$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft File: _yC8N52JoNs75vzykPo91S63-iA.mft (raw, json) Hash identifier: bIahXE8fpnwXcNolRgGV3jz2K4Gi1mwQKwYr8zBAnTA= Subject key identifier: 5F:10:8C:87:92:1B:B9:21:4E:D0:B5:5B:DE:CE:36:CA:73:B0:03:E7 Authority key identifier: FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20 Certificate issuer: /CN=A91FC4FB/serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft Manifest number: 65 Signing time: Thu 07 Aug 2025 07:38:43 +0000 Manifest this update: Thu 07 Aug 2025 07:38:43 +0000 Manifest next update: Thu 14 Aug 2025 07:38:43 +0000 Files and hashes: 1: _yC8N52JoNs75vzykPo91S63-iA.crl (hash: MtLvHRu8t+45NeCp+tHXD6IsLTQwOI6a7P/7xGIcsW8=) 2: F20BD4DEDD5C11EFAA80BB1AC4F9AE02.roa (hash: v5aAOYFTKYQs9mswlL+k53rGpICa845yISkOLh9tIAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC4FB, serialNumber=FF20BC379D89A0DB3BE6FCF290FA3DD52EB7FA20 Validity Not Before: Aug 7 07:38:43 2025 GMT Not After : Aug 14 07:38:43 2025 GMT Subject: CN=68945803-c290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:07:9b:68:c0:cf:85:dc:19:d7:cd:f9:74: 94:85:07:cb:bd:71:c9:80:a7:8f:04:aa:75:b8:99: e3:9b:12:a5:b3:d4:5e:b3:f0:85:e3:b8:84:38:9e: 28:3d:5e:0f:93:11:7e:33:96:09:c8:78:3a:1d:ec: 4d:28:47:ee:9b:13:f8:0f:7e:4d:9e:29:52:b9:7b: 79:2c:09:28:f8:7e:4f:4c:06:69:ae:17:03:27:4d: 09:84:0e:ef:af:37:bf:e4:82:c4:02:a2:f4:bb:cc: 26:95:f0:19:c4:0d:ca:6c:63:97:7e:7c:8f:6d:4d: f9:10:7d:5f:9d:07:92:11:95:08:94:6c:3d:40:58: 2c:f5:b5:9e:de:51:2c:e3:12:4c:0d:b8:47:6b:85: e4:62:9d:fd:39:d4:3b:b6:28:6e:aa:50:11:e8:2c: 5a:18:e8:df:df:b4:14:17:3c:a9:c2:c7:d1:4f:fd: ff:b6:70:b0:b5:d7:19:12:ac:bf:41:5f:5a:97:ae: f0:d5:96:38:18:f8:61:06:a7:cf:a0:19:ed:4b:0e: 69:a6:3f:8f:68:aa:5a:17:ea:08:ac:87:33:06:c4: 41:fb:09:b8:7b:d5:e8:3c:d6:8d:0b:b4:74:ff:0f: ff:e3:00:b0:f7:0a:84:08:53:ae:27:85:1a:d8:c8: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:10:8C:87:92:1B:B9:21:4E:D0:B5:5B:DE:CE:36:CA:73:B0:03:E7 X509v3 Authority Key Identifier: keyid:FF:20:BC:37:9D:89:A0:DB:3B:E6:FC:F2:90:FA:3D:D5:2E:B7:FA:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_yC8N52JoNs75vzykPo91S63-iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC4FB/098FE2E8DCDC11EF8E291844C4F9AE02/_yC8N52JoNs75vzykPo91S63-iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:8c:a9:67:f9:60:01:2f:15:fc:ca:cb:c3:f4:16:6d:cb:f4: 15:c7:d0:e6:4f:a3:46:9b:19:0a:87:fc:50:2f:a0:d4:0b:34: 13:02:6e:6a:b5:f8:ef:34:1b:11:5b:bd:96:73:c6:0e:6e:2d: 7d:df:1b:79:8c:0d:6d:e1:3a:8a:99:19:b8:cb:9e:05:ae:33: 3d:91:e0:2c:8c:3c:09:72:b6:c4:5f:de:e9:0b:fb:eb:7c:13: 85:96:44:73:d5:33:5c:a8:9a:ef:fa:95:71:84:21:0c:01:45: ec:f0:aa:75:b3:dc:64:20:be:96:ff:a8:8e:d1:29:1e:80:27: e2:17:c9:75:9e:60:c3:43:a5:08:a4:cc:3d:e4:ab:35:bc:80: 6e:b0:52:e6:a0:d4:ca:0a:c5:4e:8c:45:80:48:6f:c9:0a:0d: bb:49:4e:f2:be:0c:a7:14:e3:46:46:55:12:e5:ee:99:b0:2a: e4:40:58:1f:4b:aa:98:6e:bc:3d:1d:65:13:99:ea:e1:a7:69: f9:1c:03:85:d6:07:28:2c:fc:66:67:b5:b3:c1:cb:b6:44:30: d6:09:bf:3d:58:97:44:50:6d:e4:cb:d9:f0:2b:71:e1:16:1a: e6:cf:00:83:7e:12:0a:49:e1:08:46:de:54:c0:ec:df:48:a8: 40:e3:3f:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QzRGQjExMC8GA1UEBRMoRkYyMEJDMzc5RDg5QTBEQjNCRTZGQ0YyOTBGQTNERDUy RUI3RkEyMDAeFw0yNTA4MDcwNzM4NDNaFw0yNTA4MTQwNzM4NDNaMBgxFjAUBgNV BAMTDTY4OTQ1ODAzLWMyOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn3QebaMDPhdwZ1835dJSFB8u9ccmAp48EqnW4meObEqWz1F6z8IXjuIQ4nig9 Xg+TEX4zlgnIeDod7E0oR+6bE/gPfk2eKVK5e3ksCSj4fk9MBmmuFwMnTQmEDu+v N7/kgsQCovS7zCaV8BnEDcpsY5d+fI9tTfkQfV+dB5IRlQiUbD1AWCz1tZ7eUSzj EkwNuEdrheRinf051Du2KG6qUBHoLFoY6N/ftBQXPKnCx9FP/f+2cLC11xkSrL9B X1qXrvDVljgY+GEGp8+gGe1LDmmmP49oqloX6gishzMGxEH7Cbh71eg81o0LtHT/ D//jALD3CoQIU64nhRrYyIQ/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXxCMh5Ib uSFO0LVb3s42ynOwA+cwHwYDVR0jBBgwFoAU/yC8N52JoNs75vzykPo91S63+iAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDNEZCLzA5OEZFMkU4RENE QzExRUY4RTI5MTg0NEM0RjlBRTAyL195QzhONTJKb05zNzV2enlrUG85MVM2My1p QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3lDOE41MkpvTnM3NXZ6eWtQbzkxUzYzLWlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZD NEZCLzA5OEZFMkU4RENEQzExRUY4RTI5MTg0NEM0RjlBRTAyL195QzhONTJKb05z NzV2enlrUG85MVM2My1pQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAaMqWf5YAEvFfzKy8P0Fm3L9BXH0OZPo0abGQqH/FAvoNQLNBMCbmq1 +O80GxFbvZZzxg5uLX3fG3mMDW3hOoqZGbjLngWuMz2R4CyMPAlytsRf3ukL++t8 E4WWRHPVM1yomu/6lXGEIQwBRezwqnWz3GQgvpb/qI7RKR6AJ+IXyXWeYMNDpQik zD3kqzW8gG6wUuag1MoKxU6MRYBIb8kKDbtJTvK+DKcU40ZGVRLl7pmwKuRAWB9L qphuvD0dZROZ6uGnafkcA4XWBygs/GZntbPBy7ZEMNYJvz1Yl0RQbeTL2fArceEW GubPAIN+EgpJ4QhG3lTA7N9IqEDjPzs= -----END CERTIFICATE-----Generated at Fri Aug 8 00:07:56 2025 by rpki-client