$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: 9ffPPJvpSK6cuc6UZwHzSSWgWq0ouEmPWQF3dRkNSmM= Subject key identifier: BD:F3:F6:76:34:3C:91:60:08:8A:EC:CB:A1:1D:42:69:B9:60:C0:65 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B48 Signing time: Thu 18 Sep 2025 19:21:32 +0000 Manifest this update: Thu 18 Sep 2025 19:21:31 +0000 Manifest next update: Thu 25 Sep 2025 19:21:31 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: fpktRJf6Eks1rPFubhi2Orf+NKjtgmofL74yeFOySSk=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: oB4ONhIoOVHFLHE+zKePSEzncY8zQatFoaGKjLj9U3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Sep 18 19:21:31 2025 GMT Not After : Sep 25 19:21:31 2025 GMT Subject: CN=68cc5bbb-dfb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bf:f4:37:6e:f3:12:51:26:05:7f:2b:0c:f6: 96:35:03:2d:58:27:01:8d:24:de:22:dd:53:1a:e5: ef:66:74:ea:17:37:dc:7c:b2:1f:84:6c:27:8c:2c: 87:55:b8:56:4b:45:ae:11:a9:5c:db:bb:79:06:c5: a8:79:d3:13:48:bf:35:cc:37:cc:0a:bf:65:dd:33: 73:6a:98:3e:a3:8d:65:73:37:ce:88:d5:8c:ab:3e: 5a:a3:1a:c7:c0:76:fe:e7:e9:c5:54:62:27:75:c9: c8:2b:a4:a0:11:f8:b6:e4:9e:8c:19:05:1b:f8:b9: ef:21:51:3f:0b:eb:e6:37:a6:95:69:c0:8a:c3:f9: 65:a4:7b:55:fd:5a:6d:09:db:cb:1b:cb:3c:9e:76: 3e:f2:ae:21:50:41:f8:ff:c8:06:89:58:62:46:ed: 2c:08:8a:24:c6:3e:50:64:ca:0c:6c:34:e6:62:ef: d8:4c:6b:5e:ba:f8:cb:65:c5:88:e8:8d:c1:2f:88: e2:d0:e9:f0:cd:a1:ae:e5:df:f1:2d:fe:53:88:42: fb:ab:6e:e0:4b:b2:ed:90:08:84:05:bc:a1:c5:cc: 4b:6d:01:8c:a3:a5:eb:5c:28:74:7f:ec:03:4b:57: 0a:e3:a9:bb:90:af:45:b7:03:00:c2:0a:77:97:e0: 7a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F3:F6:76:34:3C:91:60:08:8A:EC:CB:A1:1D:42:69:B9:60:C0:65 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:18:a2:b4:72:80:19:f0:4e:d6:ab:84:e3:eb:75:9f:87:75: 37:51:9b:d2:5f:f9:67:9d:87:4b:30:55:98:bb:e3:05:09:db: 0f:24:c9:4a:50:7a:36:b4:8e:97:be:7c:9f:8a:3e:0f:c5:06: e0:b6:c1:67:6d:aa:6c:b9:39:1a:d6:02:a5:21:37:c7:d6:e0: a9:91:dd:e4:e1:2b:56:06:65:28:47:b7:dd:ed:ca:f3:91:eb: e9:09:5e:f7:18:71:55:82:b7:c5:c9:d9:52:99:4b:44:e9:93: e6:9b:24:45:6a:9f:08:c0:e6:7c:2b:e9:70:9f:5c:c8:41:6a: fc:bb:82:40:75:4c:8a:d7:2b:20:fa:a5:81:fb:59:5a:fd:1c: 0b:82:b8:82:1a:1a:eb:e6:37:65:c9:63:73:ab:b0:0b:a9:74: 45:64:c5:88:4a:ac:44:9b:9e:7c:21:da:2e:ea:4b:bf:4d:0d: 66:1a:3f:23:3b:6c:bc:e2:aa:37:3d:20:8c:90:ee:46:7f:c3: a4:1a:9e:1f:b0:c2:bb:b8:73:f2:75:60:35:db:b0:e9:a2:f4: 73:b9:87:a4:57:cc:b6:b6:6a:13:26:b0:ec:c4:ec:52:6a:b8: c7:5a:b1:46:f2:94:d5:c9:86:19:66:ae:be:1c:e5:b3:c8:6e: cc:9c:02:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwOTE4MTkyMTMxWhcNMjUwOTI1MTkyMTMxWjAYMRYwFAYD VQQDEw02OGNjNWJiYi1kZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyr/0N27zElEmBX8rDPaWNQMtWCcBjSTeIt1TGuXvZnTqFzfcfLIfhGwnjCyH VbhWS0WuEalc27t5BsWoedMTSL81zDfMCr9l3TNzapg+o41lczfOiNWMqz5aoxrH wHb+5+nFVGIndcnIK6SgEfi25J6MGQUb+LnvIVE/C+vmN6aVacCKw/llpHtV/Vpt CdvLG8s8nnY+8q4hUEH4/8gGiVhiRu0sCIokxj5QZMoMbDTmYu/YTGteuvjLZcWI 6I3BL4ji0OnwzaGu5d/xLf5TiEL7q27gS7LtkAiEBbyhxcxLbQGMo6XrXCh0f+wD S1cK46m7kK9FtwMAwgp3l+B6gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3z9nY0 PJFgCIrsy6EdQmm5YMBlMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFGKK0coAZ8E7Wq4Tj63Wfh3U3UZvSX/lnnYdLMFWYu+MFCdsPJMlK UHo2tI6Xvnyfij4PxQbgtsFnbapsuTka1gKlITfH1uCpkd3k4StWBmUoR7fd7crz kevpCV73GHFVgrfFydlSmUtE6ZPmmyRFap8IwOZ8K+lwn1zIQWr8u4JAdUyK1ysg +qWB+1la/RwLgriCGhrr5jdlyWNzq7ALqXRFZMWISqxEm558Idou6ku/TQ1mGj8j O2y84qo3PSCMkO5Gf8OkGp4fsMK7uHPydWA127DpovRzuYekV8y2tmoTJrDsxOxS arjHWrFG8pTVyYYZZq6+HOWzyG7MnAJ6 -----END CERTIFICATE-----Generated at Fri Sep 19 05:32:41 2025 by rpki-client