$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: 7hGI3XYPi+3UfDvN6YEhxJxbyxBECL55qp5MiVTt3D0= Subject key identifier: 47:5A:CC:29:FD:47:62:CE:99:32:DB:05:CB:7E:A9:72:AA:84:D6:BF Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: CB Signing time: Sat 09 Aug 2025 06:09:44 +0000 Manifest this update: Sat 09 Aug 2025 06:09:43 +0000 Manifest next update: Sat 16 Aug 2025 06:09:43 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 2Mf7LZr/+O7z6uuHY/SqeVntsFu+Zz9ZjaxKgY5B9R4=) 2: A717F73658B911F085B39880C4F9AE02.roa (hash: GRaZt0pedz3CCCklqX2hkq6cs1hiTnf3botIHYa4ZiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Aug 9 06:09:43 2025 GMT Not After : Aug 16 06:09:43 2025 GMT Subject: CN=6896e627-d223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a8:86:5d:e3:7a:c1:d5:ec:76:c6:ad:66:1f: 63:72:ae:88:e0:a5:c5:90:42:83:d1:a8:1c:e4:8a: 6a:ec:03:6a:73:69:04:5f:b7:97:f3:02:98:08:7c: d9:38:80:6a:62:13:0c:e3:d6:ac:78:21:1e:66:bf: 09:bc:ba:90:8c:ba:30:26:6d:52:dc:71:75:3a:d7: 37:45:53:21:a4:7b:9c:cd:19:72:01:3b:d3:67:b6: 9f:c8:a4:dd:84:93:d3:3c:d5:20:85:4b:dd:11:d4: a3:60:4c:8b:e4:86:26:8d:1b:74:58:05:3f:81:47: 6d:9a:6f:e7:80:5b:c6:56:8a:48:d7:6e:48:eb:0f: 08:dc:83:74:56:ca:d3:5b:6c:63:1c:2a:a4:1f:62: 4f:80:ce:06:a3:cd:6f:01:24:ed:0b:59:f1:f1:26: 5d:13:6e:46:8c:41:94:f3:5d:61:65:a4:ca:60:56: c4:25:a1:a3:d3:34:b7:c4:c6:8d:9f:da:cc:53:f0: 14:54:e2:56:30:53:6b:2c:30:ef:27:bb:cf:1f:8a: 6e:95:85:ce:3a:bd:dc:45:52:f1:75:76:75:2a:73: 63:9a:d2:4b:9c:d7:b7:ce:b9:c1:0a:f8:d2:3b:55: ba:22:86:aa:44:30:d7:3f:70:c8:bd:1e:76:fa:56: 09:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5A:CC:29:FD:47:62:CE:99:32:DB:05:CB:7E:A9:72:AA:84:D6:BF X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ad:64:2a:89:22:65:80:b4:cd:1f:9c:79:cb:57:b7:c0:ba: de:58:10:bc:29:fd:22:f7:e9:54:f3:03:f3:fd:45:70:42:df: b3:61:d6:f5:6d:fd:84:51:0a:fa:31:f4:13:4f:55:69:c4:c5: 4b:da:30:24:de:4d:70:8d:ed:1a:ad:00:d3:33:d4:45:1c:af: e0:42:dc:20:8d:9d:82:e4:e1:7b:68:de:f4:be:e2:7d:df:9d: 15:ed:7c:52:45:a8:a3:16:ae:22:d0:96:78:f5:a5:7b:f7:f0: a1:4a:6c:be:e0:a9:16:41:54:89:d9:a1:65:3a:5c:02:74:50: 0a:48:ac:50:75:2a:68:13:ac:b9:d7:92:a9:65:0d:3f:c2:4c: 35:1f:86:51:32:06:b3:8b:13:2d:b7:91:f9:59:45:14:13:53: 6a:ac:90:cd:71:b2:f5:cb:19:65:90:cd:56:e4:61:6b:0c:5e: cf:00:4d:31:4a:e0:f8:61:72:25:e6:6a:c2:12:19:d5:ea:46: b8:e8:0a:44:ee:56:49:9c:51:dc:17:d6:95:a1:b8:c8:01:1f: 32:42:3e:a1:14:62:59:18:38:5c:5d:82:ff:0c:b0:43:d5:87: c2:f3:b2:50:a1:57:e6:2a:74:67:b7:40:ab:07:f4:4a:d5:3f: 65:28:de:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwODA5MDYwOTQzWhcNMjUwODE2MDYwOTQzWjAYMRYwFAYD VQQDEw02ODk2ZTYyNy1kMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6iGXeN6wdXsdsatZh9jcq6I4KXFkEKD0agc5Ipq7ANqc2kEX7eX8wKYCHzZ OIBqYhMM49aseCEeZr8JvLqQjLowJm1S3HF1Otc3RVMhpHuczRlyATvTZ7afyKTd hJPTPNUghUvdEdSjYEyL5IYmjRt0WAU/gUdtmm/ngFvGVopI125I6w8I3IN0VsrT W2xjHCqkH2JPgM4Go81vASTtC1nx8SZdE25GjEGU811hZaTKYFbEJaGj0zS3xMaN n9rMU/AUVOJWMFNrLDDvJ7vPH4pulYXOOr3cRVLxdXZ1KnNjmtJLnNe3zrnBCvjS O1W6IoaqRDDXP3DIvR52+lYJKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdazCn9 R2LOmTLbBct+qXKqhNa/MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcrWQqiSJlgLTNH5x5y1e3wLreWBC8Kf0i9+lU8wPz/UVwQt+zYdb1 bf2EUQr6MfQTT1VpxMVL2jAk3k1wje0arQDTM9RFHK/gQtwgjZ2C5OF7aN70vuJ9 350V7XxSRaijFq4i0JZ49aV79/ChSmy+4KkWQVSJ2aFlOlwCdFAKSKxQdSpoE6y5 15KpZQ0/wkw1H4ZRMgazixMtt5H5WUUUE1NqrJDNcbL1yxllkM1W5GFrDF7PAE0x SuD4YXIl5mrCEhnV6ka46ApE7lZJnFHcF9aVobjIAR8yQj6hFGJZGDhcXYL/DLBD 1YfC87JQoVfmKnRnt0CrB/RK1T9lKN7E -----END CERTIFICATE-----Generated at Sat Aug 9 23:10:51 2025 by rpki-client