$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: C0foC6ACrNZ+d57QlWj8lo4DXBd9Z7e4lqOzHlrJGSQ= Subject key identifier: DE:C9:59:D5:BB:55:C9:51:4A:1C:2B:AC:BB:49:3A:0B:BE:00:A8:78 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 0156 Signing time: Sat 09 Aug 2025 04:32:28 +0000 Manifest this update: Sat 09 Aug 2025 04:32:28 +0000 Manifest next update: Sat 16 Aug 2025 04:32:28 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: CiCqWNQdYKQRqUEILfiogpwXY6ADDsWidBSBRtq79u4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Aug 9 04:32:28 2025 GMT Not After : Aug 16 04:32:28 2025 GMT Subject: CN=6896cf5c-066f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ea:35:02:fb:89:9c:2c:23:81:cd:74:7f:14: f8:b9:c7:6a:34:98:44:88:89:75:a1:c7:35:d7:14: b4:17:bb:ca:35:f9:0d:bd:d3:88:d3:48:ff:d2:d7: f1:7e:e2:cd:2b:cc:9e:83:6a:7f:28:7a:5e:94:85: 9e:c8:ca:c8:7f:b2:22:0c:a5:05:62:ac:f6:5d:e3: 92:ec:c1:65:f9:4f:66:a3:2b:da:46:7a:94:66:f5: 8c:a7:89:36:c8:c2:f3:22:9a:00:78:a7:4e:fe:3c: 7a:3e:c0:1f:b7:66:04:ce:4d:64:06:5b:a3:07:d8: d8:16:47:ee:19:99:f9:cc:03:e1:8e:ca:ed:3f:74: ef:56:25:ad:10:f8:cc:03:e4:55:f7:57:23:f5:1e: 50:6d:1d:c5:b3:7d:6b:34:8c:5c:ea:b5:34:4d:60: 73:00:b2:e5:72:fa:f5:1b:82:18:2a:28:49:9d:9a: 81:7c:66:0f:6f:8f:13:ff:c1:4e:36:04:1a:4e:d5: 82:13:d3:18:58:ab:f1:9f:b9:d6:f5:a6:b8:95:b7: 84:8b:34:62:6e:9f:9a:c9:8f:ff:37:ec:f8:17:75: 58:9e:af:a4:50:cb:51:bd:01:6d:ea:34:e2:03:3a: bc:17:76:2d:be:fb:e7:19:43:ac:4b:79:39:aa:4b: a2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C9:59:D5:BB:55:C9:51:4A:1C:2B:AC:BB:49:3A:0B:BE:00:A8:78 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:40:f3:af:65:26:65:b2:d5:fd:78:94:6a:24:c5:35:d3:7d: 92:61:f7:b1:b9:0a:46:4f:ce:e7:6d:29:4e:93:9d:d0:d2:16: 29:16:43:6d:5a:e5:35:69:79:8e:90:20:cf:9c:2a:f9:91:57: b0:76:72:6b:c5:f4:3d:76:18:9d:a6:84:32:74:09:5c:8f:01: 87:b9:e5:f4:6b:41:7f:a7:6a:02:d7:d3:00:10:b3:ff:04:22: d0:cb:c8:72:a4:8d:04:88:28:3e:a4:15:87:49:22:5a:6e:ed: 30:35:98:64:da:d8:59:54:97:93:ea:82:0e:b4:43:a4:ee:62: be:df:fb:c8:35:54:df:97:91:08:23:61:21:32:39:cc:aa:49: 3e:5f:53:d8:90:37:cd:6a:9f:c0:65:76:5a:7d:01:76:5d:b4: 3d:d1:25:fb:b6:bd:2d:d3:68:3d:3c:e9:29:e3:d4:f1:3c:55: 16:27:a9:c4:f3:cd:1a:d7:89:ec:59:5e:bb:cd:ff:ee:51:82: a3:c6:99:d2:bf:a0:b0:da:71:80:7c:d5:ca:22:fb:c6:e8:79: 47:f5:e8:69:c7:45:19:a2:01:89:b2:a1:15:9e:12:16:09:3a: 95:f4:73:77:1c:31:d8:3d:bb:8e:5d:12:11:e6:bb:40:ef:c9: df:aa:f1:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUwODA5MDQzMjI4WhcNMjUwODE2MDQzMjI4WjAYMRYwFAYD VQQDEw02ODk2Y2Y1Yy0wNjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuo1AvuJnCwjgc10fxT4ucdqNJhEiIl1occ11xS0F7vKNfkNvdOI00j/0tfx fuLNK8yeg2p/KHpelIWeyMrIf7IiDKUFYqz2XeOS7MFl+U9moyvaRnqUZvWMp4k2 yMLzIpoAeKdO/jx6PsAft2YEzk1kBlujB9jYFkfuGZn5zAPhjsrtP3TvViWtEPjM A+RV91cj9R5QbR3Fs31rNIxc6rU0TWBzALLlcvr1G4IYKihJnZqBfGYPb48T/8FO NgQaTtWCE9MYWKvxn7nW9aa4lbeEizRibp+ayY//N+z4F3VYnq+kUMtRvQFt6jTi Azq8F3YtvvvnGUOsS3k5qkuixQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7JWdW7 VclRShwrrLtJOgu+AKh4MB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJQPOvZSZlstX9eJRqJMU1032SYfexuQpGT87nbSlOk53Q0hYpFkNt WuU1aXmOkCDPnCr5kVewdnJrxfQ9dhidpoQydAlcjwGHueX0a0F/p2oC19MAELP/ BCLQy8hypI0EiCg+pBWHSSJabu0wNZhk2thZVJeT6oIOtEOk7mK+3/vINVTfl5EI I2EhMjnMqkk+X1PYkDfNap/AZXZafQF2XbQ90SX7tr0t02g9POkp49TxPFUWJ6nE 880a14nsWV67zf/uUYKjxpnSv6Cw2nGAfNXKIvvG6HlH9ehpx0UZogGJsqEVnhIW CTqV9HN3HDHYPbuOXRIR5rtA78nfqvEX -----END CERTIFICATE-----Generated at Mon Aug 11 04:16:06 2025 by rpki-client