$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: SX+0+uxQvBLD/PKkhRUsFdDidXjTz8lflkeDgEtUvkI= Subject key identifier: 04:01:65:BF:D3:AD:F2:81:7B:14:DA:2B:95:9B:55:ED:7D:43:C0:39 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0161 Signing time: Tue 05 Aug 2025 04:28:10 +0000 Manifest this update: Tue 05 Aug 2025 04:28:10 +0000 Manifest next update: Tue 12 Aug 2025 04:28:10 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: 8WUGfHyFXzKM4eBotSNl1RoimRNMcApsMmVaVV9h9xE=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Aug 5 04:28:10 2025 GMT Not After : Aug 12 04:28:10 2025 GMT Subject: CN=6891885a-8432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:11:7e:ca:9e:ae:ec:94:f4:0e:32:34:7e:97: 14:d5:c3:84:44:17:db:0f:43:fb:d0:8b:63:b0:1f: 03:39:37:bb:6c:ba:9c:c9:2c:da:d7:9f:80:b2:0c: 98:f1:7a:21:36:2f:0e:19:cf:77:5e:6c:9c:66:85: 5d:51:5e:cb:0a:49:01:51:93:c2:3f:6e:d1:6a:dd: 5d:fc:a5:09:4f:87:c9:55:71:b1:9d:d7:7a:53:c6: ab:76:2c:39:eb:e1:53:31:29:c3:38:11:b7:91:45: 1b:81:b4:4d:06:7e:f2:73:25:3e:17:8f:53:4b:4f: 83:48:bb:b3:d2:e0:00:86:c4:c2:77:62:b5:c8:48: 7d:fa:fc:4d:bb:85:c8:1e:0f:17:ea:f6:98:be:b1: 1e:5e:6f:f1:64:16:50:1b:56:7c:4f:d4:2c:d0:c9: 28:44:08:a7:76:be:3c:54:b8:9e:25:a0:e0:26:7b: e8:0a:47:8a:f6:fa:2e:0f:20:50:5b:0e:0d:f3:de: 29:9c:83:88:0f:45:c9:ac:65:e1:de:3e:57:be:da: ad:f7:c7:75:8d:89:8c:f0:c8:23:18:2b:66:61:e2: 7e:0f:c3:7f:6c:31:4c:81:8d:98:c7:78:29:30:80: ee:6c:77:c2:f9:e8:2a:33:36:07:f0:1b:75:fc:a8: 34:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:01:65:BF:D3:AD:F2:81:7B:14:DA:2B:95:9B:55:ED:7D:43:C0:39 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:4d:b2:74:bb:56:d1:5b:b2:1f:db:d5:3c:9f:22:b4:36:2b: 0a:c3:94:26:6d:d8:6f:e2:23:d0:36:ae:51:55:a7:ae:73:4e: e9:3e:b4:28:12:0d:7b:59:71:0d:90:0d:76:ee:4f:d6:25:62: 1d:84:c6:ba:fe:a1:92:d7:50:48:ca:43:4c:9a:60:9b:81:a3: 88:92:eb:e8:dc:f2:1c:71:45:2b:31:f6:a4:16:68:ee:c2:ad: ff:c0:32:7b:21:85:76:0c:0f:b3:65:d6:04:16:fc:36:db:e1: 33:3e:60:f4:e4:0f:50:9f:b5:26:60:9d:49:3e:e2:7a:8e:d9: 55:63:0a:db:04:a8:bf:ae:df:b1:d9:c7:c3:1a:5d:de:18:52: 18:8e:fe:f5:17:f1:49:66:6d:6a:c2:6a:cf:d3:78:81:4b:57: 04:60:19:7a:47:98:44:58:fa:fd:2b:1f:68:66:49:c2:76:23: 69:3e:b3:bc:9f:d5:0f:b7:0f:74:d5:71:c9:6b:e0:d7:ec:f9: 50:77:b1:9b:f6:38:a8:27:18:fa:c1:3f:9d:63:e5:41:79:10: f4:00:38:12:61:91:16:ac:0d:bd:b2:58:8a:ed:8c:1e:88:d0: 0c:57:ba:16:89:c8:dd:89:ac:33:34:30:87:ec:ca:9f:89:a8: 7d:f9:6d:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwODA1MDQyODEwWhcNMjUwODEyMDQyODEwWjAYMRYwFAYD VQQDEw02ODkxODg1YS04NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xF+yp6u7JT0DjI0fpcU1cOERBfbD0P70ItjsB8DOTe7bLqcySza15+AsgyY 8XohNi8OGc93XmycZoVdUV7LCkkBUZPCP27Rat1d/KUJT4fJVXGxndd6U8ardiw5 6+FTMSnDOBG3kUUbgbRNBn7ycyU+F49TS0+DSLuz0uAAhsTCd2K1yEh9+vxNu4XI Hg8X6vaYvrEeXm/xZBZQG1Z8T9Qs0MkoRAindr48VLieJaDgJnvoCkeK9vouDyBQ Ww4N894pnIOID0XJrGXh3j5Xvtqt98d1jYmM8MgjGCtmYeJ+D8N/bDFMgY2Yx3gp MIDubHfC+egqMzYH8Bt1/Kg06wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQBZb/T rfKBexTaK5WbVe19Q8A5MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqTbJ0u1bRW7If29U8nyK0NisKw5Qmbdhv4iPQNq5RVaeuc07pPrQo Eg17WXENkA127k/WJWIdhMa6/qGS11BIykNMmmCbgaOIkuvo3PIccUUrMfakFmju wq3/wDJ7IYV2DA+zZdYEFvw22+EzPmD05A9Qn7UmYJ1JPuJ6jtlVYwrbBKi/rt+x 2cfDGl3eGFIYjv71F/FJZm1qwmrP03iBS1cEYBl6R5hEWPr9Kx9oZknCdiNpPrO8 n9UPtw901XHJa+DX7PlQd7Gb9jioJxj6wT+dY+VBeRD0ADgSYZEWrA29sliK7Ywe iNAMV7oWicjdiawzNDCH7Mqfiah9+W2Z -----END CERTIFICATE-----Generated at Wed Aug 6 13:22:57 2025 by rpki-client