$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft File: YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft (raw, json) Hash identifier: WzalN10fj3phdwMT/G6hPh25yCcMJAKUJEZ9IQmXvgg= Subject key identifier: 25:A4:4A:40:C4:EA:4A:2A:3C:F8:54:47:D0:CD:6C:64:2F:64:75:BE Authority key identifier: 60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 Certificate issuer: /CN=A91DF55D/serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Certificate serial: 05C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft Manifest number: 05BA Signing time: Mon 04 Aug 2025 23:32:12 +0000 Manifest this update: Mon 04 Aug 2025 23:32:12 +0000 Manifest next update: Mon 11 Aug 2025 23:32:12 +0000 Files and hashes: 1: YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl (hash: mTMUpdKDiVFfEUJOtWm44I/FIh44Ua2uwZhbE0dRjag=) 2: 8504C794D12411EBAD06CD48C4F9AE02.roa (hash: zqhHb4EuNxIhj0MsDdGRZBLgZ5b4JdLttiLWNXtELcI=) 3: 84706C70D12411EBAD06CD48C4F9AE02.roa (hash: +VQvv+uWVXkQstiOmhvQpZ3+r0zEs8UArQ0Y/mZ6P60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1477 (0x5c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF55D, serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Validity Not Before: Aug 4 23:32:12 2025 GMT Not After : Aug 11 23:32:12 2025 GMT Subject: CN=689142fc-f76c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b1:18:45:23:f5:61:1e:d8:99:bc:a5:aa:e4: ab:cd:3f:3e:67:7c:be:e1:8c:c6:37:d5:8f:84:05: 6b:96:c8:4f:89:4a:2d:ed:90:2d:d0:80:bd:a1:70: 0c:ab:04:b6:67:a7:a4:1f:95:8f:29:93:a6:a7:80: c6:1d:68:21:a2:96:6f:34:ed:45:6d:af:bb:68:ae: e8:db:6a:1c:77:5b:40:94:96:d3:b4:2e:01:d6:c8: c0:06:9f:ef:62:01:ef:ed:d2:f9:21:0b:30:42:a8: 6a:1a:40:38:cd:fc:98:28:c3:bc:a3:8f:fc:e8:60: 46:58:e2:c7:1b:39:fa:ab:f1:db:08:12:b3:2b:21: cf:10:16:5d:e0:60:1a:68:f2:ec:a9:c0:b9:af:77: 55:50:39:d1:90:8e:80:20:b1:9b:1a:69:d3:13:45: c3:3c:a6:b1:15:0f:90:ff:a4:6f:80:07:dc:8d:a4: 40:16:1e:e5:bd:66:70:0e:8e:a0:89:a5:79:14:0f: 74:c7:a8:43:c9:af:36:ae:31:f0:5e:1a:85:fd:3a: 1f:d1:c4:45:04:f5:c7:2b:2c:69:58:76:94:25:ee: 26:89:4f:60:2b:1d:b6:1d:b1:35:4d:eb:76:cf:d0: 8a:65:13:f2:94:95:7d:45:85:84:85:6d:94:49:6f: 9e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A4:4A:40:C4:EA:4A:2A:3C:F8:54:47:D0:CD:6C:64:2F:64:75:BE X509v3 Authority Key Identifier: keyid:60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:33:ed:a8:28:ed:64:8f:67:62:2d:95:b6:8b:54:37:d2:b7: 33:80:93:dc:78:d7:f7:61:7f:4c:ee:4a:d4:ad:f6:b1:02:17: 8c:94:bd:34:94:52:a8:e7:c0:c4:85:23:fc:22:9a:d9:d0:96: a9:92:00:43:bf:48:5e:e5:8c:07:93:fb:6d:87:6a:20:1c:a4: ce:0d:af:ca:19:f6:15:09:cf:be:cb:f8:0d:9e:5a:1f:51:bc: 8b:1b:47:5c:d6:98:6d:44:6a:b3:d3:b7:4e:51:08:5a:47:8b: f3:f7:69:da:79:b1:30:4d:b7:a5:12:63:d2:d4:b7:30:bc:67: 7e:fc:de:8b:40:5c:1f:8b:a2:d9:40:b1:8b:8d:0e:dd:18:c9: 57:65:12:fb:e7:cd:ad:b2:e7:9f:bb:91:59:47:48:db:ba:cb: 34:ba:d5:a0:dc:61:eb:6f:c9:be:8b:35:2a:9f:a1:03:d2:d6: d9:0e:9f:81:c2:fe:67:18:69:43:a7:15:13:75:02:d9:57:f5: ed:22:bb:a8:2d:f7:42:c5:6c:2b:64:40:90:31:69:ee:a6:73: 3f:3b:43:f1:3c:56:83:12:13:eb:92:6e:e7:6b:07:3b:b0:99: a4:9a:42:40:a4:d3:ff:84:f5:00:91:8c:fd:ba:e3:2f:bc:b6: f5:99:23:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY1NUQxMTAvBgNVBAUTKDYwREMzNzVEQUFDQzk3ODFCQjcwMkUwMzg4MkEzMjVG RUJCRkU5QjQwHhcNMjUwODA0MjMzMjEyWhcNMjUwODExMjMzMjEyWjAYMRYwFAYD VQQDEw02ODkxNDJmYy1mNzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bEYRSP1YR7YmbylquSrzT8+Z3y+4YzGN9WPhAVrlshPiUot7ZAt0IC9oXAM qwS2Z6ekH5WPKZOmp4DGHWghopZvNO1Fba+7aK7o22ocd1tAlJbTtC4B1sjABp/v YgHv7dL5IQswQqhqGkA4zfyYKMO8o4/86GBGWOLHGzn6q/HbCBKzKyHPEBZd4GAa aPLsqcC5r3dVUDnRkI6AILGbGmnTE0XDPKaxFQ+Q/6RvgAfcjaRAFh7lvWZwDo6g iaV5FA90x6hDya82rjHwXhqF/Tof0cRFBPXHKyxpWHaUJe4miU9gKx22HbE1Tet2 z9CKZRPylJV9RYWEhW2USW+e5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWkSkDE 6koqPPhUR9DNbGQvZHW+MB8GA1UdIwQYMBaAFGDcN12qzJeBu3AuA4gqMl/rv+m0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjU1RC9FN0E3N0JFRUQx MUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0RzdjQzREaUNveVgtdV82 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOdzNYYXJNbDRHN2NDNERpQ295WC11XzZiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjU1RC9FN0E3N0JFRUQxMUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0 RzdjQzREaUNveVgtdV82YlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHM+2oKO1kj2diLZW2i1Q30rczgJPceNf3YX9M7krUrfaxAheMlL00 lFKo58DEhSP8IprZ0JapkgBDv0he5YwHk/tth2ogHKTODa/KGfYVCc++y/gNnlof UbyLG0dc1phtRGqz07dOUQhaR4vz92naebEwTbelEmPS1LcwvGd+/N6LQFwfi6LZ QLGLjQ7dGMlXZRL7582tsuefu5FZR0jbuss0utWg3GHrb8m+izUqn6ED0tbZDp+B wv5nGGlDpxUTdQLZV/XtIruoLfdCxWwrZECQMWnupnM/O0PxPFaDEhPrkm7nawc7 sJmkmkJApNP/hPUAkYz9uuMvvLb1mSOt -----END CERTIFICATE-----Generated at Wed Aug 6 14:09:48 2025 by rpki-client