$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: tr69qbFMFTOUhPeWTSV8gvhBl+h53cpTtPv8b+Jz+hM= Subject key identifier: 08:98:CC:48:D1:11:B1:DB:0A:4E:0A:A0:B7:56:D5:FE:DD:EC:39:B4 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 0214 Signing time: Mon 11 Aug 2025 02:13:52 +0000 Manifest this update: Mon 11 Aug 2025 02:13:52 +0000 Manifest next update: Mon 18 Aug 2025 02:13:52 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: tYT5HAY6t8klf3G3JicPiHvfA9UQufj4H7JV1RRLYJo=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Aug 11 02:13:52 2025 GMT Not After : Aug 18 02:13:52 2025 GMT Subject: CN=689951e0-4198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:88:c4:ca:d6:48:22:e6:b9:2d:87:79:06: 3a:99:43:7e:e3:6d:8c:14:5e:f8:e3:96:47:c5:6e: 8f:2d:91:98:f8:76:bf:b6:9d:51:a0:87:31:b2:35: 53:2d:52:93:a4:5d:ec:b5:fa:07:02:9e:d4:cd:5f: e0:73:94:ff:69:34:77:f5:17:05:72:84:6a:f2:13: 03:a2:38:34:4a:5c:90:14:f3:c0:25:d4:68:e2:f5: 88:8a:b4:36:c2:b9:86:c4:8d:02:62:37:ed:b2:c9: 9c:97:04:a4:1c:b0:45:9c:7e:75:24:60:bc:37:d2: 29:2c:ac:1e:80:b2:41:06:44:f5:79:38:48:c0:0f: 80:bd:8b:98:ca:cb:59:c1:dc:56:5a:02:7d:ba:5c: 58:cb:aa:82:21:26:19:9c:5b:a6:b6:9a:a9:84:a6: e9:98:a7:ff:8c:c6:4a:64:dc:34:3e:dc:47:5d:14: 38:16:5d:d4:6a:8c:4c:f9:e9:74:87:33:95:a7:8c: 15:3c:98:5d:36:40:f4:ed:2a:75:e9:56:65:87:ac: e2:11:0f:08:d5:05:32:82:85:4d:44:96:64:34:c3: 72:de:ee:86:b3:d5:bf:bc:5d:33:65:2b:96:0b:6e: 9f:94:25:7c:a1:2c:80:17:ae:29:8b:5c:a3:50:67: fe:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:98:CC:48:D1:11:B1:DB:0A:4E:0A:A0:B7:56:D5:FE:DD:EC:39:B4 X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:07:04:eb:52:b0:5a:ed:b7:40:47:7b:ba:bf:6d:d0:b3:ee: 34:7a:83:bc:8d:8b:32:3b:4b:07:e8:37:ce:70:18:bc:d4:4f: 46:5e:38:29:b9:21:d0:8f:0d:87:50:6d:c5:60:9c:98:1b:56: 9b:c9:dd:36:33:12:5c:bb:b9:73:51:e3:12:f8:ff:e1:cf:82: 66:57:90:30:89:4e:48:ce:13:41:13:03:12:6a:ef:c5:df:12: 50:ba:27:1b:c8:f9:1c:a5:ac:8c:56:a1:4f:31:43:a8:f0:1c: e3:66:00:e0:36:ce:c7:c6:ec:f7:49:ca:dc:29:41:b0:00:2c: 8e:23:ed:9b:ee:14:fc:4f:8f:d6:80:e8:2f:5f:d5:0c:fb:c5: a8:86:75:52:72:dc:ee:49:39:25:a4:b9:96:e4:9c:a5:7f:69: cb:fc:f4:ae:00:c9:26:94:79:d3:63:98:57:89:f0:7a:b8:a7: 5c:a4:8f:24:ea:86:d4:ad:30:65:d6:a2:5e:ab:e9:26:4e:f3: 3c:dd:05:f0:c7:06:d9:18:dc:58:49:4e:c0:8f:39:12:2a:a3: 32:85:fb:ae:eb:91:c0:4e:22:85:98:5e:36:02:83:53:37:4c: df:21:d1:21:e9:9a:3b:5c:b9:ca:14:1e:f9:2d:cb:fc:f8:3e: 83:6e:26:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUwODExMDIxMzUyWhcNMjUwODE4MDIxMzUyWjAYMRYwFAYD VQQDEw02ODk5NTFlMC00MTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWSIxMrWSCLmuS2HeQY6mUN+422MFF7445ZHxW6PLZGY+Ha/tp1RoIcxsjVT LVKTpF3stfoHAp7UzV/gc5T/aTR39RcFcoRq8hMDojg0SlyQFPPAJdRo4vWIirQ2 wrmGxI0CYjftssmclwSkHLBFnH51JGC8N9IpLKwegLJBBkT1eThIwA+AvYuYystZ wdxWWgJ9ulxYy6qCISYZnFumtpqphKbpmKf/jMZKZNw0PtxHXRQ4Fl3UaoxM+el0 hzOVp4wVPJhdNkD07Sp16VZlh6ziEQ8I1QUygoVNRJZkNMNy3u6Gs9W/vF0zZSuW C26flCV8oSyAF64pi1yjUGf+uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiYzEjR EbHbCk4KoLdW1f7d7Dm0MB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDBwTrUrBa7bdAR3u6v23Qs+40eoO8jYsyO0sH6DfOcBi81E9GXjgp uSHQjw2HUG3FYJyYG1abyd02MxJcu7lzUeMS+P/hz4JmV5AwiU5IzhNBEwMSau/F 3xJQuicbyPkcpayMVqFPMUOo8BzjZgDgNs7Hxuz3ScrcKUGwACyOI+2b7hT8T4/W gOgvX9UM+8WohnVSctzuSTklpLmW5Jylf2nL/PSuAMkmlHnTY5hXifB6uKdcpI8k 6obUrTBl1qJeq+kmTvM83QXwxwbZGNxYSU7AjzkSKqMyhfuu65HATiKFmF42AoNT N0zfIdEh6Zo7XLnKFB75Lcv8+D6DbibY -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:54 2025 by rpki-client