$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: tqm2mkYFfHXMvKwSeZZ/rMfReSFxrhiE8IJeiwuI8Og= Subject key identifier: CE:F4:B3:EE:28:D8:08:06:30:D8:95:DD:03:FC:59:30:DA:FA:E9:9D Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01AE Signing time: Sat 09 Aug 2025 03:31:34 +0000 Manifest this update: Sat 09 Aug 2025 03:31:34 +0000 Manifest next update: Sat 16 Aug 2025 03:31:33 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: TvSmUoL9mVX6oGfpAjGCarvWW1Aw58zzNhtSRIzm6Q8=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Aug 9 03:31:34 2025 GMT Not After : Aug 16 03:31:33 2025 GMT Subject: CN=6896c116-4be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:5f:ea:3d:02:9d:52:e6:d7:d9:7a:22:37: 9d:f2:3b:db:f4:5f:3e:7a:84:ca:07:c0:11:e1:6d: 40:bd:08:b2:32:8e:00:4f:c4:e9:1a:80:7b:ff:8b: 5e:d2:bd:85:ba:7e:26:0c:e3:20:af:20:75:93:8b: ca:d2:db:76:a5:ac:b6:95:61:bb:4c:95:ab:4f:6f: 0d:92:64:4a:6c:92:a3:ec:7a:e5:6b:35:33:01:4c: b3:60:db:a7:b9:ba:dd:b2:75:6b:28:fb:22:1d:a2: 5d:80:6b:31:33:87:2c:f4:6a:62:48:26:de:db:16: d2:35:09:2b:b0:d0:22:5f:ee:e1:8e:94:6c:b8:17: 22:99:e9:c0:76:27:c7:59:be:17:1f:54:9a:ce:e1: 86:66:6d:cb:98:ed:79:a7:08:4d:5a:3f:43:9f:b6: 4a:62:24:1f:81:e2:00:bb:b5:21:2d:9e:ac:f1:eb: 53:b1:b5:13:05:55:7e:a2:df:ff:21:4f:b9:2a:0e: ef:88:fc:3f:81:ef:38:6f:53:f1:41:1b:8d:08:d8: 18:b0:18:0c:e3:a1:55:54:ff:74:67:a9:3c:77:1d: af:78:a1:2d:da:05:72:53:65:75:70:2c:b4:5c:b3: 19:ac:60:51:1d:cd:a8:63:dd:7b:e8:82:40:74:d4: 70:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F4:B3:EE:28:D8:08:06:30:D8:95:DD:03:FC:59:30:DA:FA:E9:9D X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f6:80:89:38:0b:20:36:a2:4f:23:f0:b0:45:69:30:83:35: 83:c0:ed:3a:74:76:e8:4b:e8:c0:19:ae:3e:15:85:7d:4e:cd: 54:5c:62:2f:74:fa:7d:75:0a:6d:95:e6:19:8c:56:a9:8f:3b: f6:e7:a5:10:97:fa:cf:5c:88:3d:b2:3d:96:65:a4:59:bd:dc: f2:af:17:9a:06:4a:b6:7b:11:47:92:0a:9e:62:95:3a:32:51: e8:93:45:8e:a6:c7:58:3b:d6:62:0a:a2:04:73:96:f1:a3:54: f0:ee:6f:ba:a4:36:43:08:fb:bb:db:a9:39:92:10:f9:a4:3b: b9:1a:ce:cc:0e:e4:c1:6e:d4:ee:0b:c1:0f:28:26:d0:27:7b: 4d:51:0f:cf:bc:e7:19:3b:93:1b:d2:0f:1a:dd:18:82:15:d1: 63:b6:2a:6e:22:37:77:31:57:65:2e:4a:f2:7f:5c:35:71:5b: fd:1b:9a:9c:08:bb:e7:63:3b:7d:39:34:c3:7a:f1:42:35:83: c0:25:df:b3:b9:cc:2b:f4:9f:f9:9b:08:d9:80:21:0f:16:0f: af:f3:1a:d2:95:62:3b:c6:94:5c:05:d5:d1:4f:a9:03:8b:97: 96:b9:aa:53:b8:1d:66:bc:f1:23:7c:00:5e:65:09:39:ab:04: 83:e6:67:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwODA5MDMzMTM0WhcNMjUwODE2MDMzMTMzWjAYMRYwFAYD VQQDEw02ODk2YzExNi00YmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqNf6j0CnVLm19l6Ijed8jvb9F8+eoTKB8AR4W1AvQiyMo4AT8TpGoB7/4te 0r2Fun4mDOMgryB1k4vK0tt2pay2lWG7TJWrT28NkmRKbJKj7HrlazUzAUyzYNun ubrdsnVrKPsiHaJdgGsxM4cs9GpiSCbe2xbSNQkrsNAiX+7hjpRsuBcimenAdifH Wb4XH1SazuGGZm3LmO15pwhNWj9Dn7ZKYiQfgeIAu7UhLZ6s8etTsbUTBVV+ot// IU+5Kg7viPw/ge84b1PxQRuNCNgYsBgM46FVVP90Z6k8dx2veKEt2gVyU2V1cCy0 XLMZrGBRHc2oY9176IJAdNRwbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM70s+4o 2AgGMNiV3QP8WTDa+umdMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM9oCJOAsgNqJPI/CwRWkwgzWDwO06dHboS+jAGa4+FYV9Ts1UXGIv dPp9dQptleYZjFapjzv256UQl/rPXIg9sj2WZaRZvdzyrxeaBkq2exFHkgqeYpU6 MlHok0WOpsdYO9ZiCqIEc5bxo1Tw7m+6pDZDCPu726k5khD5pDu5Gs7MDuTBbtTu C8EPKCbQJ3tNUQ/PvOcZO5Mb0g8a3RiCFdFjtipuIjd3MVdlLkryf1w1cVv9G5qc CLvnYzt9OTTDevFCNYPAJd+zucwr9J/5mwjZgCEPFg+v8xrSlWI7xpRcBdXRT6kD i5eWuapTuB1mvPEjfABeZQk5qwSD5me+ -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:09 2025 by rpki-client