$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: m0GgSVBW4t2mS2OtwB04GJVqfVnQLuZhHmRGU9l1ANI= Subject key identifier: B3:6D:BB:48:93:37:09:4E:E1:7B:89:73:FB:27:EC:C1:8D:30:D9:FF Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 067D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 0676 Signing time: Fri 22 Aug 2025 22:35:23 +0000 Manifest this update: Fri 22 Aug 2025 22:35:22 +0000 Manifest next update: Fri 29 Aug 2025 22:35:22 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: SmJIhbYDB7n+Sb0vzQQEskpZKGlYTIYX/KNTjSP7JNE=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: 1AEXU+7Y4PfWz8jQxA5HlFwuXkljqopTv6bNdtPTBW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Aug 22 22:35:22 2025 GMT Not After : Aug 29 22:35:22 2025 GMT Subject: CN=68a8f0ab-1e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7d:4a:a4:d4:cb:c3:05:be:19:b7:94:94:cc: ca:f5:00:81:c9:4c:4c:f1:63:cf:15:e5:08:29:3e: 27:2e:a3:d3:72:9d:a0:c6:50:4a:be:04:a3:60:59: 90:44:c6:00:0e:f1:53:28:69:50:13:48:7d:03:6a: b0:fa:34:90:5f:e6:ff:6f:31:78:02:ab:a7:74:cb: 39:24:bd:a4:8d:10:3e:7a:ff:86:52:b4:f2:38:98: 3f:22:96:26:a4:67:85:74:2b:62:75:0e:32:83:88: 49:f8:3f:9b:3a:5c:78:89:3b:77:c0:6c:bd:b3:ab: 8d:33:5b:74:31:59:74:73:6f:73:a6:3d:0f:04:d7: 92:83:8c:78:c3:62:f3:92:40:c1:20:88:a8:9a:85: 0f:d5:29:6c:8a:42:9f:d8:dc:b3:6a:b9:3c:ca:aa: 71:c8:f5:22:1a:1a:5a:11:62:2c:3d:34:3f:67:1d: 6b:1d:21:d0:09:7e:d6:4e:5e:69:b5:c0:10:5c:1d: 73:02:d7:79:8d:e0:eb:06:cc:fb:d2:15:57:dc:60: 2f:b5:b8:28:0c:5c:ac:4e:8e:a7:5b:9e:22:43:da: 00:f5:5d:53:52:28:c2:43:c5:10:a3:33:f0:5d:10: 49:e9:f1:00:df:d0:55:9d:f9:10:df:6e:f5:f4:b3: d5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6D:BB:48:93:37:09:4E:E1:7B:89:73:FB:27:EC:C1:8D:30:D9:FF X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:15:f8:e3:78:e3:6c:0c:41:f2:9c:80:3d:97:d3:c7:ef:5c: 90:a4:d7:3c:36:c0:2d:c7:90:93:58:dc:37:b8:31:d0:e2:17: eb:fe:3a:20:93:37:56:9a:9d:37:1f:8a:7e:db:1a:af:76:d2: ae:d3:25:7b:1d:32:55:00:ad:46:77:35:b1:2c:0b:40:2d:f2: fa:d4:f5:b3:e4:d8:ed:9f:6f:46:40:f5:d4:6a:d6:48:10:b4: d4:2e:6d:16:f6:fa:72:a3:f7:6c:f8:91:8e:07:e4:20:06:8c: 8c:ea:18:5c:41:9b:28:22:3f:83:98:5e:f0:05:a7:ad:13:5d: c2:a2:d1:b5:9c:d6:f9:7c:ae:7e:27:f1:84:d2:21:2c:c8:9f: 2d:a0:e7:c4:71:66:a7:82:ac:4a:13:ae:e5:1d:9d:36:4e:e2: 7b:ba:7d:10:a2:82:61:13:f1:94:76:99:0d:3c:c0:e8:f3:f2: 4f:f6:ec:3b:24:4e:ee:c5:32:1e:64:c1:ad:43:7d:b0:7f:15: af:c4:a1:b3:bc:02:a2:84:76:94:94:46:eb:50:8f:08:1d:3b: 3e:7a:69:f9:ee:d5:89:2f:76:0b:fe:4d:d1:af:1c:c2:b3:3b: ce:58:29:0e:a9:9e:6f:6e:dc:67:7f:0a:ce:8c:3a:eb:7c:75: 14:98:dd:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwODIyMjIzNTIyWhcNMjUwODI5MjIzNTIyWjAYMRYwFAYD VQQDEw02OGE4ZjBhYi0xZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH1KpNTLwwW+GbeUlMzK9QCByUxM8WPPFeUIKT4nLqPTcp2gxlBKvgSjYFmQ RMYADvFTKGlQE0h9A2qw+jSQX+b/bzF4AqundMs5JL2kjRA+ev+GUrTyOJg/IpYm pGeFdCtidQ4yg4hJ+D+bOlx4iTt3wGy9s6uNM1t0MVl0c29zpj0PBNeSg4x4w2Lz kkDBIIiomoUP1SlsikKf2Nyzark8yqpxyPUiGhpaEWIsPTQ/Zx1rHSHQCX7WTl5p tcAQXB1zAtd5jeDrBsz70hVX3GAvtbgoDFysTo6nW54iQ9oA9V1TUijCQ8UQozPw XRBJ6fEA39BVnfkQ32719LPVhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNtu0iT NwlO4XuJc/sn7MGNMNn/MB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FfjjeONsDEHynIA9l9PH71yQpNc8NsAtx5CTWNw3uDHQ4hfr/jog kzdWmp03H4p+2xqvdtKu0yV7HTJVAK1GdzWxLAtALfL61PWz5Njtn29GQPXUatZI ELTULm0W9vpyo/ds+JGOB+QgBoyM6hhcQZsoIj+DmF7wBaetE13CotG1nNb5fK5+ J/GE0iEsyJ8toOfEcWangqxKE67lHZ02TuJ7un0QooJhE/GUdpkNPMDo8/JP9uw7 JE7uxTIeZMGtQ32wfxWvxKGzvAKihHaUlEbrUI8IHTs+emn57tWJL3YL/k3RrxzC szvOWCkOqZ5vbtxnfwrOjDrrfHUUmN0C -----END CERTIFICATE-----Generated at Sat Aug 23 18:59:03 2025 by rpki-client