$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft File: yZBd5SSGuexO-HmgJkRccLD9lQU.mft (raw, json) Hash identifier: SLkxlE31jaN44JsezCrZKKiFls6ecUd1TPtWOQJwY5w= Subject key identifier: C4:7B:0C:03:53:ED:D8:D5:39:80:2C:98:31:F0:51:83:E3:AC:D4:9A Authority key identifier: C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 Certificate issuer: /CN=A91E0C5F/serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft Manifest number: 1669 Signing time: Sun 10 Aug 2025 17:33:05 +0000 Manifest this update: Sun 10 Aug 2025 17:33:05 +0000 Manifest next update: Sun 17 Aug 2025 17:33:05 +0000 Files and hashes: 1: yZBd5SSGuexO-HmgJkRccLD9lQU.crl (hash: gE+9vbd6nA6l33wVY70Y0VXS8Yr958R6J0x2o9NjNAQ=) 2: 039F32B465C411EBA408403CC4F9AE02.roa (hash: xyf+NgV/qzZzzx4oyqEQT3Z/16fLP6Y40HqsQl4nZiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C5F, serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Validity Not Before: Aug 10 17:33:05 2025 GMT Not After : Aug 17 17:33:05 2025 GMT Subject: CN=6898d7d1-7f64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:1f:e2:7e:60:df:6f:ce:cf:85:3f:25:e3: e0:10:39:09:cb:f9:4a:0d:66:0a:42:ec:86:c6:a6: 4c:c8:de:6d:dc:d8:06:1c:8a:28:84:51:bd:6d:e9: 98:a5:b0:39:0b:0b:42:21:2e:fe:89:86:e4:7a:93: ad:2f:60:9b:ca:ba:42:c0:ff:a7:a5:b5:b7:df:70: 3d:19:16:06:e5:ff:fb:6e:df:df:8c:72:9f:fe:38: 68:7a:fe:8e:c8:1b:37:23:25:43:d7:f0:78:97:f0: b6:db:52:f8:75:99:7a:83:9d:7a:53:59:71:1e:48: 71:1a:e5:bd:67:8e:74:56:53:50:81:c8:dd:22:d8: a6:64:b2:44:f7:21:c0:33:33:9a:e7:39:a1:ab:33: 74:71:b4:4e:e5:50:70:05:f8:6b:86:05:86:16:80: 6c:e1:de:21:52:64:d9:aa:6a:fb:f1:05:7d:c1:ee: fd:3a:0e:9d:89:57:d2:43:6d:8a:46:d7:4a:26:0c: 08:e7:04:ea:79:b9:54:ce:51:94:09:ee:b1:22:e9: bb:2f:40:67:9d:c3:d6:d6:7d:cc:44:2b:0c:a0:ec: cd:0a:d9:59:ca:c4:57:45:87:dc:ab:6c:e1:ba:96: 6e:01:62:92:52:a6:05:6d:0f:96:4f:7e:e2:fe:17: 41:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7B:0C:03:53:ED:D8:D5:39:80:2C:98:31:F0:51:83:E3:AC:D4:9A X509v3 Authority Key Identifier: keyid:C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:22:cf:bb:34:e3:f0:1b:d1:ce:08:4a:de:a7:3c:34:9f:64: ed:ad:d9:4c:33:cf:dd:fb:80:94:f7:85:00:09:8d:54:11:ad: 2b:39:37:e1:02:09:73:2f:57:75:2a:19:56:b3:53:44:ea:cb: 42:c7:70:9f:9e:bc:d7:bb:f4:7d:ff:a0:d8:52:75:c6:63:b0: 27:f3:70:60:ba:e9:e7:26:df:9e:6a:57:15:72:9e:cb:b2:f0: 16:77:03:e8:0d:58:c7:c6:81:e0:83:e2:de:d4:00:e6:49:aa: 77:1f:45:5b:75:16:67:7d:e2:a6:07:a5:72:a6:66:ce:02:6f: 6b:1a:06:5a:e2:91:cd:5f:1e:ca:18:ed:05:3d:ac:e9:3a:59: e6:c5:6c:66:64:fb:fd:d9:f1:9f:b4:f5:7f:df:9c:c7:d5:31: c1:84:f3:ef:ec:cd:e6:b6:3c:de:c8:ae:af:29:bf:b6:ad:5e: b2:d7:01:64:89:93:89:1a:a0:38:eb:fb:00:f6:27:be:33:dc: 4f:16:94:29:ba:6b:ef:c1:99:b0:1e:b7:ad:c5:a6:88:5c:73: 49:a0:f4:41:7a:a1:58:d4:37:d9:25:2b:12:9f:59:9e:e8:fd: 7d:3d:f3:3a:ba:76:56:d8:93:bf:fd:45:c7:1b:4d:31:a4:e8: 6d:c5:a0:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDNUYxMTAvBgNVBAUTKEM5OTA1REU1MjQ4NkI5RUM0RUY4NzlBMDI2NDQ1Qzcw QjBGRDk1MDUwHhcNMjUwODEwMTczMzA1WhcNMjUwODE3MTczMzA1WjAYMRYwFAYD VQQDEw02ODk4ZDdkMS03ZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3Mf4n5g32/Oz4U/JePgEDkJy/lKDWYKQuyGxqZMyN5t3NgGHIoohFG9bemY pbA5CwtCIS7+iYbkepOtL2CbyrpCwP+npbW333A9GRYG5f/7bt/fjHKf/jhoev6O yBs3IyVD1/B4l/C221L4dZl6g516U1lxHkhxGuW9Z450VlNQgcjdItimZLJE9yHA MzOa5zmhqzN0cbRO5VBwBfhrhgWGFoBs4d4hUmTZqmr78QV9we79Og6diVfSQ22K RtdKJgwI5wTqeblUzlGUCe6xIum7L0BnncPW1n3MRCsMoOzNCtlZysRXRYfcq2zh upZuAWKSUqYFbQ+WT37i/hdBbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMR7DANT 7djVOYAsmDHwUYPjrNSaMB8GA1UdIwQYMBaAFMmQXeUkhrnsTvh5oCZEXHCw/ZUF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEM1Ri84QjU0N0E3MjY2 NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3VleE8tSG1nSmtSY2NMRDls UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laQmQ1U1NHdWV4Ty1IbWdKa1JjY0xEOWxRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEM1Ri84QjU0N0E3MjY2NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3Vl eE8tSG1nSmtSY2NMRDlsUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYIs+7NOPwG9HOCErepzw0n2TtrdlMM8/d+4CU94UACY1UEa0rOTfh AglzL1d1KhlWs1NE6stCx3CfnrzXu/R9/6DYUnXGY7An83BguunnJt+ealcVcp7L svAWdwPoDVjHxoHgg+Le1ADmSap3H0VbdRZnfeKmB6VypmbOAm9rGgZa4pHNXx7K GO0FPazpOlnmxWxmZPv92fGftPV/35zH1THBhPPv7M3mtjzeyK6vKb+2rV6y1wFk iZOJGqA46/sA9ie+M9xPFpQpumvvwZmwHretxaaIXHNJoPRBeqFY1DfZJSsSn1me 6P19PfM6unZW2JO//UXHG00xpOhtxaD8 -----END CERTIFICATE-----Generated at Sun Aug 10 21:16:09 2025 by rpki-client