$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: PF3b8hhbKMD6kkeX68gTKWaOL2bSD6SZhtiwZUMz2zQ= Subject key identifier: 09:2F:27:B1:7B:A9:43:6B:15:BE:44:77:6A:4B:B8:1C:75:8D:97:06 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04DA Signing time: Sun 19 Oct 2025 01:34:25 +0000 Manifest this update: Sun 19 Oct 2025 01:34:23 +0000 Manifest next update: Sun 26 Oct 2025 01:34:23 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: IbE/K5LGb63XxceF/ttWFY4XAITSxBOzkw9P1vniv1U=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: rSYICcW+HFCzDD9ABBiFdKCTDCOz7xqqAaQJc2BnfOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Oct 19 01:34:23 2025 GMT Not After : Oct 26 01:34:23 2025 GMT Subject: CN=68f44020-c702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:df:1b:3b:09:9d:49:45:2e:0a:2f:42:61: a4:d7:d5:0f:e6:af:68:48:bb:f3:df:c6:e6:11:18: 26:20:87:74:3b:c4:78:e0:10:99:ec:ba:f5:05:4c: 3d:f6:f6:b5:5e:55:6b:58:bb:95:d0:3a:06:ea:9a: bf:ea:ed:99:59:9d:48:cf:34:62:20:c6:80:c2:34: 37:57:53:b1:66:2f:c8:63:80:5a:9e:51:81:61:9d: 66:09:50:bd:41:68:d8:00:23:46:71:61:70:cf:04: 73:7b:12:1c:5e:54:c1:a3:fe:46:92:1c:7d:75:38: 5b:01:be:b0:3f:f7:91:df:90:b1:f1:c3:3f:47:13: da:b9:49:e3:83:3e:fc:66:a7:a5:7b:f1:47:b1:fd: f6:4e:f5:64:db:74:3f:cc:23:a6:10:3a:34:a6:88: f6:04:8a:02:5a:cf:0f:df:6b:1f:53:3e:c5:dd:32: f8:dd:8e:d1:db:7e:9c:07:67:06:35:11:1a:29:42: 25:c6:d4:55:df:a5:54:fb:d5:b5:5e:0e:2b:f3:e0: f1:b5:c6:48:18:ce:44:b8:48:1e:1a:6f:0c:99:ce: c9:56:96:8e:94:9a:00:45:bc:7c:20:81:be:d9:31: 23:16:dd:84:a7:39:f0:81:05:b4:ef:be:f6:d7:40: 36:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2F:27:B1:7B:A9:43:6B:15:BE:44:77:6A:4B:B8:1C:75:8D:97:06 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f6:2d:8c:6e:f8:37:6d:df:72:c1:7f:fd:c5:80:ff:d9:dd: 14:c1:5b:6b:81:e5:b3:45:a3:f7:b3:f8:1e:39:6e:d6:fa:7d: 8e:f7:40:46:55:9d:c4:9b:af:e9:5c:8d:45:e6:87:e7:95:2e: 67:cf:3e:a3:b3:1d:66:e5:ab:7a:dc:5c:8b:4b:a1:a0:5c:54: f8:15:4f:e7:7b:88:80:08:16:59:9f:57:a6:94:96:f0:21:9d: 0b:20:07:0c:86:2b:4a:36:8d:b0:f1:91:90:43:bd:13:e9:b4: aa:67:3c:30:b6:a3:9a:6e:7b:e0:96:03:7c:53:74:dc:36:73: 0a:bf:96:52:4e:d4:05:ec:7b:df:e4:12:63:63:0a:43:d6:bf: 66:17:26:91:05:5d:7e:9f:91:22:8e:95:49:e7:9b:3c:f5:e8: d0:d0:3a:84:5d:f3:f1:c9:fe:db:af:75:95:d4:3f:22:13:c2: 5f:31:77:4b:92:82:0c:5a:64:08:74:f1:af:d4:4c:a5:f1:e3: e6:c7:1f:9b:49:82:b4:22:c1:62:0d:86:05:71:87:10:ed:5a: ff:d5:ba:23:04:b5:b5:8b:da:fd:77:cd:2f:3e:22:04:c3:b2: ba:87:68:fc:43:19:d0:b5:f8:76:a7:23:a5:2e:98:94:9d:79: 42:e2:3f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUxMDE5MDEzNDIzWhcNMjUxMDI2MDEzNDIzWjAYMRYwFAYD VQQDEw02OGY0NDAyMC1jNzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtLfGzsJnUlFLgovQmGk19UP5q9oSLvz38bmERgmIId0O8R44BCZ7Lr1BUw9 9va1XlVrWLuV0DoG6pq/6u2ZWZ1IzzRiIMaAwjQ3V1OxZi/IY4BanlGBYZ1mCVC9 QWjYACNGcWFwzwRzexIcXlTBo/5Gkhx9dThbAb6wP/eR35Cx8cM/RxPauUnjgz78 Zqele/FHsf32TvVk23Q/zCOmEDo0poj2BIoCWs8P32sfUz7F3TL43Y7R236cB2cG NREaKUIlxtRV36VU+9W1Xg4r8+DxtcZIGM5EuEgeGm8Mmc7JVpaOlJoARbx8IIG+ 2TEjFt2EpznwgQW0777210A2yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkvJ7F7 qUNrFb5Ed2pLuBx1jZcGMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo9i2Mbvg3bd9ywX/9xYD/2d0UwVtrgeWzRaP3s/geOW7W+n2O90BG VZ3Em6/pXI1F5ofnlS5nzz6jsx1m5at63FyLS6GgXFT4FU/ne4iACBZZn1emlJbw IZ0LIAcMhitKNo2w8ZGQQ70T6bSqZzwwtqOabnvglgN8U3TcNnMKv5ZSTtQF7Hvf 5BJjYwpD1r9mFyaRBV1+n5EijpVJ55s89ejQ0DqEXfPxyf7br3WV1D8iE8JfMXdL koIMWmQIdPGv1Eyl8ePmxx+bSYK0IsFiDYYFcYcQ7Vr/1bojBLW1i9r9d80vPiIE w7K6h2j8QxnQtfh2pyOlLpiUnXlC4j8H -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:03 2025 by rpki-client