8f:20:00:b2:3e:aa:7d:f4:21:a8:42:75:87:1e:47:b5:73:5c: 53:21:a4:c4:7b:2b:9b:33:f9:d6:f4:ba:fc:1a:ff:c9:c5:03: 67:43:8f:fc:c3:5c:bd:e0:b5:f4:20:1b:a0:27:33:4f:87:90: f6:03:93:f3:c6:b2:d4:11:3b:8d:bf:7f:09:34:b8:27:12:a0: 2b:37:fe:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwODEwMjM1MDAxWhcNMjUwODE3MjM1MDAxWjAYMRYwFAYD VQQDEw02ODk5MzAyOS02MjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3ayyASb4FFncEe/bFHRwtdjZrGWHqO4xf+xitcFLCMgeLiM4OyHvOK1RqMi BJVxNlXTeTeGZra95fh1fZIWxPMkiHYh2+AKeNVuS7wdXOScKG4AoVgjaWKjRHfA Ifr+mg0hh7bRt3HGC4gifBLTqwdZNEJFxbXS1bMksKM/kpsqUjCkH7FaphQX5zxi WT/uBaMSw6lV6deg266kR25R4mudlHHz3dLtS8m/HMEG50rRc3sS4WkDuhZgLbyx VUI9JBzMeZpSeoCWA9HOPrsGm1mz5Orcf3DdvQ0aEzO0yQmF4lGCbAxx/wlDTYC+ IJRxa+NHiM44O8ZIYuTDYO+4XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFGxrjA BnqpMPbjozBH2O4D5lD7MB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAInS7jBs1Z5vgLWOCcpoxkxoM1umjEY8cqWTZP5DwZyweRL8E12AN4 Qvy5kND5wyr9OQxwkUiertf9YFkaDzUcx+mxOF0xjc2NH8jdSAEUK0kMAZ/nxhLQ e1jIEq/ltYxJbWWs75lplDFoJoNDH4kT5oxncHxz8RCKEly9yU4uNeA6/QVLIN1+ YmBeShwdO4on9RyewpQjdgBeeSaMg8jAC4N3J1GAQSAWHdbX1FdiOv0TVguPIACy Pqp99CGoQnWHHke1c1xTIaTEeyubM/nW9Lr8Gv/JxQNnQ4/8w1y94LX0IBugJzNP h5D2A5PzxrLUETuNv38JNLgnEqArN/50 -----END CERTIFICATE-----Generated at Tue Aug 12 14:39:43 2025 by rpki-client