$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: X9RHWnnpPv0p8mp1gOYYu6RqksFBRqbTTdlD3U7Y51k= Subject key identifier: 45:91:CF:5B:9E:79:96:1C:BF:48:19:EC:3A:44:B5:DC:AA:B2:1F:2C Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: A2 Signing time: Thu 07 Aug 2025 06:48:06 +0000 Manifest this update: Thu 07 Aug 2025 06:48:06 +0000 Manifest next update: Thu 14 Aug 2025 06:48:06 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: TF2iLHIH8Irvj/LQzZjYYd9/2JhqckTODbDNHxMB3xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Aug 7 06:48:06 2025 GMT Not After : Aug 14 06:48:06 2025 GMT Subject: CN=68944c26-6f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3e:a5:42:88:c2:ee:be:2a:0d:d9:6f:85:c3: f0:3b:85:3f:ca:7d:79:ca:8a:42:2d:98:c4:37:15: 61:73:58:93:b9:a7:b1:05:05:e2:a0:24:9d:c2:1e: 74:63:d3:5d:0a:8c:84:13:56:b8:51:77:37:d5:b9: 15:4b:1b:b0:92:ce:38:6c:34:d0:23:52:82:a2:69: 18:21:5b:0d:6c:c6:6d:ca:bd:e4:d7:be:b3:cb:39: 7c:c9:86:ce:8c:25:53:56:d3:24:a1:ef:0e:b0:74: 02:1f:3a:70:86:d1:e5:30:9c:e5:5c:d3:dd:ce:10: 26:fa:ff:86:cb:10:52:f4:35:0d:36:c3:4d:cb:3c: 6f:19:1a:49:90:1c:b9:c1:25:1b:2a:bd:ea:49:e7: 97:b9:c8:37:ab:13:e2:a2:e3:06:0d:53:d4:0a:8f: c3:e8:1d:68:62:de:7b:ef:26:bf:e2:56:c2:06:3c: 9c:6a:ca:12:7f:d7:c9:90:97:ee:93:2b:76:9e:60: 70:9f:1d:5f:be:53:54:2d:41:58:b4:fd:43:e6:ea: f4:02:ef:2c:82:84:d0:e3:1e:93:ad:a9:8b:32:d6: 72:7b:4e:14:1d:a3:a7:71:b7:1e:80:f1:73:3d:f9: cf:46:e4:99:82:f1:5c:46:43:9d:44:f6:06:9c:c0: 34:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:91:CF:5B:9E:79:96:1C:BF:48:19:EC:3A:44:B5:DC:AA:B2:1F:2C X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:c4:f6:ee:20:c8:47:b3:7e:1b:69:d9:20:78:c6:ce:ee:55: 7d:99:fe:e7:fa:a4:58:e7:30:0a:d7:20:ee:00:10:c6:1b:51: 8f:cf:73:dd:5b:5b:1b:5b:e2:2a:4c:cd:f0:08:ab:62:50:8c: fd:cc:c9:dc:2e:be:60:42:45:72:bf:59:6f:f8:67:95:fe:8a: 54:ef:cc:73:41:f9:7e:1b:75:bf:46:52:18:31:c4:36:5f:40: 35:8f:c1:ce:4e:56:dc:1b:9d:0f:e0:e6:a4:2c:08:b2:6e:ea: cc:46:bd:97:6d:4b:f9:59:67:0d:63:15:09:ab:a8:32:80:1f: ef:ae:f5:fb:cc:07:94:2f:a0:81:8d:f7:ef:98:41:d1:c3:7e: 84:ea:af:12:fb:15:cc:ed:5c:cf:99:65:d3:e5:3e:e5:c5:a5: d4:2e:6c:0e:c9:7c:5c:c4:71:5d:24:29:90:1d:ff:55:33:1c: 95:97:93:4b:d9:0c:cd:ed:99:79:ac:73:ad:95:e9:de:ae:6e: c7:8a:66:0c:5f:57:2e:26:92:da:14:79:65:e8:10:df:9e:f6: 08:4f:d6:50:fe:20:fd:e3:c2:74:39:ab:74:32:bd:63:ae:a9: 03:cc:a4:19:69:23:fa:34:70:8b:6e:89:0b:4c:61:31:96:4a: e0:7b:38:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUwODA3MDY0ODA2WhcNMjUwODE0MDY0ODA2WjAYMRYwFAYD VQQDEw02ODk0NGMyNi02ZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD6lQojC7r4qDdlvhcPwO4U/yn15yopCLZjENxVhc1iTuaexBQXioCSdwh50 Y9NdCoyEE1a4UXc31bkVSxuwks44bDTQI1KComkYIVsNbMZtyr3k176zyzl8yYbO jCVTVtMkoe8OsHQCHzpwhtHlMJzlXNPdzhAm+v+GyxBS9DUNNsNNyzxvGRpJkBy5 wSUbKr3qSeeXucg3qxPiouMGDVPUCo/D6B1oYt577ya/4lbCBjycasoSf9fJkJfu kyt2nmBwnx1fvlNULUFYtP1D5ur0Au8sgoTQ4x6TramLMtZye04UHaOncbcegPFz PfnPRuSZgvFcRkOdRPYGnMA0BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWRz1ue eZYcv0gZ7DpEtdyqsh8sMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+xPbuIMhHs34badkgeMbO7lV9mf7n+qRY5zAK1yDuABDGG1GPz3Pd W1sbW+IqTM3wCKtiUIz9zMncLr5gQkVyv1lv+GeV/opU78xzQfl+G3W/RlIYMcQ2 X0A1j8HOTlbcG50P4OakLAiyburMRr2XbUv5WWcNYxUJq6gygB/vrvX7zAeUL6CB jffvmEHRw36E6q8S+xXM7VzPmWXT5T7lxaXULmwOyXxcxHFdJCmQHf9VMxyVl5NL 2QzN7Zl5rHOtlenerm7HimYMX1cuJpLaFHll6BDfnvYIT9ZQ/iD948J0Oat0Mr1j rqkDzKQZaSP6NHCLbokLTGExlkrgezgq -----END CERTIFICATE-----Generated at Sat Aug 9 01:17:53 2025 by rpki-client