$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: /LCm3Cjml71ByZ1f1ifpJRQcJauWENTKE75klbKqPZM= Subject key identifier: 24:49:7E:CC:A1:11:1C:39:CF:F4:69:3E:6E:29:C3:2F:54:ED:56:A5 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07B4 Signing time: Tue 12 Aug 2025 21:35:06 +0000 Manifest this update: Tue 12 Aug 2025 21:35:06 +0000 Manifest next update: Tue 19 Aug 2025 21:35:06 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: IeWfGurmK5gh3jKera/4BIKmQNunJm5Dqg5xfiHB6RY=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1979 (0x7bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Aug 12 21:35:06 2025 GMT Not After : Aug 19 21:35:06 2025 GMT Subject: CN=689bb38a-a9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:17:d3:7e:12:b8:68:8f:42:2b:a7:f1:f5:05: 01:29:b8:38:4d:f6:a6:1e:93:3d:49:4b:9f:d2:6c: c8:b7:9c:cf:ea:85:97:56:82:bc:1e:fa:65:b7:90: 2c:b0:cd:92:80:15:d8:87:52:f0:bb:94:53:45:1a: d9:f6:71:b2:b2:4b:bb:cf:33:78:ac:f5:00:88:b4: 65:ce:12:07:90:ab:ca:64:a0:22:c1:ac:7e:29:e2: bb:24:7b:73:a6:b4:62:59:21:a7:74:bc:da:60:5c: 35:42:d0:30:9f:b0:d8:0e:74:de:11:a2:d2:bb:3e: 6a:ff:0b:be:29:7b:5e:74:4c:27:99:a5:84:0e:6a: f8:bb:de:81:bc:82:d7:ef:1b:ff:4b:1d:2b:4c:62: 1d:04:f7:b5:4e:69:9b:7b:48:fb:27:1e:9f:59:ae: ff:02:07:c9:0f:04:97:4e:5e:f7:df:ab:53:23:27: 2b:4f:c8:8f:65:42:f0:53:2f:eb:c5:ba:bb:c7:2b: 09:18:80:e6:9b:f0:03:dc:66:9c:e7:43:e6:88:96: 25:e2:01:4d:0e:92:f2:d0:cf:2c:7d:70:e0:98:91: 65:0d:68:cd:5a:66:f0:df:5d:c7:2f:75:29:ac:2c: cc:f1:ce:68:23:72:89:c1:da:cf:c8:d8:60:b3:6d: a4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:49:7E:CC:A1:11:1C:39:CF:F4:69:3E:6E:29:C3:2F:54:ED:56:A5 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:08:0a:52:e8:de:73:a3:8a:48:d5:59:7e:42:1b:f8:cb:6e: 9f:0e:3e:84:bc:5b:95:e2:e4:7a:0f:d4:1d:03:b0:9b:37:50: 43:4c:11:76:f5:25:9c:f5:66:2a:a2:4f:67:bf:4a:22:f7:7e: 51:a8:34:0b:d5:9c:08:cb:01:30:33:84:7c:e5:1d:69:c6:20: 91:a8:d4:42:61:47:97:eb:1d:c0:62:30:f8:74:77:03:4b:28: b3:7a:bf:c5:1e:9e:66:86:95:db:b8:d9:d9:03:20:f0:4b:2c: 32:32:fd:db:95:28:ba:0b:9a:0d:ce:ce:6a:ab:39:59:62:a6: a6:51:6a:b0:7f:a1:a8:a4:41:c2:31:31:0b:1f:31:41:22:01: ee:55:ee:e1:94:3d:b6:e8:f6:d4:24:37:af:b2:a1:bd:eb:e7: 0f:cd:73:bc:47:fb:37:3f:94:61:bc:10:7f:81:2b:3a:f2:fc: f4:02:fb:99:58:52:61:61:ea:fe:49:a2:53:1c:86:f5:6d:34: 48:b3:78:c6:90:72:b3:1e:0f:12:c6:a7:95:83:ba:12:cb:01: 37:db:c1:60:ab:56:71:57:b6:bd:fc:5f:d9:97:33:ee:fc:2a: 7c:25:ff:a1:88:cd:23:3d:64:8f:56:e0:06:0f:0f:0d:c2:cb: 6a:a3:97:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUwODEyMjEzNTA2WhcNMjUwODE5MjEzNTA2WjAYMRYwFAYD VQQDEw02ODliYjM4YS1hOWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBfTfhK4aI9CK6fx9QUBKbg4TfamHpM9SUuf0mzIt5zP6oWXVoK8Hvplt5As sM2SgBXYh1Lwu5RTRRrZ9nGysku7zzN4rPUAiLRlzhIHkKvKZKAiwax+KeK7JHtz prRiWSGndLzaYFw1QtAwn7DYDnTeEaLSuz5q/wu+KXtedEwnmaWEDmr4u96BvILX 7xv/Sx0rTGIdBPe1Tmmbe0j7Jx6fWa7/AgfJDwSXTl7336tTIycrT8iPZULwUy/r xbq7xysJGIDmm/AD3Gac50PmiJYl4gFNDpLy0M8sfXDgmJFlDWjNWmbw313HL3Up rCzM8c5oI3KJwdrPyNhgs22k7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRJfsyh ERw5z/RpPm4pwy9U7ValMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDCApS6N5zo4pI1Vl+Qhv4y26fDj6EvFuV4uR6D9QdA7CbN1BDTBF2 9SWc9WYqok9nv0oi935RqDQL1ZwIywEwM4R85R1pxiCRqNRCYUeX6x3AYjD4dHcD Syizer/FHp5mhpXbuNnZAyDwSywyMv3blSi6C5oNzs5qqzlZYqamUWqwf6GopEHC MTELHzFBIgHuVe7hlD226PbUJDevsqG96+cPzXO8R/s3P5RhvBB/gSs68vz0AvuZ WFJhYer+SaJTHIb1bTRIs3jGkHKzHg8SxqeVg7oSywE328Fgq1ZxV7a9/F/ZlzPu /Cp8Jf+hiM0jPWSPVuAGDw8Nwstqo5cW -----END CERTIFICATE-----Generated at Wed Aug 13 04:25:47 2025 by rpki-client