$ rpki-client -vvf rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft File: yC1GI7edxaBABywRKhur60QWBBw.mft (raw, json) Hash identifier: b0vfp/9DCcyA2MIEeky/9Li/nzhNrLX5LdZAWy7CeYM= Subject key identifier: 1D:15:EE:3D:79:BC:8B:E3:B3:80:47:F9:77:DF:D1:FD:8A:48:FD:65 Authority key identifier: C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C Certificate issuer: /CN=A91D008B/serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Certificate serial: 05B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft Manifest number: 05B2 Signing time: Fri 22 Aug 2025 23:17:22 +0000 Manifest this update: Fri 22 Aug 2025 23:17:21 +0000 Manifest next update: Fri 29 Aug 2025 23:17:21 +0000 Files and hashes: 1: yC1GI7edxaBABywRKhur60QWBBw.crl (hash: u8IBDnqP5kPHZ9A1WZFYPVnmSt2wPnGCDf9cl38wK0c=) 2: 469C2676D76111EB97EB721DC4F9AE02.roa (hash: OTs+qw3AvV3H1ENDQyiXHEhtKPRt4PABgjp0FWH4nzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1464 (0x5b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D008B, serialNumber=C82D4623B79DC5A040072C112A1BABEB4416041C Validity Not Before: Aug 22 23:17:21 2025 GMT Not After : Aug 29 23:17:21 2025 GMT Subject: CN=68a8fa82-bfd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b4:83:66:69:77:05:8d:59:00:e4:42:6e:7c: 03:6b:c8:5c:c0:c5:b7:f0:cd:bb:7b:eb:0b:35:4b: b0:90:f7:90:6b:7e:f2:a2:54:83:1b:0a:10:1e:82: bf:94:b3:b6:41:94:36:6f:0e:6c:0d:4b:11:0a:3f: 28:62:1b:d9:eb:ff:34:fb:43:c1:12:51:d4:46:0f: 4b:e0:54:99:94:d7:db:a5:4f:ea:a9:3e:26:00:e9: 8a:08:4b:f6:47:52:04:d0:2b:50:5b:21:be:90:cd: 0b:cd:6f:6b:a2:4f:6d:bf:22:df:84:da:b5:44:82: 3a:c4:c3:eb:79:1f:e8:20:1b:10:be:4f:ed:fe:6b: 25:b5:c1:e4:4d:cc:16:de:0b:74:e0:08:3a:4b:9c: 3f:fb:85:de:df:6b:e1:6d:75:f4:19:fc:f8:dd:3c: 46:45:a7:9b:7c:dc:bd:5c:6b:3e:02:4e:c6:33:db: 7a:55:02:f4:4c:63:53:24:8b:e7:f7:5f:ae:87:3e: 63:14:94:21:c0:c6:e0:e4:f2:22:ba:8c:e0:f6:21: 29:f5:1a:27:92:9d:ba:07:e0:03:8b:89:1c:7a:de: 5f:7e:c3:9e:21:60:b6:dd:78:1b:45:7a:92:26:1f: 8b:c4:3e:17:c4:c4:69:7b:bd:d7:f9:6f:bb:3e:26: 60:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:15:EE:3D:79:BC:8B:E3:B3:80:47:F9:77:DF:D1:FD:8A:48:FD:65 X509v3 Authority Key Identifier: keyid:C8:2D:46:23:B7:9D:C5:A0:40:07:2C:11:2A:1B:AB:EB:44:16:04:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yC1GI7edxaBABywRKhur60QWBBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D008B/49E62716D75F11EB9BD24B1DC4F9AE02/yC1GI7edxaBABywRKhur60QWBBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:35:25:40:24:88:0e:3b:b7:70:98:2f:60:81:a3:ff:b8:51: 54:4e:83:e7:7a:88:c9:50:fa:09:a5:88:8b:e2:57:51:67:6f: f5:80:28:70:90:9a:39:4d:92:4f:a1:34:62:69:3d:be:d2:5f: 12:1b:47:44:3d:90:41:74:95:32:26:6f:b7:f1:6a:15:e0:c1: 8a:22:6f:ee:f5:d5:39:3f:fb:88:32:50:44:22:78:4c:f1:ec: b3:1d:6e:91:80:5b:6a:9d:94:fe:9b:cd:f6:91:43:26:48:2d: e1:5f:e0:cc:77:23:f2:ba:58:33:e2:e2:4d:2c:ec:c6:71:f7: 5c:47:bb:c4:bb:0d:fd:3e:d9:d6:17:41:14:ae:85:ed:65:30: c1:4f:c2:6d:85:3c:e1:ed:9c:96:d1:75:6b:7f:d5:2b:6a:eb: 6a:dc:d8:e6:a6:8d:37:a9:56:6d:e8:9f:bc:9d:a0:76:63:3c: 46:75:69:2c:fe:5b:a6:11:a0:d5:6f:69:02:cc:55:c4:31:31: ed:ec:a7:ad:12:27:0d:38:6d:7f:76:f9:84:4c:e1:75:df:64: 77:84:e7:5c:7f:f5:7b:e9:c0:de:e9:0b:dc:e7:0a:58:2b:84: eb:a6:18:b3:1e:4c:71:75:97:6e:59:0c:cf:57:c4:c8:b4:fa: e4:72:3b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwOEIxMTAvBgNVBAUTKEM4MkQ0NjIzQjc5REM1QTA0MDA3MkMxMTJBMUJBQkVC NDQxNjA0MUMwHhcNMjUwODIyMjMxNzIxWhcNMjUwODI5MjMxNzIxWjAYMRYwFAYD VQQDEw02OGE4ZmE4Mi1iZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LSDZml3BY1ZAORCbnwDa8hcwMW38M27e+sLNUuwkPeQa37yolSDGwoQHoK/ lLO2QZQ2bw5sDUsRCj8oYhvZ6/80+0PBElHURg9L4FSZlNfbpU/qqT4mAOmKCEv2 R1IE0CtQWyG+kM0LzW9rok9tvyLfhNq1RII6xMPreR/oIBsQvk/t/msltcHkTcwW 3gt04Ag6S5w/+4Xe32vhbXX0Gfz43TxGRaebfNy9XGs+Ak7GM9t6VQL0TGNTJIvn 91+uhz5jFJQhwMbg5PIiuozg9iEp9Ronkp26B+ADi4kcet5ffsOeIWC23XgbRXqS Jh+LxD4XxMRpe73X+W+7PiZgMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0V7j15 vIvjs4BH+Xff0f2KSP1lMB8GA1UdIwQYMBaAFMgtRiO3ncWgQAcsESobq+tEFgQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA4Qi80OUU2MjcxNkQ3 NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhhQkFCeXdSS2h1cjYwUVdC QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDMUdJN2VkeGFCQUJ5d1JLaHVyNjBRV0JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA4Qi80OUU2MjcxNkQ3NUYxMUVCOUJEMjRCMURDNEY5QUUwMi95QzFHSTdlZHhh QkFCeXdSS2h1cjYwUVdCQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoNSVAJIgOO7dwmC9ggaP/uFFUToPneojJUPoJpYiL4ldRZ2/1gChw kJo5TZJPoTRiaT2+0l8SG0dEPZBBdJUyJm+38WoV4MGKIm/u9dU5P/uIMlBEInhM 8eyzHW6RgFtqnZT+m832kUMmSC3hX+DMdyPyulgz4uJNLOzGcfdcR7vEuw39PtnW F0EUroXtZTDBT8JthTzh7ZyW0XVrf9Urautq3Njmpo03qVZt6J+8naB2YzxGdWks /lumEaDVb2kCzFXEMTHt7KetEicNOG1/dvmETOF132R3hOdcf/V76cDe6Qvc5wpY K4TrphizHkxxdZduWQzPV8TItPrkcjs2 -----END CERTIFICATE-----Generated at Sat Aug 23 19:42:24 2025 by rpki-client