$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: BWqKnn+VV8NjrdZ9yufMubLQ74CWrgSZpCpAET3FIR4= Subject key identifier: 22:3A:A5:F5:BA:AD:04:07:FE:C5:06:0D:8A:35:B0:3C:FD:92:89:EA Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09C4 Signing time: Fri 22 Aug 2025 20:06:29 +0000 Manifest this update: Fri 22 Aug 2025 20:06:29 +0000 Manifest next update: Fri 29 Aug 2025 20:06:29 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: MTibU+JE7P8TiN8TGyYps2ghS/548s8CHK37xg4xAX0=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Aug 22 20:06:29 2025 GMT Not After : Aug 29 20:06:29 2025 GMT Subject: CN=68a8cdc5-0631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5f:c1:57:fa:3f:f5:c2:4f:d8:0d:d5:02:25: 0d:c5:85:1c:fb:d6:61:35:ab:32:03:49:8a:0a:cb: 96:4e:e2:6c:57:b1:57:78:36:bd:5b:bb:39:03:fd: 7b:f3:bb:8c:1f:e2:fd:f3:4d:e3:d1:1b:20:9e:13: 05:4b:c1:60:a6:40:75:48:a9:d6:d7:3f:f1:21:a9: f6:7f:3d:1b:b8:d4:55:da:c4:07:c5:45:34:31:1a: 85:70:70:1e:64:0e:a6:bf:ad:80:05:a2:e1:b2:52: 15:93:e5:85:97:c2:e4:c1:5f:73:4f:1c:bf:78:17: 38:56:46:bf:70:07:23:54:78:23:c7:e0:81:f5:dd: e0:8c:59:3b:58:02:07:e3:57:83:81:14:d3:43:bd: 9b:36:5e:35:91:d1:87:83:57:8e:c4:05:1f:fe:a4: 6e:92:d6:9f:00:77:b4:5f:70:61:9c:6f:8a:40:a7: 5b:0a:1e:28:64:2e:d5:15:e4:67:c2:92:09:da:49: c1:59:3a:3d:b8:4a:ae:c0:7c:0d:64:00:91:fb:7d: d2:89:ba:0a:c6:bb:5a:52:04:86:d9:c0:07:e9:f5: fa:7f:0f:c0:58:88:81:c6:95:7f:b7:f9:ac:16:e6: 0d:e0:d8:b5:d8:c1:6a:14:2f:5f:05:fa:77:e2:b1: 37:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3A:A5:F5:BA:AD:04:07:FE:C5:06:0D:8A:35:B0:3C:FD:92:89:EA X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:96:96:02:00:bb:08:69:95:96:59:ad:70:59:db:36:d8:45: 53:e8:a9:88:0f:16:d1:f1:02:9f:2d:3f:7f:b7:ae:0c:e4:57: 2f:d6:f3:b1:8f:62:59:34:9c:33:87:c6:d1:e4:64:d7:30:ab: 47:65:29:92:31:b5:5b:89:5b:d0:6d:38:fe:78:ed:18:6a:08: 6f:b6:3e:7c:76:cd:48:97:f6:70:2e:ab:79:6d:3e:af:a0:86: 4b:69:aa:85:21:88:5c:aa:f8:2f:a0:c5:9f:ba:6d:97:c5:52: bb:63:1e:3c:c3:93:ca:5d:bf:2b:97:df:cc:51:7e:26:8b:68: ce:19:6a:df:6b:92:e9:16:67:83:44:2e:36:f8:c4:58:84:ae: 37:99:48:a0:1c:0d:3c:15:22:1d:76:cc:70:dd:d3:e0:ca:45: 23:9d:4c:da:b6:a9:ea:36:e8:b2:54:d7:b4:62:03:3b:ee:7b: d1:ff:5e:26:20:a4:58:2b:e3:48:9f:c0:dd:f6:7a:cc:83:af: e4:9b:c9:26:c5:4d:66:0b:62:d9:6d:c5:1f:d4:bd:c2:1a:82: 43:6a:95:94:1a:cc:71:6f:0d:9d:d1:cc:1f:b5:95:aa:66:80: a4:e1:b5:b8:b4:c2:84:91:12:c0:6c:a2:ca:a5:c6:b1:d7:8c: af:2b:97:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwODIyMjAwNjI5WhcNMjUwODI5MjAwNjI5WjAYMRYwFAYD VQQDEw02OGE4Y2RjNS0wNjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV/BV/o/9cJP2A3VAiUNxYUc+9ZhNasyA0mKCsuWTuJsV7FXeDa9W7s5A/17 87uMH+L9803j0RsgnhMFS8FgpkB1SKnW1z/xIan2fz0buNRV2sQHxUU0MRqFcHAe ZA6mv62ABaLhslIVk+WFl8LkwV9zTxy/eBc4Vka/cAcjVHgjx+CB9d3gjFk7WAIH 41eDgRTTQ72bNl41kdGHg1eOxAUf/qRuktafAHe0X3BhnG+KQKdbCh4oZC7VFeRn wpIJ2knBWTo9uEquwHwNZACR+33SiboKxrtaUgSG2cAH6fX6fw/AWIiBxpV/t/ms FuYN4Ni12MFqFC9fBfp34rE3zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI6pfW6 rQQH/sUGDYo1sDz9konqMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRlpYCALsIaZWWWa1wWds22EVT6KmIDxbR8QKfLT9/t64M5Fcv1vOx j2JZNJwzh8bR5GTXMKtHZSmSMbVbiVvQbTj+eO0Yaghvtj58ds1Il/ZwLqt5bT6v oIZLaaqFIYhcqvgvoMWfum2XxVK7Yx48w5PKXb8rl9/MUX4mi2jOGWrfa5LpFmeD RC42+MRYhK43mUigHA08FSIddsxw3dPgykUjnUzatqnqNuiyVNe0YgM77nvR/14m IKRYK+NIn8Dd9nrMg6/km8kmxU1mC2LZbcUf1L3CGoJDapWUGsxxbw2d0cwftZWq ZoCk4bW4tMKEkRLAbKLKpcax14yvK5cG -----END CERTIFICATE-----Generated at Sat Aug 23 22:35:51 2025 by rpki-client