$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: 6F35z7yCRltbbnAwngTKZmFOKSOZyiMWWP35adX39U8= Subject key identifier: 07:C6:84:BE:18:DF:E3:00:3F:FE:2E:75:BD:68:67:7D:EA:1F:B7:8F Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F3E Signing time: Sun 10 Aug 2025 17:36:40 +0000 Manifest this update: Sun 10 Aug 2025 17:36:40 +0000 Manifest next update: Sun 17 Aug 2025 17:36:40 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: nmpPBsiWQdnVzPD/SQMjkr6hz0Eu5nzXAHimC0O//ts=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3911 (0xf47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Aug 10 17:36:40 2025 GMT Not After : Aug 17 17:36:40 2025 GMT Subject: CN=6898d8a8-14fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:8b:a7:3f:b3:03:56:20:aa:bf:d9:8c:5e: d9:b8:c1:84:bb:cb:d1:fd:f8:42:d6:66:2c:bf:6f: d0:76:87:44:be:82:c1:56:12:19:01:68:43:41:70: 83:a1:dc:cc:5f:d7:d0:48:fa:bb:54:ca:05:ba:9c: 55:25:97:c9:78:4a:22:46:cd:91:ac:24:dd:52:e7: 73:ae:b1:94:a5:4b:e2:a0:4f:56:e3:8c:52:8d:a6: f3:dc:87:af:fb:84:25:31:96:df:a3:71:41:05:b0: 8a:e5:35:4c:cc:d6:8b:6e:88:ec:d7:3d:25:9a:0c: 40:44:16:14:de:01:df:85:52:73:df:fc:2f:0f:de: 60:af:1b:3c:17:f8:ad:00:b4:f0:a6:03:cb:ac:fa: 67:f9:2a:1e:fb:8d:2c:d9:4e:f8:30:55:1f:9d:6e: 9b:7b:01:e9:71:d2:99:5b:20:40:64:78:c3:13:e1: 06:1a:3f:7e:74:5f:c2:c7:9e:47:90:83:66:92:6f: 64:4a:cb:e1:c9:6a:75:55:9a:45:e2:36:40:87:b0: 70:85:dd:e7:e6:a8:04:4f:54:f8:8f:ba:65:ab:a8: 86:f4:14:fb:23:51:c8:52:e2:87:03:82:73:6f:68: f9:d7:93:7d:cb:a7:36:31:c1:ff:8b:d9:12:60:29: 16:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C6:84:BE:18:DF:E3:00:3F:FE:2E:75:BD:68:67:7D:EA:1F:B7:8F X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:07:35:0d:27:ee:94:38:7b:8d:25:3d:f9:53:d2:ec:02:56: bb:28:3a:24:85:aa:38:fd:c9:b7:19:9d:0f:e4:6e:e1:cd:d4: 24:4c:8e:65:93:6f:4e:38:eb:23:02:91:e7:cc:d0:1d:c1:e1: a3:6e:a0:24:10:5a:8b:df:fc:cb:cb:ff:10:24:0f:c4:96:ac: 2f:e8:f9:9e:9d:29:08:80:72:7a:4a:8b:f1:4c:31:57:0b:15: c7:65:47:29:ad:3b:25:bf:22:4d:0d:96:63:f7:8a:44:d2:c9: 69:9e:6b:35:62:59:c0:5d:19:5d:1c:bd:80:19:41:56:23:07: 99:f6:54:90:0f:0b:5b:44:71:b2:06:98:72:0e:0d:d0:21:f0: 84:3a:f9:9c:d1:24:d0:b0:0b:ce:4d:aa:16:09:3d:74:70:ad: 75:11:11:58:cb:61:7e:3a:58:61:6e:7a:91:b6:1f:c1:db:1c: 5a:7b:ea:80:9a:b6:20:35:78:76:a9:eb:a1:a4:f6:94:a4:7a: 4d:ff:83:92:6f:7d:a0:20:a8:92:b2:f3:18:1b:0a:e2:dc:32: 28:9d:f3:ed:e1:86:bd:a2:1f:cf:b4:94:3b:87:13:ff:f2:a5: 6c:49:30:79:45:84:a0:20:b1:ba:db:87:31:75:2b:37:45:7f: 70:79:9b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUwODEwMTczNjQwWhcNMjUwODE3MTczNjQwWjAYMRYwFAYD VQQDEw02ODk4ZDhhOC0xNGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstSLpz+zA1Ygqr/ZjF7ZuMGEu8vR/fhC1mYsv2/QdodEvoLBVhIZAWhDQXCD odzMX9fQSPq7VMoFupxVJZfJeEoiRs2RrCTdUudzrrGUpUvioE9W44xSjabz3Iev +4QlMZbfo3FBBbCK5TVMzNaLbojs1z0lmgxARBYU3gHfhVJz3/wvD95grxs8F/it ALTwpgPLrPpn+Soe+40s2U74MFUfnW6bewHpcdKZWyBAZHjDE+EGGj9+dF/Cx55H kINmkm9kSsvhyWp1VZpF4jZAh7Bwhd3n5qgET1T4j7plq6iG9BT7I1HIUuKHA4Jz b2j515N9y6c2McH/i9kSYCkWdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfGhL4Y 3+MAP/4udb1oZ33qH7ePMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcBzUNJ+6UOHuNJT35U9LsAla7KDokhao4/cm3GZ0P5G7hzdQkTI5l k29OOOsjApHnzNAdweGjbqAkEFqL3/zLy/8QJA/Elqwv6PmenSkIgHJ6SovxTDFX CxXHZUcprTslvyJNDZZj94pE0slpnms1YlnAXRldHL2AGUFWIweZ9lSQDwtbRHGy BphyDg3QIfCEOvmc0STQsAvOTaoWCT10cK11ERFYy2F+OlhhbnqRth/B2xxae+qA mrYgNXh2qeuhpPaUpHpN/4OSb32gIKiSsvMYGwri3DIonfPt4Ya9oh/PtJQ7hxP/ 8qVsSTB5RYSgILG624cxdSs3RX9weZvL -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:37 2025 by rpki-client