$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: GQaSYTLkxrS1vvO36RJWLNOFsA6+mTSvH9BBHbzQ7zs= Subject key identifier: 00:04:51:35:04:AE:24:E4:A3:A8:C5:EF:5F:DC:A7:2B:55:7B:7F:B8 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09B4 Signing time: Tue 22 Jul 2025 20:15:22 +0000 Manifest this update: Tue 22 Jul 2025 20:15:21 +0000 Manifest next update: Tue 29 Jul 2025 20:15:21 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: nTuXUiXGWZBN6JNR9/8jeJk/jWQXx+GNVeT6Cf9K4ZE=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 20:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2490 (0x9ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Jul 22 20:15:21 2025 GMT Not After : Jul 29 20:15:21 2025 GMT Subject: CN=687ff159-4a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1f:92:25:98:9c:e7:3a:9d:b1:ba:08:b0:ea: b7:53:bf:11:d4:10:13:b0:a8:c8:16:34:3d:d8:80: b1:5f:f3:ac:22:ab:25:dc:11:c9:45:c9:74:1f:d6: 5f:e2:1a:f4:f3:eb:6c:33:bb:18:c0:b3:25:45:96: 19:4b:71:6a:c9:5d:f7:d1:7c:23:65:a9:15:ab:cf: 4f:13:df:e2:3b:b4:7e:14:1a:3b:19:3c:64:ee:60: 27:5d:f6:75:9b:cc:26:b6:96:90:c7:e0:ec:3a:7f: 48:14:87:bf:12:da:4a:bc:b8:0b:ec:d8:35:d0:84: ba:94:ac:92:cf:4d:1d:03:1a:2e:65:96:d0:7a:11: 9b:03:c6:35:62:4f:eb:89:6c:f6:f8:25:fa:f1:0d: c2:bd:3c:d3:a5:ef:98:80:6e:1a:3d:d8:6a:54:16: bc:8d:85:ac:c0:be:df:10:42:99:0c:05:40:2a:22: 81:3f:40:fc:d5:eb:7a:05:db:01:63:11:94:16:88: 7c:7f:2c:65:20:48:9d:b9:f9:04:51:87:8f:74:ba: be:31:7f:71:3e:74:c1:b6:47:be:55:58:fa:20:33: 7c:04:9d:49:7a:44:d3:b8:97:88:d4:7e:3b:a4:ea: ba:07:47:c1:2a:4a:c5:5a:e7:74:a7:73:7a:8a:6b: 0b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:04:51:35:04:AE:24:E4:A3:A8:C5:EF:5F:DC:A7:2B:55:7B:7F:B8 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:14:79:21:9a:6d:e1:cf:29:94:94:34:36:6f:fa:d2:67:cf: 70:db:56:07:21:dd:94:8d:39:62:3f:4d:08:bf:6f:ab:0c:dd: 6e:48:f8:4f:83:4b:bd:d6:65:8e:1a:24:ff:90:07:c1:da:d6: 35:f8:90:d7:2a:07:38:a2:0c:02:03:f2:05:06:95:83:80:04: 1f:96:4a:91:b3:68:9e:ab:61:92:51:be:5a:2c:98:0c:24:29: 72:b0:00:f0:34:d7:e2:8c:6f:da:85:1e:1e:c9:c9:5e:50:b6: 89:d2:26:1c:f9:b1:66:db:b4:9f:3d:45:1e:4e:3b:c9:9a:3d: d9:c0:b0:9c:46:21:4b:29:7a:96:0f:ea:64:c4:e7:b3:c6:62: 0e:60:11:29:be:52:9f:17:ee:f2:33:e4:dc:0a:6b:87:27:a0: ff:19:ae:51:85:43:4f:ef:b3:76:e8:46:cf:4e:ce:68:0d:5f: 56:ab:9c:b9:00:a1:30:2b:b7:c9:8c:34:43:b5:3f:be:bb:65: 81:01:3d:52:83:27:d9:50:41:f5:eb:cd:81:43:87:6e:0f:1e: 34:5d:94:a4:8a:95:cf:1c:c2:e6:03:75:33:ed:79:7a:3c:16: dc:ef:96:00:c7:38:c1:f7:b0:18:a1:5b:01:a6:43:09:55:5f: 62:8c:b5:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwNzIyMjAxNTIxWhcNMjUwNzI5MjAxNTIxWjAYMRYwFAYD VQQDEw02ODdmZjE1OS00YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqB+SJZic5zqdsboIsOq3U78R1BATsKjIFjQ92ICxX/OsIqsl3BHJRcl0H9Zf 4hr08+tsM7sYwLMlRZYZS3FqyV330XwjZakVq89PE9/iO7R+FBo7GTxk7mAnXfZ1 m8wmtpaQx+DsOn9IFIe/EtpKvLgL7Ng10IS6lKySz00dAxouZZbQehGbA8Y1Yk/r iWz2+CX68Q3CvTzTpe+YgG4aPdhqVBa8jYWswL7fEEKZDAVAKiKBP0D81et6BdsB YxGUFoh8fyxlIEidufkEUYePdLq+MX9xPnTBtke+VVj6IDN8BJ1JekTTuJeI1H47 pOq6B0fBKkrFWud0p3N6imsLUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAEUTUE riTko6jF71/cpytVe3+4MB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKFHkhmm3hzymUlDQ2b/rSZ89w21YHId2UjTliP00Iv2+rDN1uSPhP g0u91mWOGiT/kAfB2tY1+JDXKgc4ogwCA/IFBpWDgAQflkqRs2ieq2GSUb5aLJgM JClysADwNNfijG/ahR4eycleULaJ0iYc+bFm27SfPUUeTjvJmj3ZwLCcRiFLKXqW D+pkxOezxmIOYBEpvlKfF+7yM+TcCmuHJ6D/Ga5RhUNP77N26EbPTs5oDV9Wq5y5 AKEwK7fJjDRDtT++u2WBAT1SgyfZUEH1682BQ4duDx40XZSkipXPHMLmA3Uz7Xl6 PBbc75YAxzjB97AYoVsBpkMJVV9ijLW4 -----END CERTIFICATE-----Generated at Wed Jul 23 18:49:33 2025 by rpki-client