$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: FPTpPXKcmQC2Y3+EuUIiLTmnXt2BpJPTl/VgbHZQtH4= Subject key identifier: FE:72:A7:BD:F9:F3:F5:7B:46:35:21:36:AC:0F:84:C0:3B:FE:0D:6E Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02AB Signing time: Sat 09 Aug 2025 02:05:21 +0000 Manifest this update: Sat 09 Aug 2025 02:05:20 +0000 Manifest next update: Sat 16 Aug 2025 02:05:20 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: m5aGtZd1eRKufpMne8mvljC4ng01RQ8sb+gRnPTJ9O4=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Aug 9 02:05:20 2025 GMT Not After : Aug 16 02:05:20 2025 GMT Subject: CN=6896ace0-b0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:43:24:09:a6:63:99:05:fd:9e:b3:e7:11:d0: e6:e4:b4:93:54:64:bc:0e:1e:7d:97:9b:1d:ee:8e: e8:fe:f9:ae:19:64:4d:97:55:0c:5d:4e:9b:0c:ba: d8:c9:45:f3:16:fe:68:e0:3a:77:b9:2f:2b:94:4f: 97:51:fb:46:a4:48:c5:23:45:90:8e:c1:82:3b:9a: a7:9c:3c:41:ef:4a:47:07:0a:c9:fc:66:bd:d0:1a: 66:12:9c:12:06:9d:93:14:42:66:0d:a5:f9:d3:e9: 20:44:db:5b:8b:9a:e7:54:27:50:93:54:dd:d5:58: 08:ee:36:7a:e1:c8:e3:56:c4:6d:97:0a:c0:ef:d6: 9c:d3:03:65:11:96:67:7b:43:a5:2a:58:bd:42:79: 60:2a:67:27:ec:4f:24:22:c0:9b:61:ab:44:0e:6c: bb:8f:d9:c3:c2:44:4d:20:76:6b:c2:3a:9f:ca:4f: 32:78:7b:24:84:7f:52:2d:e3:17:29:7c:13:f0:f2: 67:66:23:e4:c3:26:8b:b9:bb:e3:6e:4d:d5:35:e2: c2:be:a0:5c:2c:46:a4:9e:93:83:bc:cf:4d:e2:ec: 13:8b:31:d1:29:f3:4a:5c:88:89:a9:20:c9:cb:f5: fa:32:5f:8d:3e:a0:f5:48:d2:c4:a8:50:d3:07:e9: fc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:72:A7:BD:F9:F3:F5:7B:46:35:21:36:AC:0F:84:C0:3B:FE:0D:6E X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:05:73:45:28:35:da:ff:d8:bf:62:a2:a3:ba:1d:63:36:c9: c6:3e:a9:7d:9a:81:50:a8:2c:a5:dd:14:33:a9:59:c6:44:6c: 07:1a:5c:e8:17:b4:7d:e8:c4:aa:ea:cc:ae:9c:60:57:9a:e3: eb:15:0a:6b:44:f5:67:a3:d8:fe:7b:98:b3:57:c9:7f:80:f2: 20:45:e6:7f:90:f2:c4:bf:d9:31:9a:17:73:57:3d:83:15:bb: 55:3c:b3:42:5a:8c:a5:f7:2b:bd:81:f0:ad:0b:fd:9c:43:59: 49:be:fb:15:41:be:b2:68:2c:1c:f9:45:f3:eb:e6:10:88:59: bd:11:08:4e:0c:af:e9:91:85:34:6d:f9:a2:0c:8a:6f:36:94: 0e:e4:5c:f8:6d:ea:17:f6:3f:c7:6c:69:6b:1c:cf:0a:86:cc: d5:7b:6b:08:b6:61:b9:92:c6:ca:f9:c7:a0:9c:de:73:27:b2: f4:be:56:84:1d:87:f9:88:5d:40:fc:30:1e:eb:f7:4b:c9:d0: 42:6d:15:a5:c6:77:62:1f:fb:5d:28:79:61:7b:4d:92:b2:a7: 04:88:a9:92:75:b0:0e:99:82:be:67:bf:f6:8b:0c:c8:52:4c: 43:b6:5a:db:09:84:82:c3:31:98:4a:a5:7d:9c:ba:ab:6a:13: 64:87:88:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwODA5MDIwNTIwWhcNMjUwODE2MDIwNTIwWjAYMRYwFAYD VQQDEw02ODk2YWNlMC1iMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUMkCaZjmQX9nrPnEdDm5LSTVGS8Dh59l5sd7o7o/vmuGWRNl1UMXU6bDLrY yUXzFv5o4Dp3uS8rlE+XUftGpEjFI0WQjsGCO5qnnDxB70pHBwrJ/Ga90BpmEpwS Bp2TFEJmDaX50+kgRNtbi5rnVCdQk1Td1VgI7jZ64cjjVsRtlwrA79ac0wNlEZZn e0OlKli9QnlgKmcn7E8kIsCbYatEDmy7j9nDwkRNIHZrwjqfyk8yeHskhH9SLeMX KXwT8PJnZiPkwyaLubvjbk3VNeLCvqBcLEaknpODvM9N4uwTizHRKfNKXIiJqSDJ y/X6Ml+NPqD1SNLEqFDTB+n8swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5yp735 8/V7RjUhNqwPhMA7/g1uMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5BXNFKDXa/9i/YqKjuh1jNsnGPql9moFQqCyl3RQzqVnGRGwHGlzo F7R96MSq6syunGBXmuPrFQprRPVno9j+e5izV8l/gPIgReZ/kPLEv9kxmhdzVz2D FbtVPLNCWoyl9yu9gfCtC/2cQ1lJvvsVQb6yaCwc+UXz6+YQiFm9EQhODK/pkYU0 bfmiDIpvNpQO5Fz4beoX9j/HbGlrHM8KhszVe2sItmG5ksbK+cegnN5zJ7L0vlaE HYf5iF1A/DAe6/dLydBCbRWlxndiH/tdKHlhe02SsqcEiKmSdbAOmYK+Z7/2iwzI UkxDtlrbCYSCwzGYSqV9nLqrahNkh4iV -----END CERTIFICATE-----Generated at Sat Aug 9 05:40:57 2025 by rpki-client