$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: 3XHegAMv7LGsPDJpasG/PmuEKjaU2AlkyIvWo1H9U8Y= Subject key identifier: B7:C6:95:9A:ED:C0:AF:CC:65:F0:56:35:0F:3A:C6:E4:26:CC:91:61 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A30 Signing time: Fri 08 Aug 2025 20:03:48 +0000 Manifest this update: Fri 08 Aug 2025 20:03:47 +0000 Manifest next update: Fri 15 Aug 2025 20:03:47 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: V8QnpqZUIAK8Q9aC740YZVV4k2uyKwxFU/kFHG2qVw4=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: J08fSBQhOSJHGBUH4shmEQXwYqWcb08yob4lFysSojI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2621 (0xa3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Aug 8 20:03:47 2025 GMT Not After : Aug 15 20:03:47 2025 GMT Subject: CN=68965824-281b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:eb:b1:e6:37:a4:b8:87:3b:da:85:f7:45:bb: c7:83:e2:aa:92:fa:21:c0:47:2a:39:02:8a:d1:ff: 13:0f:fb:70:e6:63:02:ed:06:5a:d9:8e:57:a9:03: 1d:18:07:3a:ed:c7:e0:9b:e7:71:d3:a6:21:c9:37: 3c:d9:58:da:50:0f:35:17:c2:bf:d5:28:ce:db:5d: 3d:ab:58:81:47:ce:9f:36:f0:72:59:0d:9e:de:fb: 90:88:f0:36:4e:f5:6f:88:8e:98:82:71:85:62:ac: 77:ca:69:73:2d:59:54:d1:c7:e6:04:81:a7:14:b3: a3:af:3c:91:47:fb:83:02:de:8a:d0:34:a2:0d:c8: 42:74:e5:25:83:63:0c:f0:86:4f:21:ff:46:79:7d: 4c:02:d9:56:94:b3:38:72:aa:f7:a9:78:85:af:ef: 62:49:b6:11:34:08:75:0a:ef:a1:c1:09:63:9c:e2: 0a:53:3f:5e:26:9e:57:28:ba:96:76:a4:b2:cc:13: e6:16:78:58:43:cd:5b:e6:24:20:c5:e9:4e:b0:1b: c6:ac:e0:90:b3:9f:d9:bb:dd:96:60:78:dd:d4:64: 39:99:a3:03:ed:58:68:9e:1f:21:7b:b0:db:58:77: ea:3b:05:c2:a7:5f:55:5f:d7:37:c7:68:ff:d3:9f: ea:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C6:95:9A:ED:C0:AF:CC:65:F0:56:35:0F:3A:C6:E4:26:CC:91:61 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ba:57:45:f9:db:d1:16:74:6b:39:b2:99:9e:7f:30:40:ff: ff:ad:46:b7:7c:5d:ff:63:f6:3e:2e:1d:77:81:c5:14:e3:36: c9:7b:19:43:44:1e:b8:0f:e6:75:22:9e:a8:89:6a:48:9e:af: 9a:2e:3f:ad:ca:eb:8d:5a:32:bd:a0:d6:85:84:0e:28:1f:2a: e1:14:6e:33:0b:7a:1f:76:c7:cd:ee:7d:de:40:00:1f:69:d2: 32:40:67:2a:30:85:e8:b1:52:5a:88:43:89:fd:31:be:f5:51: 44:eb:34:9d:df:93:5a:0a:88:15:3e:24:6f:90:f9:6b:81:16: 42:f9:9c:b2:de:9f:1a:ef:74:31:28:0e:2b:da:0d:16:f2:d9: e8:88:4e:2c:31:65:68:e0:76:84:c3:a6:77:c6:87:97:fa:1e: d7:db:3d:40:64:c0:05:a0:53:f3:37:48:9c:b6:df:c6:6d:e8: 93:1b:16:71:d5:d9:e7:b6:ce:fa:7c:21:8e:fe:31:1d:37:e8: 7d:d7:de:3b:32:82:bc:39:c9:2c:3a:fe:3c:aa:ed:12:fa:dc: b9:c3:60:bb:79:84:4d:da:17:75:a5:1a:42:3e:b1:0c:96:3c: 54:da:18:07:49:5b:b8:78:76:d0:68:cd:f5:32:47:d4:fb:0b: d4:14:5f:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUwODA4MjAwMzQ3WhcNMjUwODE1MjAwMzQ3WjAYMRYwFAYD VQQDEw02ODk2NTgyNC0yODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuux5jekuIc72oX3RbvHg+KqkvohwEcqOQKK0f8TD/tw5mMC7QZa2Y5XqQMd GAc67cfgm+dx06YhyTc82VjaUA81F8K/1SjO2109q1iBR86fNvByWQ2e3vuQiPA2 TvVviI6YgnGFYqx3ymlzLVlU0cfmBIGnFLOjrzyRR/uDAt6K0DSiDchCdOUlg2MM 8IZPIf9GeX1MAtlWlLM4cqr3qXiFr+9iSbYRNAh1Cu+hwQljnOIKUz9eJp5XKLqW dqSyzBPmFnhYQ81b5iQgxelOsBvGrOCQs5/Zu92WYHjd1GQ5maMD7Vhonh8he7Db WHfqOwXCp19VX9c3x2j/05/qhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfGlZrt wK/MZfBWNQ86xuQmzJFhMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuuldF+dvRFnRrObKZnn8wQP//rUa3fF3/Y/Y+Lh13gcUU4zbJexlD RB64D+Z1Ip6oiWpInq+aLj+tyuuNWjK9oNaFhA4oHyrhFG4zC3ofdsfN7n3eQAAf adIyQGcqMIXosVJaiEOJ/TG+9VFE6zSd35NaCogVPiRvkPlrgRZC+Zyy3p8a73Qx KA4r2g0W8tnoiE4sMWVo4HaEw6Z3xoeX+h7X2z1AZMAFoFPzN0ictt/GbeiTGxZx 1dnnts76fCGO/jEdN+h91947MoK8OcksOv48qu0S+ty5w2C7eYRN2hd1pRpCPrEM ljxU2hgHSVu4eHbQaM31MkfU+wvUFF9I -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:10 2025 by rpki-client