$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: xH0rv7IqOADSgCkF+S9OpqLrvELRAeYiBTiNLcPs3jk= Subject key identifier: AB:E9:BC:02:43:01:88:9D:71:79:C0:10:7F:82:6E:EF:7D:1A:49:19 Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 05FA Signing time: Sun 10 Aug 2025 22:58:52 +0000 Manifest this update: Sun 10 Aug 2025 22:58:52 +0000 Manifest next update: Sun 17 Aug 2025 22:58:52 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: ULPHpZWGAhiZWf6PYkMGdzl27j2U9MjZcmK1U6DzE4o=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814, serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: Aug 10 22:58:52 2025 GMT Not After : Aug 17 22:58:52 2025 GMT Subject: CN=6899242c-9e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f9:1c:be:e2:b6:1c:09:56:b2:47:1a:4f:d4: a9:6c:b0:b1:e8:fe:ec:a9:2a:6f:7e:7d:b9:fe:e4: 82:67:c7:ff:98:f3:12:fa:14:39:3a:3f:84:81:8a: 68:fd:c4:fa:61:6c:29:a8:30:4e:cb:cd:10:40:fc: 0e:9f:4b:38:8c:78:0c:24:01:6f:87:12:45:cb:17: 70:29:50:f5:77:e6:ad:51:fa:e7:35:06:61:c9:e9: 3d:43:1f:b8:bb:67:5b:5a:9a:f3:13:de:69:aa:e2: 53:ba:96:ff:f9:9b:45:fc:3a:66:da:c9:58:38:9f: f9:4f:e6:ac:da:81:49:27:b8:55:e1:d7:ed:54:92: a8:ea:a3:c2:53:12:b4:05:3f:04:44:46:74:68:b1: c7:2b:58:98:db:96:58:19:3a:c7:75:91:57:e8:63: cc:2c:dd:84:d3:42:d5:5e:43:af:77:b9:a0:e6:53: 16:af:2f:9f:c3:0f:1f:5c:d4:96:00:f4:b6:55:2c: 56:0e:1b:6a:fd:2b:2b:8c:ff:e1:a4:75:8a:7a:11: d7:e1:31:79:96:6b:40:c3:40:62:63:6b:65:1d:3b: 77:67:f6:52:8f:07:87:7e:39:c7:ac:34:4b:f0:e1: f2:b8:c1:77:94:10:3b:18:39:6a:64:c0:18:f7:6c: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E9:BC:02:43:01:88:9D:71:79:C0:10:7F:82:6E:EF:7D:1A:49:19 X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:00:f1:2f:c5:15:b3:d5:28:2d:e2:02:4d:92:f3:ab:5f:bc: 71:f5:48:da:2a:a6:47:c8:a7:05:67:e6:76:a9:83:55:fd:f5: 10:d3:0b:71:24:5f:d0:08:71:b9:c7:e6:f6:ab:67:e9:34:3d: 20:03:71:9f:bf:1b:9e:26:cf:2e:9b:3a:5c:a5:11:42:7f:f3: 91:26:4a:12:ed:db:9e:b0:a1:ce:88:3e:f9:d1:49:7a:99:f4: 52:1d:a2:ce:71:d7:57:e1:82:7e:bc:a9:e4:69:d2:53:22:38: a6:63:61:3c:d3:db:8e:73:30:e3:9a:17:c7:ea:f0:01:78:e2: d8:f5:84:fd:ec:47:df:d0:50:94:9f:93:c3:13:f8:f3:70:f3: 15:6f:dd:65:8d:4e:ad:2a:01:c6:ad:61:c2:17:76:6f:fb:de: 86:72:a5:7c:fe:8f:f6:e3:bc:48:fe:34:80:67:77:59:39:2f: 91:b5:f2:6e:3b:3b:d6:19:04:4d:37:f9:28:77:c1:92:a8:9c: f1:43:f7:57:ae:bb:f2:f9:48:f4:be:3f:db:ac:7c:4e:6e:1b: 32:82:60:2a:62:97:6b:c2:c6:96:e0:76:64:ba:ab:cc:d8:b6: ce:72:23:1e:fd:1a:1d:90:ca:34:5d:f0:52:ed:6b:76:9e:63: a2:c6:7d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjUwODEwMjI1ODUyWhcNMjUwODE3MjI1ODUyWjAYMRYwFAYD VQQDEw02ODk5MjQyYy05ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PkcvuK2HAlWskcaT9SpbLCx6P7sqSpvfn25/uSCZ8f/mPMS+hQ5Oj+EgYpo /cT6YWwpqDBOy80QQPwOn0s4jHgMJAFvhxJFyxdwKVD1d+atUfrnNQZhyek9Qx+4 u2dbWprzE95pquJTupb/+ZtF/Dpm2slYOJ/5T+as2oFJJ7hV4dftVJKo6qPCUxK0 BT8EREZ0aLHHK1iY25ZYGTrHdZFX6GPMLN2E00LVXkOvd7mg5lMWry+fww8fXNSW APS2VSxWDhtq/SsrjP/hpHWKehHX4TF5lmtAw0BiY2tlHTt3Z/ZSjweHfjnHrDRL 8OHyuMF3lBA7GDlqZMAY92yC+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvpvAJD AYidcXnAEH+Cbu99GkkZMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFAPEvxRWz1Sgt4gJNkvOrX7xx9UjaKqZHyKcFZ+Z2qYNV/fUQ0wtx JF/QCHG5x+b2q2fpND0gA3GfvxueJs8umzpcpRFCf/ORJkoS7duesKHOiD750Ul6 mfRSHaLOcddX4YJ+vKnkadJTIjimY2E809uOczDjmhfH6vABeOLY9YT97Eff0FCU n5PDE/jzcPMVb91ljU6tKgHGrWHCF3Zv+96GcqV8/o/247xI/jSAZ3dZOS+RtfJu OzvWGQRNN/kod8GSqJzxQ/dXrrvy+Uj0vj/brHxObhsygmAqYpdrwsaW4HZkuqvM 2LbOciMe/RodkMo0XfBS7Wt2nmOixn2O -----END CERTIFICATE-----Generated at Wed Aug 13 00:25:29 2025 by rpki-client