$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: RNKM5R5R4OrqzZYS/wE0CPwUTjwHoWaiq+lvKNOeMBA= Subject key identifier: 45:5E:88:DB:A9:4F:BE:2E:50:9C:6C:F6:18:9B:7C:8A:77:49:F1:D8 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 6A Signing time: Tue 05 Aug 2025 07:42:54 +0000 Manifest this update: Tue 05 Aug 2025 07:42:54 +0000 Manifest next update: Tue 12 Aug 2025 07:42:54 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: X/bIcgrrflKFgKzsYI3JjhBuejOLR3XFGJDTaDmCwXY=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Aug 5 07:42:54 2025 GMT Not After : Aug 12 07:42:54 2025 GMT Subject: CN=6891b5fe-04a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:29:50:d5:54:31:62:6f:4a:5b:b3:b5:43:c9: b2:da:bf:56:7e:20:d3:09:b9:e8:39:68:cf:be:49: ca:64:ce:b4:5d:8e:3a:99:37:77:0e:f5:0f:a0:cb: bf:02:ef:ed:43:6c:12:0a:d9:df:28:a7:07:aa:94: bf:dd:e8:4d:dc:6b:32:48:3e:24:4f:d3:b9:33:63: fc:9b:aa:09:75:5a:e4:7c:94:3c:d7:cd:3f:54:8b: c9:0e:28:12:77:7b:c3:11:11:c3:19:bf:c9:9c:31: 6b:56:87:56:3d:fe:2a:e3:b4:6c:69:d7:71:5e:b7: 9f:fc:c2:0a:54:fe:95:84:6b:ca:24:d1:ab:37:b3: a2:51:5c:35:97:78:a5:bc:06:e1:d1:b8:00:cd:66: d5:a5:a8:36:bc:ac:f4:6b:05:56:74:23:dd:6c:1d: 15:ca:50:39:f3:81:32:7f:b1:e2:d7:6e:ac:f4:e7: 41:6c:ae:a7:75:29:78:8b:1d:77:dd:67:f5:90:63: cb:69:f8:27:76:96:a1:94:16:49:cb:17:48:d3:07: 7c:a2:54:fe:22:90:e0:ef:a4:bd:dd:46:1b:ff:f5: 8e:19:11:0b:d6:06:90:2f:99:af:db:f7:1b:78:07: 04:f0:e3:5d:ac:ca:c8:e5:72:72:6e:b6:76:42:af: 4b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:5E:88:DB:A9:4F:BE:2E:50:9C:6C:F6:18:9B:7C:8A:77:49:F1:D8 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:91:25:52:66:45:99:e7:ad:73:07:3e:e6:86:9a:9c:8f:4c: 17:d3:56:e2:62:e7:93:42:fe:42:66:ba:a1:44:db:b3:93:be: 24:84:d5:e6:ba:e2:8c:f8:3b:54:23:01:6c:33:41:4b:22:5f: e7:fe:e4:a0:55:5e:59:85:e0:d9:ec:ae:58:7c:93:f5:c2:f7: 70:b4:16:fd:1a:5d:d4:1e:ab:1b:1c:03:3b:79:fd:a9:88:fe: b8:48:0f:c2:cd:59:84:bd:9d:06:73:b7:30:48:39:78:6e:0d: 5d:8a:f8:fb:c7:b4:52:68:a7:66:84:2c:9c:79:00:07:63:8e: 7e:62:42:fc:52:81:75:d1:17:4c:e4:24:84:be:a4:11:c1:28: f1:37:c6:1f:45:bd:9e:68:e6:39:e0:68:d2:2d:13:9a:55:36: ca:c3:3d:46:ed:2e:94:29:b8:9c:7e:a9:aa:7c:d4:24:74:a0: df:49:7e:d6:de:ca:2c:4d:90:0a:b4:ce:27:9b:eb:0e:68:d9: 0a:52:9e:bf:6b:66:29:43:2e:27:59:05:5a:4c:23:52:ca:96: fa:3c:96:01:03:00:49:8a:ba:e1:3b:68:b5:e1:fb:26:61:b2: bc:f6:82:b5:61:20:f7:7c:bc:a5:02:08:53:76:87:47:89:d0: b4:da:5f:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA4MDUwNzQyNTRaFw0yNTA4MTIwNzQyNTRaMBgxFjAUBgNV BAMTDTY4OTFiNWZlLTA0YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7KVDVVDFib0pbs7VDybLav1Z+INMJueg5aM++ScpkzrRdjjqZN3cO9Q+gy78C 7+1DbBIK2d8opweqlL/d6E3cazJIPiRP07kzY/ybqgl1WuR8lDzXzT9Ui8kOKBJ3 e8MREcMZv8mcMWtWh1Y9/irjtGxp13Fet5/8wgpU/pWEa8ok0as3s6JRXDWXeKW8 BuHRuADNZtWlqDa8rPRrBVZ0I91sHRXKUDnzgTJ/seLXbqz050Fsrqd1KXiLHXfd Z/WQY8tp+Cd2lqGUFknLF0jTB3yiVP4ikODvpL3dRhv/9Y4ZEQvWBpAvma/b9xt4 BwTw412sysjlcnJutnZCr0uFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURV6I26lP vi5QnGz2GJt8indJ8dgwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOiRJVJmRZnnrXMHPuaGmpyPTBfTVuJi55NC/kJmuqFE27OTviSE1ea6 4oz4O1QjAWwzQUsiX+f+5KBVXlmF4Nnsrlh8k/XC93C0Fv0aXdQeqxscAzt5/amI /rhID8LNWYS9nQZztzBIOXhuDV2K+PvHtFJop2aELJx5AAdjjn5iQvxSgXXRF0zk JIS+pBHBKPE3xh9FvZ5o5jngaNItE5pVNsrDPUbtLpQpuJx+qap81CR0oN9Jftbe yixNkAq0zieb6w5o2QpSnr9rZilDLidZBVpMI1LKlvo8lgEDAEmKuuE7aLXh+yZh srz2grVhIPd8vKUCCFN2h0eJ0LTaXzU= -----END CERTIFICATE-----Generated at Wed Aug 6 14:16:20 2025 by rpki-client