$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: m6Zu2d/R6TTuAAfMDD8VrYDU1OF3O1tFXsf1PwqmlJo= Subject key identifier: 8A:CB:81:E1:6A:B8:A4:B3:90:79:FA:A0:3D:57:9C:BE:31:B8:4F:20 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0120 Signing time: Sat 23 Aug 2025 04:56:11 +0000 Manifest this update: Sat 23 Aug 2025 04:56:11 +0000 Manifest next update: Sat 30 Aug 2025 04:56:11 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: alCdae9EITV/fYOw56SXCaE1uNMmx6c5V3s8IY+x8ec=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Aug 23 04:56:11 2025 GMT Not After : Aug 30 04:56:11 2025 GMT Subject: CN=68a949eb-29da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:81:ff:64:96:52:8f:1d:f4:fc:3b:cc:0b:ee: 00:24:d6:54:07:c8:bd:46:df:92:af:b2:a8:3a:08: 6a:39:e7:54:f2:82:b7:9a:36:cf:98:f1:45:a9:3a: 3e:e9:ad:c8:c3:bb:27:ad:c0:83:a0:1c:17:1e:f6: 79:e3:58:71:71:85:84:34:29:99:8f:93:9a:97:cb: cb:49:37:cf:1f:78:e1:c5:4a:6e:b1:49:46:b8:c7: 23:a0:1b:d1:1e:e4:04:36:f1:78:c4:61:d3:06:72: 15:c4:c1:a5:24:c6:70:1b:56:44:28:eb:7e:14:5d: 25:fc:af:56:4c:24:14:2a:b0:fd:0b:72:e7:36:70: bd:11:42:d0:e1:9b:ba:aa:c8:8b:18:af:d3:38:5a: c7:3c:c9:2d:28:8b:db:e3:d7:60:38:4a:77:22:e4: 85:2f:3c:9b:7d:d9:0a:44:80:3f:ac:33:e7:19:59: 5b:f7:36:8e:ec:cc:90:7d:94:c6:94:bb:43:53:96: 81:75:4c:f6:76:1c:74:e5:57:78:e0:ba:d3:0f:de: e6:75:65:56:6e:69:c1:56:b5:b4:19:75:7a:2d:00: 69:4c:a0:71:4f:29:05:19:1f:fa:87:e9:13:d9:65: 81:04:fe:c7:45:ab:49:e2:21:ee:64:89:1e:5c:dd: 2c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CB:81:E1:6A:B8:A4:B3:90:79:FA:A0:3D:57:9C:BE:31:B8:4F:20 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:bc:84:4d:46:14:eb:9b:f9:1b:50:fb:34:7a:e5:2a:93:a9: 32:24:9b:37:5f:8d:a3:06:de:5c:df:1a:f7:6e:99:d3:5c:54: d3:dd:2c:97:8f:bf:a6:5c:d5:1c:ef:cb:a6:ad:65:6a:b2:31: 99:4f:3d:9a:3a:4e:6c:71:7f:fb:23:b9:c1:fe:b1:68:10:d4: f2:84:d5:a2:e1:45:c8:27:58:da:38:59:7d:24:77:0d:3e:ad: 67:11:c5:69:69:28:96:f5:67:7e:0b:fe:3b:f9:4d:5a:ea:bc: eb:6e:5d:9a:3f:2a:3f:8b:37:cc:48:92:6c:46:28:00:8e:25: ac:7e:9f:1e:98:6f:62:65:86:d3:91:73:5a:32:e6:48:82:67: 42:21:08:9f:d8:f4:a4:90:37:29:75:3d:97:9c:f0:7a:5c:5a: 56:ef:f7:13:37:42:ea:c3:ff:24:6c:78:00:b6:12:c9:60:68: 51:57:1a:8d:86:54:ac:27:ca:d7:f9:d3:0d:95:41:6d:64:95: 52:2b:76:62:4c:dc:03:69:f6:de:04:20:e2:6e:c8:45:14:90: 3e:83:bf:2f:67:5c:d2:7b:c4:18:d2:2b:6d:2c:5a:13:b3:59: 0d:22:75:b4:c1:ee:5b:18:c6:6c:86:53:38:8a:64:e5:70:3e: c4:94:ce:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUwODIzMDQ1NjExWhcNMjUwODMwMDQ1NjExWjAYMRYwFAYD VQQDEw02OGE5NDllYi0yOWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYH/ZJZSjx30/DvMC+4AJNZUB8i9Rt+Sr7KoOghqOedU8oK3mjbPmPFFqTo+ 6a3Iw7snrcCDoBwXHvZ541hxcYWENCmZj5Oal8vLSTfPH3jhxUpusUlGuMcjoBvR HuQENvF4xGHTBnIVxMGlJMZwG1ZEKOt+FF0l/K9WTCQUKrD9C3LnNnC9EULQ4Zu6 qsiLGK/TOFrHPMktKIvb49dgOEp3IuSFLzybfdkKRIA/rDPnGVlb9zaO7MyQfZTG lLtDU5aBdUz2dhx05Vd44LrTD97mdWVWbmnBVrW0GXV6LQBpTKBxTykFGR/6h+kT 2WWBBP7HRatJ4iHuZIkeXN0suwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrLgeFq uKSzkHn6oD1XnL4xuE8gMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtvIRNRhTrm/kbUPs0euUqk6kyJJs3X42jBt5c3xr3bpnTXFTT3SyX j7+mXNUc78umrWVqsjGZTz2aOk5scX/7I7nB/rFoENTyhNWi4UXIJ1jaOFl9JHcN Pq1nEcVpaSiW9Wd+C/47+U1a6rzrbl2aPyo/izfMSJJsRigAjiWsfp8emG9iZYbT kXNaMuZIgmdCIQif2PSkkDcpdT2XnPB6XFpW7/cTN0Lqw/8kbHgAthLJYGhRVxqN hlSsJ8rX+dMNlUFtZJVSK3ZiTNwDafbeBCDibshFFJA+g78vZ1zSe8QY0ittLFoT s1kNInW0we5bGMZshlM4imTlcD7ElM7n -----END CERTIFICATE-----Generated at Sat Aug 23 10:40:37 2025 by rpki-client