$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: d3EoFuBYIpT7jOPtEDtwTI6TlWIIeXkqV2KXvdx1NKw= Subject key identifier: 86:27:A6:3E:1F:06:33:D8:42:34:B3:00:29:ED:D1:92:96:C5:70:9F Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 42 Signing time: Tue 05 Aug 2025 08:06:23 +0000 Manifest this update: Tue 05 Aug 2025 08:06:23 +0000 Manifest next update: Tue 12 Aug 2025 08:06:23 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: G9DbXeJDYtadiDjuiHnemRldER7HxPGHi6Js/3rZ8WU=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Aug 5 08:06:23 2025 GMT Not After : Aug 12 08:06:23 2025 GMT Subject: CN=6891bb7f-67c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:07:96:a6:68:d7:9c:ef:b9:5e:83:9c:1f:3a: 74:34:eb:42:1f:af:7c:60:ac:74:a3:38:ef:2d:ae: e0:8a:de:5a:9f:9e:c9:51:64:10:9e:69:26:d0:64: a4:09:6f:d4:08:31:c2:4e:d8:01:9f:23:eb:1b:8e: f9:38:be:10:06:62:b3:f4:0f:40:2b:79:24:06:e4: ac:db:35:d2:64:2f:6b:a3:05:5c:0c:c6:e9:77:82: 3a:02:55:ba:7d:3f:60:9a:0b:72:dc:7b:02:b0:07: 5e:c4:9b:4b:09:9a:52:cc:13:88:4f:9a:68:53:bc: 23:99:70:f2:9f:ee:1e:76:d3:e6:64:46:ab:4d:a8: fb:e4:2b:ea:25:af:8e:cd:38:98:d1:ce:52:6c:18: e7:27:7f:ca:8d:c8:bd:b8:27:eb:40:a9:d0:57:e7: 92:68:72:ca:cc:9c:31:93:dc:9a:6a:e2:30:35:b9: a2:02:78:ab:d8:d3:46:86:81:bb:fb:0c:27:9e:04: c4:5b:51:7e:b1:9b:d7:e1:60:b4:7d:bc:b1:c5:6f: 6a:7a:2d:28:0d:82:4e:96:b0:4f:c2:ba:87:d1:2d: f2:90:a3:e8:15:a9:84:4f:10:e4:22:3b:07:f8:2f: 1f:c8:3f:ae:61:2b:15:58:54:74:b2:0d:1d:23:5e: f9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:27:A6:3E:1F:06:33:D8:42:34:B3:00:29:ED:D1:92:96:C5:70:9F X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:0b:94:59:5b:a8:d9:08:81:ff:f9:3b:d6:21:5a:08:d9:3e: fd:9a:ef:fd:91:3e:85:ff:7a:58:52:81:ff:d4:e9:bf:7b:f4: 01:5b:e4:0a:3f:d9:87:96:aa:74:d8:42:50:5e:11:a7:0e:38: 0a:20:60:1f:74:fd:e7:7e:c1:9f:18:b5:a3:36:5a:48:13:8a: 1c:2b:b7:ef:d0:58:38:17:4e:c0:ff:61:61:88:a8:49:47:ae: a9:ca:a4:17:14:e8:2a:a4:03:0f:b6:78:ae:c4:b7:6e:57:95: 70:67:69:7a:09:7c:fb:df:04:3b:65:ff:99:04:8c:b7:8d:fd: 4d:c6:30:28:ed:2d:b3:f2:5d:21:49:63:1f:32:b5:af:5b:76: 4b:dc:e6:b0:7a:df:9f:dd:13:49:b7:ff:b1:ee:2c:f5:63:34: 7b:2d:e5:a4:ee:27:33:78:a7:53:09:65:e2:99:71:15:f9:df: 9b:5a:64:23:56:ff:1f:3d:db:28:13:fe:6c:c0:6f:97:c8:1d: aa:fc:31:02:d5:7a:15:b8:27:69:21:bd:7d:5d:76:8f:84:13: 3f:10:63:92:55:66:c4:f8:f4:0e:de:22:21:e1:76:bf:ff:ea: db:08:47:09:fe:7d:20:c0:00:43:a2:1e:51:5c:33:cd:48:5c: f5:94:42:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTA4MDUwODA2MjNaFw0yNTA4MTIwODA2MjNaMBgxFjAUBgNV BAMTDTY4OTFiYjdmLTY3YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpB5amaNec77leg5wfOnQ060Ifr3xgrHSjOO8truCK3lqfnslRZBCeaSbQZKQJ b9QIMcJO2AGfI+sbjvk4vhAGYrP0D0AreSQG5KzbNdJkL2ujBVwMxul3gjoCVbp9 P2CaC3LcewKwB17Em0sJmlLME4hPmmhTvCOZcPKf7h520+ZkRqtNqPvkK+olr47N OJjRzlJsGOcnf8qNyL24J+tAqdBX55JocsrMnDGT3Jpq4jA1uaICeKvY00aGgbv7 DCeeBMRbUX6xm9fhYLR9vLHFb2p6LSgNgk6WsE/CuofRLfKQo+gVqYRPEOQiOwf4 Lx/IP65hKxVYVHSyDR0jXvlrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhiemPh8G M9hCNLMAKe3RkpbFcJ8wHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF4LlFlbqNkIgf/5O9YhWgjZPv2a7/2RPoX/elhSgf/U6b979AFb5Ao/ 2YeWqnTYQlBeEacOOAogYB90/ed+wZ8YtaM2WkgTihwrt+/QWDgXTsD/YWGIqElH rqnKpBcU6CqkAw+2eK7Et25XlXBnaXoJfPvfBDtl/5kEjLeN/U3GMCjtLbPyXSFJ Yx8yta9bdkvc5rB635/dE0m3/7HuLPVjNHst5aTuJzN4p1MJZeKZcRX535taZCNW /x892ygT/mzAb5fIHar8MQLVehW4J2khvX1ddo+EEz8QY5JVZsT49A7eIiHhdr// 6tsIRwn+fSDAAEOiHlFcM81IXPWUQl0= -----END CERTIFICATE-----Generated at Thu Aug 7 05:13:10 2025 by rpki-client