$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft File: YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft (raw, json) Hash identifier: W/BfEri8slfAr2dfSmgIelRI5vvzLdl4oKtfKEJqkt0= Subject key identifier: 03:8E:72:8B:35:C0:B2:B0:9E:F8:B3:7D:C4:5E:12:40:2D:DF:31:32 Authority key identifier: 61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 Certificate issuer: /CN=A91C2F8C/serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft Manifest number: 9B Signing time: Thu 07 Aug 2025 06:54:06 +0000 Manifest this update: Thu 07 Aug 2025 06:54:05 +0000 Manifest next update: Thu 14 Aug 2025 06:54:05 +0000 Files and hashes: 1: YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl (hash: +PIgDAWu1R9q/YbSHIbTrzPQKhYZNs1CR69xj3hiRhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=611E1C149528F17A0EC799C39D562619C9A15100 Validity Not Before: Aug 7 06:54:05 2025 GMT Not After : Aug 14 06:54:05 2025 GMT Subject: CN=68944d8e-91c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:af:e2:60:7c:50:92:e8:cd:e3:72:bb:0b:91: 98:9b:fb:6a:a8:6d:2f:1f:73:82:39:dc:32:b8:cc: 71:99:5a:48:5b:80:19:54:39:e7:74:b6:75:1b:27: 37:3c:6d:12:f7:12:3d:cd:1b:be:16:ac:ce:0f:ff: a9:e5:74:47:a0:6c:d0:d2:f9:67:79:c3:46:5b:aa: c4:1b:a3:70:ce:da:75:7c:96:52:7a:d1:02:95:1a: 7e:8e:ab:da:8e:a6:71:dd:8b:fa:75:3b:30:5f:f7: 71:77:58:e2:eb:9d:56:c0:e5:a7:3f:a5:61:26:3f: 61:59:7c:b6:dd:ed:49:f2:43:29:ca:1a:35:23:f7: 3a:66:1a:21:df:00:ce:f8:e8:c1:eb:f6:45:e5:2c: d4:71:23:b8:d6:dd:c1:a1:43:a0:37:07:1f:f1:67: 05:c3:52:62:a9:9c:37:08:1f:73:9f:23:11:f1:2a: e0:83:a4:fd:88:3b:fd:6a:54:5c:83:6e:47:69:40: f3:23:16:a5:7f:e2:9e:86:23:09:a1:0a:6a:bd:9e: 56:0b:12:84:5a:84:44:26:3c:b1:b3:23:41:6b:7c: e5:25:37:47:d7:ea:ab:42:92:d5:00:26:ad:a5:22: bf:7c:0e:29:7b:95:e1:25:b7:f1:15:06:34:9f:2b: 2d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8E:72:8B:35:C0:B2:B0:9E:F8:B3:7D:C4:5E:12:40:2D:DF:31:32 X509v3 Authority Key Identifier: keyid:61:1E:1C:14:95:28:F1:7A:0E:C7:99:C3:9D:56:26:19:C9:A1:51:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YR4cFJUo8XoOx5nDnVYmGcmhUQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5E072AFE86E011EF9B6B177EC4F9AE02/YR4cFJUo8XoOx5nDnVYmGcmhUQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:49:09:ee:2f:da:3b:aa:45:4d:7a:2a:f1:6b:09:0f:57:d3: 46:f5:b2:fe:25:25:6e:33:74:70:18:51:76:70:1b:7f:d1:b4: 14:7f:aa:80:fe:06:16:cf:13:09:86:7a:04:bd:59:ce:a5:ef: 59:5b:95:96:40:70:31:c8:ba:a3:d1:fe:4e:bc:fa:bf:c9:bc: ca:34:97:a9:f8:d2:10:64:d6:93:6d:d1:a3:9a:17:89:0d:4a: 63:c0:6f:05:46:39:08:bd:90:fb:d6:2d:c7:eb:c2:d2:34:82: 16:16:16:4a:7b:85:55:08:d2:50:9c:6e:f5:69:45:ad:65:94: e2:72:12:5f:cc:b7:a1:8a:78:24:91:4e:3e:4d:d7:34:10:60: db:5a:1e:ca:7a:43:f0:d6:fa:ca:bc:65:34:e8:f3:e3:92:13: bd:2d:64:d6:58:1f:11:9b:37:66:de:6a:67:6c:a3:0f:ef:af: 73:dd:a3:9b:99:6b:ea:1a:8c:de:0d:91:bf:23:21:87:3d:b7: 86:a4:a1:4e:0c:df:94:a9:5f:4c:56:5c:5a:58:d7:aa:5f:0c: 58:56:8d:9a:43:5c:81:ec:f2:b1:ee:1b:b4:94:d0:4e:04:0b: df:f7:df:68:6a:dc:9a:1a:d7:56:7b:3f:e6:e9:86:5c:1f:7f: d5:1a:ac:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDYxMUUxQzE0OTUyOEYxN0EwRUM3OTlDMzlENTYyNjE5 QzlBMTUxMDAwHhcNMjUwODA3MDY1NDA1WhcNMjUwODE0MDY1NDA1WjAYMRYwFAYD VQQDEw02ODk0NGQ4ZS05MWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6/iYHxQkujN43K7C5GYm/tqqG0vH3OCOdwyuMxxmVpIW4AZVDnndLZ1Gyc3 PG0S9xI9zRu+FqzOD/+p5XRHoGzQ0vlnecNGW6rEG6Nwztp1fJZSetEClRp+jqva jqZx3Yv6dTswX/dxd1ji651WwOWnP6VhJj9hWXy23e1J8kMpyho1I/c6Zhoh3wDO +OjB6/ZF5SzUcSO41t3BoUOgNwcf8WcFw1JiqZw3CB9znyMR8Srgg6T9iDv9alRc g25HaUDzIxalf+KehiMJoQpqvZ5WCxKEWoREJjyxsyNBa3zlJTdH1+qrQpLVACat pSK/fA4pe5XhJbfxFQY0nystOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOOcos1 wLKwnvizfcReEkAt3zEyMB8GA1UdIwQYMBaAFGEeHBSVKPF6DseZw51WJhnJoVEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81RTA3MkFGRTg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9ZUjRjRkpVbzhYb094NW5EblZZbUdjbWhV UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSNGNGSlVvOFhvT3g1bkRuVlltR2NtaFVRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81RTA3MkFGRTg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9ZUjRjRkpVbzhY b094NW5EblZZbUdjbWhVUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNSQnuL9o7qkVNeirxawkPV9NG9bL+JSVuM3RwGFF2cBt/0bQUf6qA /gYWzxMJhnoEvVnOpe9ZW5WWQHAxyLqj0f5OvPq/ybzKNJep+NIQZNaTbdGjmheJ DUpjwG8FRjkIvZD71i3H68LSNIIWFhZKe4VVCNJQnG71aUWtZZTichJfzLehingk kU4+Tdc0EGDbWh7KekPw1vrKvGU06PPjkhO9LWTWWB8Rmzdm3mpnbKMP769z3aOb mWvqGozeDZG/IyGHPbeGpKFODN+UqV9MVlxaWNeqXwxYVo2aQ1yB7PKx7hu0lNBO BAvf999oatyaGtdWez/m6YZcH3/VGqwZ -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:36 2025 by rpki-client