$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: /g9EfdCoN3eBJmQOhVeQE8WDecCrBE2liTAbRk4SDWA= Subject key identifier: FB:30:45:64:03:26:D2:F8:E0:92:5D:89:9B:8B:26:F4:80:50:7F:86 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 34EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 34CF Signing time: Sun 10 Aug 2025 15:00:46 +0000 Manifest this update: Sun 10 Aug 2025 15:00:46 +0000 Manifest next update: Sun 17 Aug 2025 15:00:46 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: P3z22t6/YKtCJYdgYcYb0tR+jK+hlPVuFSa5YC3boKs=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: LB+KlOsPvF4imD5dH4Y/7ETYXLpR1TopuFn08dtZ6UQ=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: kxrZR2YgejKdZw2KSRqTPBaBWQsbx9P5F4vQ2qVIgKA=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: uAMH22czrWhCVXR1Yh4Gb924YIN0PWuUVG5CCQ0T0QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13551 (0x34ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Aug 10 15:00:46 2025 GMT Not After : Aug 17 15:00:46 2025 GMT Subject: CN=6898b41e-faf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:50:ba:c5:8e:26:39:eb:a2:77:53:03:61:d6: 42:06:72:bd:bb:51:b2:34:81:5d:b9:dd:c7:c3:b1: 7e:fa:f0:4b:ff:2c:bf:05:0c:23:31:98:6a:ce:49: fa:78:20:82:0c:33:38:47:82:be:00:0b:f0:0a:6a: e4:e8:69:f3:d4:63:5c:fc:9a:2f:13:12:56:b5:31: b7:94:05:18:78:b6:43:82:e8:ee:ab:54:89:fc:46: 32:28:c0:3f:3b:08:af:08:97:42:b9:ce:ec:47:7e: 38:b9:3f:2d:5f:35:24:07:23:b2:c1:fc:98:88:8b: 38:fd:75:c5:e4:db:09:00:29:35:10:cf:2d:95:2b: b0:4d:f8:36:a4:d4:20:a6:d5:41:78:1e:d7:e2:dd: 22:61:7e:c2:d2:d7:d0:61:f0:98:8b:96:91:e2:4c: 30:a1:9b:8f:f2:e8:81:52:ca:ef:a9:5d:2d:cc:17: 25:c2:1b:25:06:5c:d6:cc:96:3f:c0:bd:ac:40:5d: 34:28:64:5a:9c:bf:21:7b:e5:f8:36:83:06:39:09: 1a:42:22:7f:37:86:00:9f:c7:0b:8d:be:93:b0:48: aa:92:90:77:f0:81:ad:a5:e5:7f:f8:82:aa:84:d1: d2:f8:a3:4b:c4:7a:44:4a:14:2a:fb:4f:e4:6d:19: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:30:45:64:03:26:D2:F8:E0:92:5D:89:9B:8B:26:F4:80:50:7F:86 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:43:4f:1a:63:25:b8:70:ce:cb:f1:38:92:3a:bb:f7:cd:2d: a9:90:75:92:b2:fb:2f:8c:df:4c:9e:99:16:25:d9:c2:d3:ac: 65:9d:0a:1c:63:ee:2c:11:58:4b:f5:7d:af:34:96:d7:19:66: dd:df:71:ec:75:99:f7:3b:2f:76:0d:86:24:b6:7e:0e:75:a2: a0:51:9a:be:f0:3e:d0:60:3f:52:c6:c8:0d:45:67:ac:dc:42: 1a:b1:cf:fe:e7:b6:02:1e:bf:34:67:d7:c3:f8:98:ce:1d:5b: 97:ac:38:13:29:09:b4:44:9e:79:df:80:e0:b5:6c:8c:04:06: cb:cc:06:78:c7:e9:ff:ec:53:73:4b:7b:bd:5a:f7:c8:9a:6b: 85:05:02:7f:e4:d2:61:80:07:f7:24:5b:48:bc:02:f7:7d:d2: 9d:bd:fb:6f:5e:01:8d:b9:09:fc:3b:cb:13:ea:6a:8a:83:0f: 5f:e7:5a:bc:b6:2b:f4:d2:3f:03:04:a2:a9:29:9c:44:29:11: 00:9a:86:1b:c8:ee:51:5e:76:91:d1:f4:36:0c:7f:97:08:d8: 5f:f6:44:44:26:28:3c:8d:6b:ac:0a:98:c0:16:7c:ea:1c:1d: cf:19:7a:29:3c:ff:82:b6:a4:8d:dd:f8:11:68:35:e3:b6:89: 90:c0:b1:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUwODEwMTUwMDQ2WhcNMjUwODE3MTUwMDQ2WjAYMRYwFAYD VQQDEw02ODk4YjQxZS1mYWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVC6xY4mOeuid1MDYdZCBnK9u1GyNIFdud3Hw7F++vBL/yy/BQwjMZhqzkn6 eCCCDDM4R4K+AAvwCmrk6Gnz1GNc/JovExJWtTG3lAUYeLZDgujuq1SJ/EYyKMA/ OwivCJdCuc7sR344uT8tXzUkByOywfyYiIs4/XXF5NsJACk1EM8tlSuwTfg2pNQg ptVBeB7X4t0iYX7C0tfQYfCYi5aR4kwwoZuP8uiBUsrvqV0tzBclwhslBlzWzJY/ wL2sQF00KGRanL8he+X4NoMGOQkaQiJ/N4YAn8cLjb6TsEiqkpB38IGtpeV/+IKq hNHS+KNLxHpEShQq+0/kbRn/uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPswRWQD JtL44JJdiZuLJvSAUH+GMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUQ08aYyW4cM7L8TiSOrv3zS2pkHWSsvsvjN9MnpkWJdnC06xlnQoc Y+4sEVhL9X2vNJbXGWbd33HsdZn3Oy92DYYktn4OdaKgUZq+8D7QYD9SxsgNRWes 3EIasc/+57YCHr80Z9fD+JjOHVuXrDgTKQm0RJ5534DgtWyMBAbLzAZ4x+n/7FNz S3u9WvfImmuFBQJ/5NJhgAf3JFtIvAL3fdKdvftvXgGNuQn8O8sT6mqKgw9f51q8 tiv00j8DBKKpKZxEKREAmoYbyO5RXnaR0fQ2DH+XCNhf9kREJig8jWusCpjAFnzq HB3PGXopPP+CtqSN3fgRaDXjtomQwLGs -----END CERTIFICATE-----Generated at Mon Aug 11 10:51:48 2025 by rpki-client