$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft File: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft (raw, json) Hash identifier: O533A7I0l5AjKfsA9DW67YuJjXXZEM4bs76Z1B6h9TY= Subject key identifier: A0:5A:A4:FB:17:81:69:E7:A9:E6:2D:DD:74:F6:FC:5E:51:D6:98:40 Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft Manifest number: 0639 Signing time: Sun 20 Jul 2025 22:53:49 +0000 Manifest this update: Sun 20 Jul 2025 22:53:48 +0000 Manifest next update: Sun 27 Jul 2025 22:53:48 +0000 Files and hashes: 1: YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl (hash: juGzjRVPgYX8j3Q0IXR245EGOdIr6+IdzEhQweMUZpo=) 2: 7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa (hash: ZFyON0cFfqWSYmJESFiDKpaoMViJEmJBEJHpK/VixB8=) 3: 24365CBCF51411EFB44F001BC4F9AE02.roa (hash: WNqUPBF8HNjFohXgQh/4EEtiPRYZ8HZnCTlz6HaVU7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5998, serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Validity Not Before: Jul 20 22:53:48 2025 GMT Not After : Jul 27 22:53:48 2025 GMT Subject: CN=687d737d-813e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:50:46:44:ae:0b:4b:a9:27:9b:e0:a6:f5:73: b1:c3:1b:56:51:f2:dd:6c:58:ae:22:b6:68:2e:b3: 6d:9a:05:4d:71:89:b3:d0:b5:9f:e5:36:f3:ed:f3: 5d:b2:9e:84:da:8f:84:0a:ff:2c:44:d0:16:19:76: a4:4d:4b:21:8d:d1:22:65:45:e9:ca:e2:29:b6:6a: e2:3a:2c:4e:e8:e6:93:24:96:0e:00:9c:bd:97:d3: a0:64:b8:31:86:c1:b5:25:b6:94:26:4c:bb:96:49: 00:15:1e:53:42:3d:7f:1b:8c:62:c6:f8:7e:00:f6: 60:0c:5e:ef:b7:a7:4b:f6:a5:b5:2d:2b:6a:be:8b: 58:b9:75:e2:b7:3c:0d:5e:7d:90:65:68:d0:fd:f8: a2:5c:46:bb:0c:6d:c5:ba:fa:ee:42:dc:a3:de:14: e0:9f:81:06:f7:5f:7a:c1:f7:12:83:1e:fd:e3:05: 23:5a:a7:46:32:69:d2:d7:a1:7d:61:0a:c7:c3:dc: fc:1a:1f:4f:b3:8f:76:0f:bb:4c:e6:56:36:60:af: c5:b6:de:f7:37:41:be:d2:a6:79:45:eb:db:08:b3: 43:7b:fe:c0:cd:3e:19:02:76:7d:77:be:5c:e4:9c: cc:c8:8f:52:1a:8a:d3:1b:cd:14:5c:aa:6f:40:bf: ea:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5A:A4:FB:17:81:69:E7:A9:E6:2D:DD:74:F6:FC:5E:51:D6:98:40 X509v3 Authority Key Identifier: keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:c1:ff:70:16:a5:e8:d2:7d:c9:65:d4:2e:68:13:d3:b5:fb: 62:90:31:d6:44:5f:1d:8b:1d:f9:21:d6:c2:ac:f5:1a:f7:84: d7:9b:a5:d7:87:af:42:58:9a:be:19:1b:d0:a4:c5:9c:25:5b: 28:cd:29:4e:d9:30:ee:cb:42:8a:7c:9b:68:3f:20:4f:aa:7d: ce:a9:d8:ef:fe:79:de:fb:05:b7:db:b0:fe:1c:35:30:d9:bb: db:f4:c4:32:e9:f8:01:92:5e:6a:4e:c5:9e:38:01:7c:26:57: ba:b4:0f:d9:d7:be:50:d9:bc:ab:f0:0a:c9:25:4b:7d:30:f2: 9e:f6:91:6c:c2:14:53:95:dd:55:da:04:e6:bb:f4:b7:44:29: 4d:55:e0:65:c1:9f:4e:f4:27:81:33:42:bb:c6:5d:eb:b4:87: 5a:c6:2b:57:39:85:49:3c:63:61:74:d0:b1:ac:f2:93:d1:15: 76:ad:7d:b3:86:ce:e3:f2:dd:aa:b1:6c:1f:84:4d:00:4d:e0: 80:3d:8d:77:ab:46:d6:52:cc:2c:53:6b:40:ca:f0:2c:b1:d9: f7:d4:2b:b4:59:be:1b:c3:6d:37:5a:b4:2a:f1:ea:dc:d0:87: 5d:12:29:c6:39:09:8a:54:a4:42:1e:75:c3:ae:94:11:5d:a6: fa:d9:c9:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU5OTgxMTAvBgNVBAUTKDYwMURDNTRCMUY1MjA1MDgwRUZEOUFBNkNGQTVBNTFD NEE3OUREMkIwHhcNMjUwNzIwMjI1MzQ4WhcNMjUwNzI3MjI1MzQ4WjAYMRYwFAYD VQQDEw02ODdkNzM3ZC04MTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1BGRK4LS6knm+Cm9XOxwxtWUfLdbFiuIrZoLrNtmgVNcYmz0LWf5Tbz7fNd sp6E2o+ECv8sRNAWGXakTUshjdEiZUXpyuIptmriOixO6OaTJJYOAJy9l9OgZLgx hsG1JbaUJky7lkkAFR5TQj1/G4xixvh+APZgDF7vt6dL9qW1LStqvotYuXXitzwN Xn2QZWjQ/fiiXEa7DG3FuvruQtyj3hTgn4EG9196wfcSgx794wUjWqdGMmnS16F9 YQrHw9z8Gh9Ps492D7tM5lY2YK/Ftt73N0G+0qZ5RevbCLNDe/7AzT4ZAnZ9d75c 5JzMyI9SGorTG80UXKpvQL/qRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBapPsX gWnnqeYt3XT2/F5R1phAMB8GA1UdIwQYMBaAFGAdxUsfUgUIDv2aps+lpRxKed0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTk5OC8yQzU5MkUyODlG MUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JRZ09fWnFtejZXbEhFcDUz U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCM0ZTeDlTQlFnT19acW16NldsSEVwNTNTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTk5OC8yQzU5MkUyODlGMUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JR Z09fWnFtejZXbEhFcDUzU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdwf9wFqXo0n3JZdQuaBPTtftikDHWRF8dix35IdbCrPUa94TXm6XX h69CWJq+GRvQpMWcJVsozSlO2TDuy0KKfJtoPyBPqn3Oqdjv/nne+wW327D+HDUw 2bvb9MQy6fgBkl5qTsWeOAF8Jle6tA/Z175Q2byr8ArJJUt9MPKe9pFswhRTld1V 2gTmu/S3RClNVeBlwZ9O9CeBM0K7xl3rtIdaxitXOYVJPGNhdNCxrPKT0RV2rX2z hs7j8t2qsWwfhE0ATeCAPY13q0bWUswsU2tAyvAssdn31Cu0Wb4bw203WrQq8erc 0IddEinGOQmKVKRCHnXDrpQRXab62ckS -----END CERTIFICATE-----Generated at Tue Jul 22 00:13:25 2025 by rpki-client