$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft File: Y19XnOBVlw4BocO3dQIcjj4ieIc.mft (raw, json) Hash identifier: su/yDPz/ezFuskhOm8k4gVYiCsD/2Sk66cGo4/N3Uu8= Subject key identifier: 8F:30:FD:E5:4D:BB:C2:CB:EF:FD:D3:C9:B8:0E:EA:96:62:2E:57:33 Authority key identifier: 63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 Certificate issuer: /CN=A91F4294/serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Certificate serial: 0E22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft Manifest number: 0E1A Signing time: Fri 08 Aug 2025 18:02:07 +0000 Manifest this update: Fri 08 Aug 2025 18:02:07 +0000 Manifest next update: Fri 15 Aug 2025 18:02:07 +0000 Files and hashes: 1: Y19XnOBVlw4BocO3dQIcjj4ieIc.crl (hash: +lkCKQTQ8+fFgSorRR2GSCGC0gi0reftw9onsVjmnyE=) 2: 1E018994AEBF11E993F33C65C4F9AE02.roa (hash: VAz7Q8OmwNVtqjw21t41eYyn3+glN8lqbyiXL2P+yek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3618 (0xe22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4294, serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Validity Not Before: Aug 8 18:02:07 2025 GMT Not After : Aug 15 18:02:07 2025 GMT Subject: CN=68963b9f-abd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:63:69:42:78:37:53:ee:81:29:88:d7:e6: 40:98:dc:9c:ed:8a:46:c1:49:3b:b7:e7:c5:e3:04: fe:f5:65:66:2d:b9:a3:df:48:7f:05:38:90:84:37: 1e:e6:95:38:65:5c:6a:8a:49:13:62:58:da:76:af: 1d:87:3b:b2:25:d5:b6:17:43:f2:dd:78:fc:e7:60: 9b:26:67:80:08:36:6c:cc:8c:4e:26:02:f9:89:6b: ea:dd:23:34:3a:75:1b:45:44:0b:da:33:74:c9:b0: e4:8c:11:46:9a:32:84:ca:d6:6d:62:31:00:eb:ac: 72:ac:9f:0f:90:f2:4b:7d:86:61:34:15:e5:28:20: 7b:62:ed:45:b8:e5:87:ec:0d:95:50:1b:45:21:95: f1:2c:1d:03:ad:f1:a3:f1:cc:13:b6:dc:97:68:78: 74:80:37:51:07:b8:85:9c:08:01:a9:f8:1c:a3:2d: d0:4f:9d:21:e9:20:03:b2:58:44:03:6d:51:48:ab: 39:e5:e9:6c:1e:e7:34:cc:37:41:55:3e:13:0a:15: b9:42:41:dc:37:a1:5c:0c:f3:61:d3:ce:bc:34:75: 07:e9:b8:c3:e0:b6:d5:06:48:bf:6f:a8:32:1e:f4: b3:df:e2:ba:d5:f1:b2:67:b4:f7:95:bc:53:eb:c0: 10:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:30:FD:E5:4D:BB:C2:CB:EF:FD:D3:C9:B8:0E:EA:96:62:2E:57:33 X509v3 Authority Key Identifier: keyid:63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b7:d3:e8:65:2d:d0:d3:72:a1:03:c1:ab:c2:7c:4a:d6:3f: 0f:7f:d6:85:1e:ed:35:7d:a7:2e:9b:ed:0d:33:36:68:ba:72: a3:ed:d4:8f:7b:85:d1:89:35:36:c2:42:f7:58:85:8f:17:63: 48:a3:06:b5:6d:c4:38:ae:34:ee:39:92:1f:fa:af:c9:19:42: 55:d4:3e:23:f4:84:e3:6c:bf:9e:c6:8e:81:b9:cf:f2:04:38: ed:85:23:7b:8a:c5:53:d3:26:8d:84:3e:2c:0e:a8:7e:f3:54: 2e:ae:b0:c4:28:17:b7:57:43:c1:7d:31:86:5b:0c:3e:41:fb: d9:cf:e3:be:6c:26:bd:b2:53:9d:71:a3:89:48:59:31:91:d8: 20:66:77:98:69:c0:9e:0c:6e:c5:97:f2:63:67:3d:f9:2e:d4: 35:30:39:26:22:7e:3a:81:2a:97:20:ca:48:14:75:e8:49:cb: b9:19:e4:a9:7c:bb:85:0f:9f:d0:93:79:db:fa:36:4b:f5:b6: b2:9d:e1:20:0b:bb:dc:fa:6b:2d:be:12:49:a9:04:5f:fb:fe: ee:04:58:66:05:0b:24:e6:70:49:a2:45:13:e6:78:d4:97:38: 53:17:07:d4:05:19:9c:72:78:bf:39:59:b1:23:19:62:f9:66: c5:75:1f:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOTQxMTAvBgNVBAUTKDYzNUY1NzlDRTA1NTk3MEUwMUExQzNCNzc1MDIxQzhF M0UyMjc4ODcwHhcNMjUwODA4MTgwMjA3WhcNMjUwODE1MTgwMjA3WjAYMRYwFAYD VQQDEw02ODk2M2I5Zi1hYmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4hjaUJ4N1PugSmI1+ZAmNyc7YpGwUk7t+fF4wT+9WVmLbmj30h/BTiQhDce 5pU4ZVxqikkTYljadq8dhzuyJdW2F0Py3Xj852CbJmeACDZszIxOJgL5iWvq3SM0 OnUbRUQL2jN0ybDkjBFGmjKEytZtYjEA66xyrJ8PkPJLfYZhNBXlKCB7Yu1FuOWH 7A2VUBtFIZXxLB0DrfGj8cwTttyXaHh0gDdRB7iFnAgBqfgcoy3QT50h6SADslhE A21RSKs55elsHuc0zDdBVT4TChW5QkHcN6FcDPNh0868NHUH6bjD4LbVBki/b6gy HvSz3+K61fGyZ7T3lbxT68AQFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8w/eVN u8LL7/3TybgO6pZiLlczMB8GA1UdIwQYMBaAFGNfV5zgVZcOAaHDt3UCHI4+IniH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI5NC8wQ0I1RUFGQUFF QkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3NEJvY08zZFFJY2pqNGll SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxOVhuT0JWbHc0Qm9jTzNkUUljamo0aWVJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI5NC8wQ0I1RUFGQUFFQkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3 NEJvY08zZFFJY2pqNGllSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnt9PoZS3Q03KhA8GrwnxK1j8Pf9aFHu01facum+0NMzZounKj7dSP e4XRiTU2wkL3WIWPF2NIowa1bcQ4rjTuOZIf+q/JGUJV1D4j9ITjbL+exo6Buc/y BDjthSN7isVT0yaNhD4sDqh+81QurrDEKBe3V0PBfTGGWww+QfvZz+O+bCa9slOd caOJSFkxkdggZneYacCeDG7Fl/JjZz35LtQ1MDkmIn46gSqXIMpIFHXoScu5GeSp fLuFD5/Qk3nb+jZL9bayneEgC7vc+mstvhJJqQRf+/7uBFhmBQsk5nBJokUT5njU lzhTFwfUBRmccni/OVmxIxli+WbFdR9t -----END CERTIFICATE-----Generated at Sat Aug 9 14:19:50 2025 by rpki-client