$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: yn7eiTzYynoLbUTXeI+IyFBbT1HMJexf8cGmh/p4SD4= Subject key identifier: FD:6F:7E:4E:8B:00:06:B3:82:91:75:8A:0C:77:B1:96:97:10:78:ED Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 11B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 11A7 Signing time: Fri 22 Aug 2025 17:19:42 +0000 Manifest this update: Fri 22 Aug 2025 17:19:41 +0000 Manifest next update: Fri 29 Aug 2025 17:19:41 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: lMdOLi4lm7XwrEak9w6PvJ9Eih8gf5fSU8tSg3jpSZ4=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4528 (0x11b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Aug 22 17:19:41 2025 GMT Not After : Aug 29 17:19:41 2025 GMT Subject: CN=68a8a6ad-aede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:70:70:63:bd:b8:73:1c:63:ce:97:34:a9:33: df:b8:be:d6:24:47:c8:2c:c2:46:52:25:36:b3:a6: 96:65:91:8e:0c:1e:af:e2:1c:24:bf:fe:72:c4:b6: 6b:81:89:f9:f4:b2:fb:de:81:ea:b2:ba:f0:e4:b2: 55:99:c0:89:f9:1c:15:78:93:30:b6:0f:b4:64:36: be:4d:ea:31:93:d5:ea:36:f1:ed:4c:af:2f:83:cb: 5f:14:67:27:dc:96:8e:92:e7:bc:b4:a7:2a:c1:d6: af:db:4b:ad:f8:c8:5c:cc:1c:e7:98:f6:e1:66:e3: fd:a3:74:83:12:c8:e8:9a:2c:3b:f1:3f:1c:3c:98: f0:97:3b:85:f6:cc:1a:30:e0:3d:10:84:02:a7:15: f0:d8:d1:15:dc:12:0f:82:9a:7a:63:e4:5c:c8:44: 7e:f7:6c:3c:5c:34:b1:48:9d:06:09:b1:ec:ef:62: 79:11:6f:8d:ed:2e:51:cc:42:a9:cc:f7:b4:86:7e: e8:b6:2f:5f:b1:eb:1c:e6:26:76:d3:30:d9:4a:46: 2c:46:d0:7e:8c:f9:da:cb:e2:c9:bf:87:ad:44:a8: bd:dc:6b:bc:3a:99:00:1f:49:0e:72:fa:1f:19:c8: 98:ec:48:99:d7:32:ac:0d:f3:d1:2a:1e:4c:3f:a2: a3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6F:7E:4E:8B:00:06:B3:82:91:75:8A:0C:77:B1:96:97:10:78:ED X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ca:9a:7b:e5:2d:87:72:86:08:3a:8d:ec:64:27:7a:f3:a9: 17:24:69:a3:0b:a8:fd:33:27:0f:d2:60:b0:fe:20:83:5e:03: ed:73:d0:4e:ce:9e:a5:27:f7:c4:53:9b:db:17:50:a2:f6:3a: 40:bd:56:c6:0b:b8:da:a2:74:0d:bc:56:ce:e8:33:34:fb:c9: 1e:66:a8:36:87:7d:b1:1e:39:3a:95:17:7e:08:3b:9c:b2:b3: b2:07:97:50:75:2e:1f:f7:46:25:c2:b4:e2:b6:2a:4d:a6:af: 5f:c1:fb:d8:b9:8a:25:0a:ef:2c:ba:f9:76:13:5e:54:db:79: 23:27:a2:2b:14:72:ff:fc:36:77:fd:78:b8:08:1e:bf:9b:3a: 47:28:42:93:93:17:f5:4a:7f:b2:21:16:43:e7:32:68:d3:f5: 09:20:13:cc:1d:6f:31:f9:f2:45:16:33:ea:4d:42:45:dd:61: 9a:3d:d5:71:3d:f7:3f:44:37:dd:c8:88:59:da:fb:1f:48:57: d5:01:7b:08:e3:f8:a6:cb:e8:7d:9c:11:bf:40:e5:3c:11:92: fc:4e:60:9c:29:6d:2c:40:c3:c5:d8:13:bf:c3:b3:2d:96:3d: 7e:1a:eb:79:8b:01:a3:b6:0e:48:5d:e8:83:86:93:01:6c:4e: f1:f9:8b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUwODIyMTcxOTQxWhcNMjUwODI5MTcxOTQxWjAYMRYwFAYD VQQDEw02OGE4YTZhZC1hZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnBwY724cxxjzpc0qTPfuL7WJEfILMJGUiU2s6aWZZGODB6v4hwkv/5yxLZr gYn59LL73oHqsrrw5LJVmcCJ+RwVeJMwtg+0ZDa+Teoxk9XqNvHtTK8vg8tfFGcn 3JaOkue8tKcqwdav20ut+MhczBznmPbhZuP9o3SDEsjomiw78T8cPJjwlzuF9swa MOA9EIQCpxXw2NEV3BIPgpp6Y+RcyER+92w8XDSxSJ0GCbHs72J5EW+N7S5RzEKp zPe0hn7oti9fsesc5iZ20zDZSkYsRtB+jPnay+LJv4etRKi93Gu8OpkAH0kOcvof GciY7EiZ1zKsDfPRKh5MP6KjKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1vfk6L AAazgpF1igx3sZaXEHjtMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDypp75S2HcoYIOo3sZCd686kXJGmjC6j9MycP0mCw/iCDXgPtc9BO zp6lJ/fEU5vbF1Ci9jpAvVbGC7jaonQNvFbO6DM0+8keZqg2h32xHjk6lRd+CDuc srOyB5dQdS4f90YlwrTitipNpq9fwfvYuYolCu8suvl2E15U23kjJ6IrFHL//DZ3 /Xi4CB6/mzpHKEKTkxf1Sn+yIRZD5zJo0/UJIBPMHW8x+fJFFjPqTUJF3WGaPdVx Pfc/RDfdyIhZ2vsfSFfVAXsI4/imy+h9nBG/QOU8EZL8TmCcKW0sQMPF2BO/w7Mt lj1+Gut5iwGjtg5IXeiDhpMBbE7x+Yt0 -----END CERTIFICATE-----Generated at Sat Aug 23 13:44:35 2025 by rpki-client