$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: l/jGh0tFU7M17Wk0196aJqfGtDFZTXb06H9sYMoQdeU= Subject key identifier: C6:74:CD:C0:1E:12:A1:06:57:D9:EA:EB:17:2D:94:C4:A7:D3:01:18 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 016A Signing time: Sat 23 Aug 2025 04:03:16 +0000 Manifest this update: Sat 23 Aug 2025 04:03:16 +0000 Manifest next update: Sat 30 Aug 2025 04:03:16 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: Xve8Ev7C3giwPa4FjK9AQ4OhtI7rTl0IFymHp+ODdd0=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Aug 23 04:03:16 2025 GMT Not After : Aug 30 04:03:16 2025 GMT Subject: CN=68a93d84-890d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2a:24:73:52:06:79:f7:b7:62:b3:ea:90:4d: 1e:c2:2c:f0:e2:98:a5:7c:1f:ed:55:29:33:32:71: 01:97:14:d6:d2:38:14:93:91:9c:4c:c4:c8:df:fe: 7f:e0:87:2a:38:8a:d1:4b:f0:e6:6b:49:a9:d3:1c: 7d:07:21:76:6b:db:28:01:c4:74:1e:3b:d7:63:43: 20:9f:3c:0c:5c:7a:5e:39:02:7b:a2:79:a6:cd:2b: 74:d2:c9:42:4a:68:0d:57:cc:2d:9c:c6:9c:63:aa: 3c:c8:88:6d:af:d1:c5:ac:6b:3b:d5:5e:1b:6e:21: 64:02:09:ca:5b:64:73:0c:56:f5:6c:68:9e:94:f7: cd:99:74:46:e8:eb:25:9b:f9:d3:82:3b:aa:b8:a4: a4:2a:fb:66:82:be:ef:15:22:6c:de:ea:a2:52:c7: 59:6d:0e:f4:70:5e:6f:bc:2f:44:60:64:ab:4b:52: 7f:39:6c:6f:b7:98:78:20:25:57:74:46:2e:81:68: dd:17:2b:1b:ac:49:b6:0f:ed:e8:a5:55:b2:ab:96: f8:7e:ff:64:c2:76:d1:2e:f4:7b:dd:20:85:6f:99: 0b:67:25:8e:f1:88:73:b1:b7:62:96:94:4f:64:5a: 55:ee:09:73:8f:b3:91:08:0a:0f:19:b0:aa:b0:25: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:74:CD:C0:1E:12:A1:06:57:D9:EA:EB:17:2D:94:C4:A7:D3:01:18 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3d:b1:c2:52:1c:0f:97:7a:8c:3e:2f:d2:c1:2c:20:a9:f1: 3b:84:71:43:61:f8:6f:9c:0d:aa:bd:cb:d1:fe:0b:36:da:cd: 19:ef:e6:34:ba:64:80:c4:6c:48:03:ee:f3:66:45:b4:90:77: cb:f5:94:30:7e:03:e2:96:a5:c8:c6:08:a5:6b:1a:bf:e0:12: c3:0a:19:9e:a3:36:4d:51:a7:46:44:9a:f4:07:2d:c3:ad:4f: ca:63:dd:a7:66:30:17:cc:3d:60:8f:e2:56:0d:47:9e:3f:a7: 7c:ce:26:1e:e3:62:c7:f0:15:7e:91:4a:b5:b9:9f:43:0a:83: 9f:3c:d6:b5:c3:4a:45:ac:b4:20:82:1e:2e:a3:bb:60:fb:c4: 32:9c:8d:ce:cb:64:c9:e0:3b:c0:1f:fe:1b:9e:43:be:f5:75: 3b:81:c9:1e:db:de:3b:18:2a:87:9e:f8:71:c1:e8:96:b8:5c: d6:3c:5e:9f:91:3b:8d:0d:12:b8:87:46:d5:2b:5d:b4:69:49: ad:87:86:c9:2c:ea:ee:c8:ff:71:fe:d3:63:d0:74:94:da:98: 85:ba:93:c8:7e:04:a9:6c:18:63:3b:72:43:6e:9e:d5:5b:7a: d4:00:6a:c6:e5:79:a3:40:be:9e:d9:9b:c2:bd:3a:b5:aa:6a: 1d:67:b1:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwODIzMDQwMzE2WhcNMjUwODMwMDQwMzE2WjAYMRYwFAYD VQQDEw02OGE5M2Q4NC04OTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSokc1IGefe3YrPqkE0ewizw4pilfB/tVSkzMnEBlxTW0jgUk5GcTMTI3/5/ 4IcqOIrRS/Dma0mp0xx9ByF2a9soAcR0HjvXY0MgnzwMXHpeOQJ7onmmzSt00slC SmgNV8wtnMacY6o8yIhtr9HFrGs71V4bbiFkAgnKW2RzDFb1bGielPfNmXRG6Osl m/nTgjuquKSkKvtmgr7vFSJs3uqiUsdZbQ70cF5vvC9EYGSrS1J/OWxvt5h4ICVX dEYugWjdFysbrEm2D+3opVWyq5b4fv9kwnbRLvR73SCFb5kLZyWO8YhzsbdilpRP ZFpV7glzj7ORCAoPGbCqsCXEGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZ0zcAe EqEGV9nq6xctlMSn0wEYMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVPbHCUhwPl3qMPi/SwSwgqfE7hHFDYfhvnA2qvcvR/gs22s0Z7+Y0 umSAxGxIA+7zZkW0kHfL9ZQwfgPilqXIxgilaxq/4BLDChmeozZNUadGRJr0By3D rU/KY92nZjAXzD1gj+JWDUeeP6d8ziYe42LH8BV+kUq1uZ9DCoOfPNa1w0pFrLQg gh4uo7tg+8QynI3Oy2TJ4DvAH/4bnkO+9XU7gcke2947GCqHnvhxweiWuFzWPF6f kTuNDRK4h0bVK120aUmth4bJLOruyP9x/tNj0HSU2piFupPIfgSpbBhjO3JDbp7V W3rUAGrG5XmjQL6e2ZvCvTq1qmodZ7Fc -----END CERTIFICATE-----Generated at Sat Aug 23 20:13:19 2025 by rpki-client