$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: d7+aSgd2BsO6RH2ZwDXe3AcDFxzfWstgUEwNwrsiiHc= Subject key identifier: 5E:12:39:95:D0:37:75:1A:37:D7:2C:26:A1:F9:5C:E2:29:D8:C6:B4 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04BB Signing time: Sat 23 Aug 2025 00:04:37 +0000 Manifest this update: Sat 23 Aug 2025 00:04:37 +0000 Manifest next update: Sat 30 Aug 2025 00:04:37 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: oL3u6PHc3iqwCw6YfGrnRomW2R2PLUeUxkgUvnbjYR4=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Aug 23 00:04:37 2025 GMT Not After : Aug 30 00:04:37 2025 GMT Subject: CN=68a90595-a3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:c2:bb:c5:67:16:3c:ef:6b:70:5d:10:ab: ad:e0:24:06:f7:36:e3:c2:ed:d4:39:a1:f5:78:31: 60:16:44:e2:08:34:fa:85:83:92:68:82:dd:db:cc: fe:0f:03:ad:25:ae:5d:79:c8:1c:13:af:19:57:da: de:2d:46:b0:8b:68:51:5a:15:99:f1:4f:1d:df:e7: aa:ef:84:2c:40:bc:2f:77:2d:00:1c:7a:e1:e4:a9: 71:d9:3f:09:96:69:b1:00:5e:07:6e:66:f4:4b:a1: fe:8b:d6:a0:ac:df:d0:05:b3:4a:e9:d9:16:55:34: c4:4e:c6:b9:c5:60:60:b4:ae:cb:3d:45:7d:c0:b4: 3a:05:5d:b9:a7:1b:e2:19:36:3e:60:9d:d2:6a:9d: 6a:1b:68:f8:d7:ca:fe:8e:1e:cd:4b:01:60:af:b3: c2:a7:65:68:7e:42:69:9a:d9:35:76:05:99:27:d4: a6:df:02:c5:80:c6:05:a4:52:12:05:c8:f8:2e:8d: 43:74:8d:bf:f9:58:c0:49:71:10:5b:b9:b3:92:d8: 91:09:32:f4:94:b0:b4:a4:80:f8:37:03:1a:fb:71: fd:12:aa:f0:d9:aa:74:e3:ea:7f:a4:bb:0c:03:27: 0f:fc:21:6e:c6:cf:b4:3a:e0:50:87:73:d8:63:28: fc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:12:39:95:D0:37:75:1A:37:D7:2C:26:A1:F9:5C:E2:29:D8:C6:B4 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:89:a1:b2:6e:9d:ae:fd:e6:07:85:84:02:b7:cd:7b:7f:ed: 24:d6:17:41:cb:dc:39:63:19:89:73:72:6d:26:25:6e:70:15: 0a:db:5e:ec:ca:32:d6:1b:2c:8d:cd:75:35:c6:ca:cd:7b:96: ec:08:ff:a0:d0:42:a2:f9:bd:dd:ba:7d:34:22:8c:2a:8f:62: e0:a5:33:05:f1:f7:ac:e2:96:2b:36:03:54:be:a6:c4:48:9c: 76:14:55:96:ef:ac:fc:bd:9d:6e:45:b4:91:0d:1e:c3:6f:9b: b1:c8:7a:6e:b6:d2:06:eb:2c:65:7e:d9:7d:3c:58:73:72:f0: e8:5c:15:b8:e3:29:ac:0f:b7:ee:98:ba:f2:b3:ef:e7:e4:0e: f9:86:83:2c:53:5c:b6:3e:f4:1e:39:66:ab:d0:fb:a3:6c:e2: 7a:dc:05:d4:0f:db:2d:aa:4d:8c:d4:48:57:4b:6f:6b:ef:a2: 41:01:20:be:90:bf:f3:81:4e:a8:e2:0e:1f:0c:91:f1:2d:70: 69:2b:b7:a0:8f:27:c4:6c:55:2c:71:71:ba:47:a9:66:a1:15: e5:08:19:5f:96:7c:d3:b9:dd:0f:c3:7d:b1:35:b3:58:a8:f4: 91:bf:57:40:74:eb:f9:7a:03:78:8b:d4:54:57:7c:90:ae:75: 9d:26:ea:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwODIzMDAwNDM3WhcNMjUwODMwMDAwNDM3WjAYMRYwFAYD VQQDEw02OGE5MDU5NS1hM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSPCu8VnFjzva3BdEKut4CQG9zbjwu3UOaH1eDFgFkTiCDT6hYOSaILd28z+ DwOtJa5decgcE68ZV9reLUawi2hRWhWZ8U8d3+eq74QsQLwvdy0AHHrh5Klx2T8J lmmxAF4Hbmb0S6H+i9agrN/QBbNK6dkWVTTETsa5xWBgtK7LPUV9wLQ6BV25pxvi GTY+YJ3Sap1qG2j418r+jh7NSwFgr7PCp2VofkJpmtk1dgWZJ9Sm3wLFgMYFpFIS Bcj4Lo1DdI2/+VjASXEQW7mzktiRCTL0lLC0pID4NwMa+3H9Eqrw2ap04+p/pLsM AycP/CFuxs+0OuBQh3PYYyj8EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4SOZXQ N3UaN9csJqH5XOIp2Ma0MB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtiaGybp2u/eYHhYQCt817f+0k1hdBy9w5YxmJc3JtJiVucBUK217s yjLWGyyNzXU1xsrNe5bsCP+g0EKi+b3dun00Iowqj2LgpTMF8fes4pYrNgNUvqbE SJx2FFWW76z8vZ1uRbSRDR7Db5uxyHputtIG6yxlftl9PFhzcvDoXBW44ymsD7fu mLrys+/n5A75hoMsU1y2PvQeOWar0PujbOJ63AXUD9stqk2M1EhXS29r76JBASC+ kL/zgU6o4g4fDJHxLXBpK7egjyfEbFUscXG6R6lmoRXlCBlflnzTud0Pw32xNbNY qPSRv1dAdOv5egN4i9RUV3yQrnWdJuoV -----END CERTIFICATE-----Generated at Sat Aug 23 16:18:32 2025 by rpki-client