$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft File: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft (raw, json) Hash identifier: TdbFMzSmCbQ8dC5qpC7zQsQ6OBXy7EIXhXBiXPdq9zM= Subject key identifier: 24:57:CE:21:D4:99:BB:28:28:B0:30:C5:0B:DD:53:52:A0:59:DC:60 Authority key identifier: CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A Certificate issuer: /CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft Manifest number: C6 Signing time: Mon 11 Aug 2025 05:59:28 +0000 Manifest this update: Mon 11 Aug 2025 05:59:27 +0000 Manifest next update: Mon 18 Aug 2025 05:59:27 +0000 Files and hashes: 1: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl (hash: 1Oyj2ZZA8KjpDIaZLXbJCB1S1IYmNfIdtuO5pa1bToE=) 2: C155660E492B11EF8EF0D04FC4F9AE02.roa (hash: p1Kd4l2BGto3TUE6P+Iwqb8Y4agcHwTbtFw10TWcSis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Validity Not Before: Aug 11 05:59:27 2025 GMT Not After : Aug 18 05:59:27 2025 GMT Subject: CN=689986bf-f57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d0:02:d9:8b:29:e4:83:c4:11:01:fd:e6:9a: b6:3a:ba:d4:b2:b4:26:d2:96:d1:28:30:06:5d:08: 1a:cd:cc:d0:0f:89:51:c1:61:57:25:9c:eb:65:31: 5d:db:10:00:56:ed:b1:06:51:e2:d4:5f:e1:74:93: 9d:ee:ed:a1:6f:a9:bb:16:17:78:6e:03:bf:40:1e: ec:e0:e8:0a:88:5e:dd:42:af:25:54:e8:64:2a:ef: d1:d5:9a:51:4c:78:21:34:a7:a9:b8:ad:55:41:6f: af:a9:63:ab:4d:b8:12:77:08:e9:7f:fb:ea:ae:dd: ba:f8:50:ac:e5:2f:05:63:11:af:23:10:34:a7:6f: 74:52:86:88:1b:05:73:4d:19:48:ca:ed:89:86:5a: 51:96:02:6f:af:30:b5:5d:0b:0c:67:8c:b0:51:fa: 18:3b:ec:54:29:47:3a:8f:dd:9a:7b:e5:af:42:2e: 73:e4:c5:b2:d3:b2:f4:03:c7:05:b5:13:09:e1:7c: 30:6a:97:28:b2:bf:fa:2f:8f:6d:b6:6e:3f:df:20: c4:b1:4f:1f:ec:31:a1:40:b6:82:c5:c9:57:5f:96: 23:87:ee:e0:06:1f:b1:5e:d5:8e:2a:3b:10:a9:7a: fd:e2:62:ff:a8:65:0c:b4:a6:97:97:69:f7:f1:4c: 9c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:57:CE:21:D4:99:BB:28:28:B0:30:C5:0B:DD:53:52:A0:59:DC:60 X509v3 Authority Key Identifier: keyid:CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:bd:ee:8e:64:04:98:49:2f:6a:eb:48:7b:c9:16:65:14:b8: 52:ae:49:1d:58:71:53:8e:e6:4e:b5:74:2b:92:31:b5:06:52: 04:f7:8d:4c:94:ab:86:79:5a:62:46:f6:9d:09:6f:af:89:8d: 4f:8d:a3:89:21:40:6b:06:e8:99:37:33:6b:23:4d:85:a1:d9: 2f:99:60:d5:b4:e6:0f:a1:8a:e0:bf:3c:e6:d7:32:de:97:6a: 1f:b3:cb:c7:3d:ee:38:ef:86:26:a0:a4:ea:0e:82:4e:c0:31: 1f:81:3f:4c:85:19:b6:7a:d6:34:9f:88:6d:64:1a:06:8f:40: d4:87:a3:bf:10:cb:a7:dc:b8:cb:a7:7f:59:7c:bd:77:d9:8d: bc:e4:1c:ea:3a:ba:c2:30:cf:04:47:bc:b7:47:92:b0:ed:a6: 95:08:94:2d:8d:72:63:0a:bc:3d:cb:a6:11:fe:3a:7a:dd:0a: 2b:bd:d3:9f:e9:91:cd:a6:8b:31:96:f5:6a:d4:22:32:9d:6e: 07:4a:1c:9c:dc:5a:44:2f:0e:51:69:bc:87:77:f2:e6:1d:6f: 36:f7:91:f4:6d:46:2b:e8:be:a5:8c:1a:38:d6:e5:ca:d0:e8: 30:99:a1:71:bc:f3:7f:04:01:04:7c:08:c7:6f:a0:39:a2:ce: 91:34:b7:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKENCQkJCQjI0QjIyQjQzNUQxQ0E0OTNBOUQ2M0RDQTc3 OUJFMDc5NkEwHhcNMjUwODExMDU1OTI3WhcNMjUwODE4MDU1OTI3WjAYMRYwFAYD VQQDEw02ODk5ODZiZi1mNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NAC2Ysp5IPEEQH95pq2OrrUsrQm0pbRKDAGXQgazczQD4lRwWFXJZzrZTFd 2xAAVu2xBlHi1F/hdJOd7u2hb6m7Fhd4bgO/QB7s4OgKiF7dQq8lVOhkKu/R1ZpR THghNKepuK1VQW+vqWOrTbgSdwjpf/vqrt26+FCs5S8FYxGvIxA0p290UoaIGwVz TRlIyu2JhlpRlgJvrzC1XQsMZ4ywUfoYO+xUKUc6j92ae+WvQi5z5MWy07L0A8cF tRMJ4Xwwapcosr/6L49ttm4/3yDEsU8f7DGhQLaCxclXX5Yjh+7gBh+xXtWOKjsQ qXr94mL/qGUMtKaXl2n38UycDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRXziHU mbsoKLAwxQvdU1KgWdxgMB8GA1UdIwQYMBaAFMu7uySyK0NdHKSTqdY9yneb4Hlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS81MzhDMTk2MDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclExMGNwSk9wMWozS2Q1dmdl V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3dTdKTElyUTEwY3BKT3AxajNLZDV2Z2VXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS81MzhDMTk2MDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclEx MGNwSk9wMWozS2Q1dmdlV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOve6OZASYSS9q60h7yRZlFLhSrkkdWHFTjuZOtXQrkjG1BlIE941M lKuGeVpiRvadCW+viY1PjaOJIUBrBuiZNzNrI02FodkvmWDVtOYPoYrgvzzm1zLe l2ofs8vHPe4474YmoKTqDoJOwDEfgT9MhRm2etY0n4htZBoGj0DUh6O/EMun3LjL p39ZfL132Y285BzqOrrCMM8ER7y3R5Kw7aaVCJQtjXJjCrw9y6YR/jp63QorvdOf 6ZHNposxlvVq1CIynW4HShyc3FpELw5RabyHd/LmHW8295H0bUYr6L6ljBo41uXK 0OgwmaFxvPN/BAEEfAjHb6A5os6RNLff -----END CERTIFICATE-----Generated at Wed Aug 13 02:51:37 2025 by rpki-client