$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: wVOO6wgHrObYYMpUtLHtz4tMYVN1nekScSbrvIvdruw= Subject key identifier: 47:A4:A2:8F:BD:A4:28:03:2C:8D:65:FD:16:9E:04:F6:86:EB:6C:22 Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 01F0 Signing time: Sat 09 Aug 2025 02:52:58 +0000 Manifest this update: Sat 09 Aug 2025 02:52:58 +0000 Manifest next update: Sat 16 Aug 2025 02:52:58 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: s8h0NZ6jK+xgeoZ89GS8h5nQOnYDYuAlBxOBi50nKLI=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Aug 9 02:52:58 2025 GMT Not After : Aug 16 02:52:58 2025 GMT Subject: CN=6896b80a-24c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ce:87:54:4a:5e:fd:e8:3a:94:8b:e1:ba:de: e1:a0:f5:0a:8c:68:af:1d:7d:96:f8:7d:02:c5:04: 1e:06:c8:2e:80:c5:ae:cd:d7:50:95:e6:fd:dc:52: c9:0d:75:3a:3e:39:69:f9:75:71:ff:fe:9e:e0:b8: fc:54:a0:ae:5e:a3:16:8b:3c:cc:b1:21:30:29:4d: 09:12:75:a0:3c:03:7c:c1:65:5d:26:b5:da:ea:34: e3:d5:75:44:de:1b:f6:aa:62:4d:64:08:ef:af:2b: b4:6e:89:e9:c3:89:33:f9:31:75:6c:73:e8:01:15: 53:43:eb:c8:25:0b:5b:22:a3:c7:92:70:6a:9d:b6: 71:41:85:a9:9b:93:24:cb:aa:14:2f:c7:76:71:38: c5:b5:b0:46:a2:a0:f5:0e:a5:cc:46:10:e3:b6:14: d1:b3:a0:c5:8b:c1:58:4e:6d:7f:12:07:15:b1:33: 04:f1:c3:a2:a3:4f:1c:73:2e:63:15:1e:18:20:c6: 64:5f:f2:2d:96:fa:e6:b5:9d:aa:e1:18:b6:76:93: 10:05:4e:2a:25:92:b2:cc:b7:7a:17:b2:34:83:e4: 02:bd:05:3c:74:15:d3:c9:15:90:0d:f8:f8:ee:f7: 9d:3d:e5:ae:b2:26:69:64:9d:9b:8c:23:99:61:ff: ff:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A4:A2:8F:BD:A4:28:03:2C:8D:65:FD:16:9E:04:F6:86:EB:6C:22 X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:86:02:62:d7:19:81:d3:db:0f:d8:01:d8:54:a3:4d:f2:56: 09:c1:ad:af:cf:69:43:77:f9:8c:a8:cb:03:19:ca:51:5d:92: d7:c2:2b:d0:23:ca:39:b7:5d:3e:92:eb:ee:b1:55:76:e6:1e: 79:1c:08:ea:dc:d4:27:e0:7c:2e:e8:37:14:da:f8:45:0e:11: 1b:0b:a3:96:11:18:a6:e4:28:0d:f0:af:99:39:9a:46:48:af: 53:41:64:a4:0a:0e:c2:c5:ea:d7:1e:2e:ea:13:13:18:3b:3c: f1:63:61:e1:de:36:b1:b5:b6:4e:cb:b2:1d:71:bc:8f:66:36: 51:7b:36:a6:76:df:6d:e9:e5:a3:c5:d2:18:b5:67:45:b3:c7: 47:37:d4:dc:40:48:37:7d:fa:eb:f7:3d:e0:8c:5b:cd:e1:6b: 1f:1e:c1:35:7b:02:29:62:26:34:3a:01:0c:4b:0a:0f:bb:7f: 69:b6:15:93:53:c8:c4:aa:a1:b8:44:3d:bf:41:2b:c3:2f:10: 70:b1:63:ce:c3:74:88:f1:fe:c7:79:34:0c:a5:76:b8:d2:3f: 8f:e3:f7:5e:01:79:7d:c6:2e:71:9e:86:38:5a:bf:f5:27:8c: 10:33:c3:a1:f8:44:35:41:6a:bd:9e:55:c0:3f:c1:cc:36:bb: a4:5e:0f:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUwODA5MDI1MjU4WhcNMjUwODE2MDI1MjU4WjAYMRYwFAYD VQQDEw02ODk2YjgwYS0yNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApc6HVEpe/eg6lIvhut7hoPUKjGivHX2W+H0CxQQeBsgugMWuzddQleb93FLJ DXU6Pjlp+XVx//6e4Lj8VKCuXqMWizzMsSEwKU0JEnWgPAN8wWVdJrXa6jTj1XVE 3hv2qmJNZAjvryu0bonpw4kz+TF1bHPoARVTQ+vIJQtbIqPHknBqnbZxQYWpm5Mk y6oUL8d2cTjFtbBGoqD1DqXMRhDjthTRs6DFi8FYTm1/EgcVsTME8cOio08ccy5j FR4YIMZkX/ItlvrmtZ2q4Ri2dpMQBU4qJZKyzLd6F7I0g+QCvQU8dBXTyRWQDfj4 7vedPeWusiZpZJ2bjCOZYf//bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEekoo+9 pCgDLI1l/RaeBPaG62wiMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOhgJi1xmB09sP2AHYVKNN8lYJwa2vz2lDd/mMqMsDGcpRXZLXwivQ I8o5t10+kuvusVV25h55HAjq3NQn4Hwu6DcU2vhFDhEbC6OWERim5CgN8K+ZOZpG SK9TQWSkCg7CxerXHi7qExMYOzzxY2Hh3jaxtbZOy7IdcbyPZjZRezamdt9t6eWj xdIYtWdFs8dHN9TcQEg3ffrr9z3gjFvN4WsfHsE1ewIpYiY0OgEMSwoPu39pthWT U8jEqqG4RD2/QSvDLxBwsWPOw3SI8f7HeTQMpXa40j+P4/deAXl9xi5xnoY4Wr/1 J4wQM8Oh+EQ1QWq9nlXAP8HMNrukXg/7 -----END CERTIFICATE-----Generated at Sat Aug 9 23:10:56 2025 by rpki-client