$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft File: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft (raw, json) Hash identifier: MD+H9i4rn3pi4dO49A/YvzBKIZwn+23hn+FH0JL9rdM= Subject key identifier: 9E:9E:02:38:AD:B5:A6:7A:8F:D7:AA:5C:71:6B:F7:CE:46:D3:6E:B7 Authority key identifier: 63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 Certificate issuer: /CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft Manifest number: 34B4 Signing time: Fri 22 Aug 2025 15:05:35 +0000 Manifest this update: Fri 22 Aug 2025 15:05:35 +0000 Manifest next update: Fri 29 Aug 2025 15:05:35 +0000 Files and hashes: 1: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl (hash: wvGCMpQGC9YD+tGoWhszVKCRIbxLzqFowRbnPmGEbUI=) 2: 8852DDDEBED411ECBA66025BC4F9AE02.roa (hash: 3hsbI0PrBL5LI5VaCiCNQ0sMN2EIkZA6LenSvD9t9yA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Validity Not Before: Aug 22 15:05:35 2025 GMT Not After : Aug 29 15:05:35 2025 GMT Subject: CN=68a8873f-726a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:eb:25:75:1d:08:68:90:e6:52:90:6e:6d:a0: 02:4b:d4:39:8e:d2:53:52:a1:47:6e:59:2e:2d:0e: a9:76:8f:c3:86:28:40:e0:91:cb:05:32:d9:96:f5: 39:04:9a:57:25:e8:d4:8f:a5:a1:ac:6d:9e:10:68: fd:c1:8b:91:b8:ae:c5:aa:e3:c1:b6:fa:b8:02:62: 47:d7:bb:c2:0a:8e:b1:ed:c9:67:9a:1d:c6:18:7b: e2:4e:30:6e:6f:f4:28:fe:31:20:74:8a:5b:44:31: d1:88:26:f2:7b:8a:46:f4:03:db:51:2f:3f:4d:2c: ae:0d:b6:37:f7:25:32:e9:d9:64:34:54:79:20:a4: cc:ca:83:76:2a:93:b9:f5:9e:7c:3b:f5:c1:4d:74: e7:52:45:60:ae:84:b9:35:f9:57:ba:76:39:c5:a8: a1:bb:0d:02:8b:33:7b:54:34:ae:dd:1c:e2:ef:1c: e0:f6:67:f0:12:5a:df:36:5c:53:e5:53:b4:40:71: ab:aa:34:35:bf:a5:c4:81:f0:50:6a:bf:73:7b:81: d2:45:50:2e:89:0c:c6:c4:90:08:2f:ae:92:e4:e7: 23:49:75:f6:69:f4:66:fc:4b:16:ee:88:04:8e:ff: d1:d2:54:89:c4:e7:10:bd:f2:cd:96:3b:19:8c:96: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9E:02:38:AD:B5:A6:7A:8F:D7:AA:5C:71:6B:F7:CE:46:D3:6E:B7 X509v3 Authority Key Identifier: keyid:63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:05:99:f2:1f:c1:19:32:60:8c:05:52:73:b7:31:c8:f4:e2: 92:49:ca:62:4d:4f:73:cd:77:5f:8c:ea:82:7f:59:65:37:00: 4c:df:14:66:c6:84:39:f4:f4:fd:d3:4b:95:bd:04:73:a5:1b: fd:a0:d1:4e:b6:81:18:b3:f6:b7:9c:7c:ab:4a:27:46:83:d9: 38:8a:12:9e:1b:77:99:ab:82:66:f2:d6:da:99:49:46:bd:67: 71:0f:52:e0:b9:f4:54:10:24:e6:cd:cb:9c:ba:d1:7c:7b:8f: e7:7e:64:6b:9c:1f:9f:d6:7c:62:f1:5e:47:b2:ab:73:c8:38: 24:ab:a2:24:00:5d:83:f1:e3:19:9a:fb:69:06:88:4a:8b:5a: ae:ce:a2:ba:ac:1b:6a:02:50:b3:be:e9:cd:a5:5c:51:26:77: 57:34:a5:d9:54:09:0a:1c:c6:7a:61:ed:82:05:d9:43:63:e3: d9:97:b9:bd:67:4b:7a:2a:ac:09:dc:77:e2:cb:96:97:7b:54: c8:d0:cf:ef:71:ad:9e:f9:9b:ae:a0:3d:9a:32:4e:7b:70:80: 40:c0:4f:11:5e:ca:16:d3:35:06:6e:75:bb:56:0f:64:1d:cc: b0:32:88:9f:ac:bd:a8:71:cb:07:3d:20:fb:41:f0:5f:ea:25: 64:d5:f1:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKDYzMkM4REUwMjIwQjhDMTBCNDFGRjQ5QkZGOEI0MzJD RjhGRkQyNTQwHhcNMjUwODIyMTUwNTM1WhcNMjUwODI5MTUwNTM1WjAYMRYwFAYD VQQDEw02OGE4ODczZi03MjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvusldR0IaJDmUpBubaACS9Q5jtJTUqFHblkuLQ6pdo/DhihA4JHLBTLZlvU5 BJpXJejUj6WhrG2eEGj9wYuRuK7FquPBtvq4AmJH17vCCo6x7clnmh3GGHviTjBu b/Qo/jEgdIpbRDHRiCbye4pG9APbUS8/TSyuDbY39yUy6dlkNFR5IKTMyoN2KpO5 9Z58O/XBTXTnUkVgroS5NflXunY5xaihuw0CizN7VDSu3Rzi7xzg9mfwElrfNlxT 5VO0QHGrqjQ1v6XEgfBQar9ze4HSRVAuiQzGxJAIL66S5OcjSXX2afRm/EsW7ogE jv/R0lSJxOcQvfLNljsZjJaJRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6eAjit taZ6j9eqXHFr985G0263MB8GA1UdIwQYMBaAFGMsjeAiC4wQtB/0m/+LQyz4/9JU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy80NDlCQTUwNjFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpCQzBIX1NiXzR0RExQal8w bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l5eU40Q0lMakJDMEhfU2JfNHRETFBqXzBsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy80NDlCQTUwNjFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpC QzBIX1NiXzR0RExQal8wbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnBZnyH8EZMmCMBVJztzHI9OKSScpiTU9zzXdfjOqCf1llNwBM3xRm xoQ59PT900uVvQRzpRv9oNFOtoEYs/a3nHyrSidGg9k4ihKeG3eZq4Jm8tbamUlG vWdxD1LgufRUECTmzcucutF8e4/nfmRrnB+f1nxi8V5HsqtzyDgkq6IkAF2D8eMZ mvtpBohKi1quzqK6rBtqAlCzvunNpVxRJndXNKXZVAkKHMZ6Ye2CBdlDY+PZl7m9 Z0t6KqwJ3Hfiy5aXe1TI0M/vca2e+ZuuoD2aMk57cIBAwE8RXsoW0zUGbnW7Vg9k HcywMoifrL2occsHPSD7QfBf6iVk1fE7 -----END CERTIFICATE-----Generated at Sat Aug 23 10:25:32 2025 by rpki-client