$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: ZPSJjdT00dlqT0ynun834SXD/aQF4/X6MP1V2v8t34w= Subject key identifier: F8:77:19:A8:56:E9:2C:39:35:7D:67:0A:22:FA:31:D2:C7:28:EB:A7 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05D1 Signing time: Fri 08 Aug 2025 23:34:52 +0000 Manifest this update: Fri 08 Aug 2025 23:34:52 +0000 Manifest next update: Fri 15 Aug 2025 23:34:52 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: bJUmF86n2B6wly2xH7IPmc0mu36x162MVAso5fjk0IU=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Aug 8 23:34:52 2025 GMT Not After : Aug 15 23:34:52 2025 GMT Subject: CN=6896899c-393f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:72:da:57:25:fe:9e:56:36:fc:90:0e:e2:a5: 43:e8:59:f7:fd:a4:d3:c3:f7:62:86:47:1b:6f:89: 22:80:10:35:ae:c9:9a:bc:aa:40:c2:97:32:e2:d0: f5:51:2a:13:4d:81:d4:71:ab:1c:c5:6f:03:ee:8d: a6:8f:32:36:fe:0e:f3:59:11:7c:60:cf:00:7d:e1: 9c:1e:f2:cf:48:5a:b7:b2:2e:5e:b6:4f:0f:3a:04: 8f:4d:66:a6:59:b4:e7:26:17:bb:55:c5:62:cf:9f: 94:ed:c7:7a:7c:05:66:a6:53:e9:5f:22:cc:4e:d1: 7e:45:63:a4:90:ca:93:21:1b:f1:e9:34:d1:10:5e: bf:d3:c7:d4:c0:8e:b8:cb:1a:d9:fb:b9:7d:70:aa: 93:84:a1:35:16:b1:54:64:8b:2c:e8:be:06:e9:45: 44:28:5c:f1:1c:1a:dd:3b:ca:cc:62:97:1b:5e:98: 6d:65:75:d4:10:49:eb:ba:04:7d:0a:9c:36:6a:1a: 95:2a:06:a5:94:5f:17:ac:90:80:af:c6:ca:9f:97: b0:2e:7d:b5:2e:3b:1c:78:65:9a:19:39:40:58:70: 0e:e7:b1:dc:79:20:d9:b8:02:ed:4c:2f:38:9f:69: 57:fb:08:41:63:31:9e:c2:9b:ff:92:02:94:f5:d7: cb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:77:19:A8:56:E9:2C:39:35:7D:67:0A:22:FA:31:D2:C7:28:EB:A7 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:3d:fc:00:82:42:26:1e:58:d2:02:65:93:63:73:26:df:2c: 35:5c:74:02:bd:01:0e:49:db:75:8d:73:09:94:47:0b:b5:6f: 3b:e9:b2:eb:bc:1d:ed:26:68:7c:af:03:5b:3b:81:01:ff:4d: cc:f1:84:6e:53:be:67:a7:37:dc:74:c0:a2:22:51:59:87:dc: 53:d1:7e:15:f7:52:8a:ff:40:f4:74:1c:0a:48:0f:19:98:b6: 64:72:7f:df:a4:3d:dd:94:75:b8:db:f1:1a:04:c1:ba:30:eb: ff:e2:ce:50:48:08:bd:04:79:03:ed:5a:e0:c3:b4:da:b7:a5: ac:69:c2:9a:10:2b:64:15:6a:f3:92:c5:14:a1:fd:c5:9e:c6: c6:bb:8b:55:f8:34:41:b8:53:6e:5d:b5:b5:b1:08:a6:f6:5e: f3:e7:e2:75:f4:82:0b:ab:0e:4b:dd:0d:19:c5:50:26:31:f9: 7f:9f:77:45:99:10:ba:08:bd:02:94:6b:90:a5:28:1f:6d:75: 19:e5:01:27:bc:58:0a:27:a4:ed:8c:74:df:7b:03:7b:69:b8: 39:29:de:76:c4:72:de:07:cf:64:64:6a:3f:94:e1:d8:bb:b1: f1:0b:b8:81:1f:94:19:40:2c:c9:a2:89:c8:80:03:56:86:d4: b7:15:56:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwODA4MjMzNDUyWhcNMjUwODE1MjMzNDUyWjAYMRYwFAYD VQQDEw02ODk2ODk5Yy0zOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3LaVyX+nlY2/JAO4qVD6Fn3/aTTw/dihkcbb4kigBA1rsmavKpAwpcy4tD1 USoTTYHUcascxW8D7o2mjzI2/g7zWRF8YM8AfeGcHvLPSFq3si5etk8POgSPTWam WbTnJhe7VcViz5+U7cd6fAVmplPpXyLMTtF+RWOkkMqTIRvx6TTREF6/08fUwI64 yxrZ+7l9cKqThKE1FrFUZIss6L4G6UVEKFzxHBrdO8rMYpcbXphtZXXUEEnrugR9 Cpw2ahqVKgallF8XrJCAr8bKn5ewLn21LjsceGWaGTlAWHAO57HceSDZuALtTC84 n2lX+whBYzGewpv/kgKU9dfLEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPh3GahW 6Sw5NX1nCiL6MdLHKOunMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBPfwAgkImHljSAmWTY3Mm3yw1XHQCvQEOSdt1jXMJlEcLtW876bLr vB3tJmh8rwNbO4EB/03M8YRuU75npzfcdMCiIlFZh9xT0X4V91KK/0D0dBwKSA8Z mLZkcn/fpD3dlHW42/EaBMG6MOv/4s5QSAi9BHkD7Vrgw7Tat6WsacKaECtkFWrz ksUUof3FnsbGu4tV+DRBuFNuXbW1sQim9l7z5+J19IILqw5L3Q0ZxVAmMfl/n3dF mRC6CL0ClGuQpSgfbXUZ5QEnvFgKJ6TtjHTfewN7abg5Kd52xHLeB89kZGo/lOHY u7HxC7iBH5QZQCzJoonIgANWhtS3FVZO -----END CERTIFICATE-----Generated at Sat Aug 9 02:46:42 2025 by rpki-client