$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: hrJEuCk4ygyinrH6Wyk/C/z3QP/y166VK52JLxh/5sc= Subject key identifier: 56:33:9D:B7:41:0A:32:EE:67:E9:0F:93:23:1B:67:1F:A7:50:D7:18 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 22 Signing time: Sat 23 Aug 2025 08:05:12 +0000 Manifest this update: Sat 23 Aug 2025 08:05:12 +0000 Manifest next update: Sat 30 Aug 2025 08:05:12 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: 9kGGN1h99ZaI1yn5LKdwpSc+elafVHVlXsNywmOuDYM=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Aug 23 08:05:12 2025 GMT Not After : Aug 30 08:05:12 2025 GMT Subject: CN=68a97638-8c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:13:f3:be:52:2a:bc:42:71:8e:1a:78:e1:a0: 40:00:5b:24:d2:63:77:c7:2c:b4:4b:f0:8d:9b:42: 5e:84:59:2f:b6:f9:f4:b9:62:c0:ad:8b:38:fc:93: 7a:7a:e0:af:5c:9b:11:2f:06:fe:cf:45:61:de:72: 1e:ba:2b:07:d1:48:6c:1b:c7:60:4e:28:96:f4:e9: 6e:78:43:48:0d:9f:50:81:da:6f:a9:0c:19:42:98: 03:05:16:2c:bd:54:34:af:97:f8:69:44:5c:e9:7b: 60:36:c9:68:41:fb:8b:03:0d:0e:43:05:2b:18:a8: df:b7:54:44:2f:57:48:b2:a6:2c:0b:ff:45:5d:64: 36:44:b4:73:09:ce:a8:69:09:62:f5:54:de:e9:3d: b6:8e:47:b1:c3:55:8e:be:af:9d:ec:23:f0:f1:a0: 35:6d:dc:6e:69:ce:81:c9:bf:ce:8f:66:a5:22:23: 77:29:fd:a4:c9:37:62:50:25:16:c9:91:33:ac:e5: ff:0c:9d:13:e2:f7:e1:81:54:3a:ac:f9:bb:0e:90: 4e:69:a3:e0:d9:be:2d:ed:c4:50:6e:35:00:4c:fd: ef:f6:b1:db:c0:f7:a2:1c:50:70:d4:bd:16:c2:3c: 1c:bd:a2:27:c3:52:16:27:c4:af:d7:23:e0:08:f2: a0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:33:9D:B7:41:0A:32:EE:67:E9:0F:93:23:1B:67:1F:A7:50:D7:18 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:76:7d:5e:ef:a9:e6:c0:77:39:43:a1:91:d6:27:44:90:ea: c1:ce:62:33:45:05:8a:1b:fc:12:63:43:b8:b3:97:3c:6c:6d: 91:0b:18:c1:db:db:8a:fc:60:66:c8:69:8c:a4:b1:29:3f:bb: 2a:75:6e:ea:d0:30:07:ec:24:49:f7:c6:c3:ed:02:c7:fd:0a: 6e:fe:b6:56:43:ad:01:9b:b0:94:bb:85:ad:7f:db:d2:26:81: 5d:7d:9d:d9:f5:b0:24:28:82:a7:3e:6f:35:5f:c8:e7:a3:b7: 5f:cc:24:b8:27:88:ba:89:e5:1f:79:63:c9:e4:1f:6a:92:e9: 0f:a8:05:0d:10:65:70:6b:3e:d2:bd:ba:dc:f0:ca:9f:83:28: 60:9c:e9:57:61:86:8a:d9:cc:84:c7:dd:d7:9b:43:cb:f0:8a: 4d:a2:cd:b1:33:ec:df:11:d0:cf:8e:96:0f:8c:72:5c:e5:b3: 07:0c:55:19:b9:44:af:e6:5f:75:d5:4a:2e:01:04:11:ca:e3: ec:ac:21:cd:c4:33:d1:90:66:b6:e7:00:80:53:35:5f:b2:1f: c3:12:ba:ab:f1:bf:5a:c7:f8:bd:3d:8f:d2:3f:d9:49:3d:70: af:89:11:2b:54:23:72:de:43:39:b0:31:e6:8f:f0:2a:78:09: f5:1e:1b:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTA4MjMwODA1MTJaFw0yNTA4MzAwODA1MTJaMBgxFjAUBgNV BAMTDTY4YTk3NjM4LThjNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuE/O+Uiq8QnGOGnjhoEAAWyTSY3fHLLRL8I2bQl6EWS+2+fS5YsCtizj8k3p6 4K9cmxEvBv7PRWHech66KwfRSGwbx2BOKJb06W54Q0gNn1CB2m+pDBlCmAMFFiy9 VDSvl/hpRFzpe2A2yWhB+4sDDQ5DBSsYqN+3VEQvV0iypiwL/0VdZDZEtHMJzqhp CWL1VN7pPbaOR7HDVY6+r53sI/DxoDVt3G5pzoHJv86PZqUiI3cp/aTJN2JQJRbJ kTOs5f8MnRPi9+GBVDqs+bsOkE5po+DZvi3txFBuNQBM/e/2sdvA96IcUHDUvRbC PBy9oifDUhYnxK/XI+AI8qBhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVjOdt0EK Mu5n6Q+TIxtnH6dQ1xgwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALx2fV7vqebAdzlDoZHWJ0SQ6sHOYjNFBYob/BJjQ7izlzxsbZELGMHb 24r8YGbIaYyksSk/uyp1burQMAfsJEn3xsPtAsf9Cm7+tlZDrQGbsJS7ha1/29Im gV19ndn1sCQogqc+bzVfyOejt1/MJLgniLqJ5R95Y8nkH2qS6Q+oBQ0QZXBrPtK9 utzwyp+DKGCc6VdhhorZzITH3debQ8vwik2izbEz7N8R0M+Olg+MclzlswcMVRm5 RK/mX3XVSi4BBBHK4+ysIc3EM9GQZrbnAIBTNV+yH8MSuqvxv1rH+L09j9I/2Uk9 cK+JEStUI3LeQzmwMeaP8Cp4CfUeGyM= -----END CERTIFICATE-----Generated at Sat Aug 23 20:37:47 2025 by rpki-client