$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: T28rAA5OOGeYBXO7awkONnR8CMdnkv6siuZKS4GIDuU= Subject key identifier: 19:7B:DD:CF:35:CF:75:1F:7F:95:F0:77:1C:BB:DE:7F:48:B8:EE:F2 Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 181C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 1812 Signing time: Mon 08 Sep 2025 16:33:10 +0000 Manifest this update: Mon 08 Sep 2025 16:33:09 +0000 Manifest next update: Mon 15 Sep 2025 16:33:09 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: ZYHXVcR6fA6x9+NQtRsBgKxXRJQSNsX9U000audZuNM=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: FXxg8JbRyxhX/govLjKDj9hLX7J7czh75q9/plpdJE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6172 (0x181c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Sep 8 16:33:09 2025 GMT Not After : Sep 15 16:33:09 2025 GMT Subject: CN=68bf0545-b867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4c:98:7f:bc:d6:e6:85:35:4c:ec:08:75:be: a7:ca:60:2b:a6:22:4e:5f:60:33:aa:84:90:36:9d: d0:2b:48:06:f7:d7:a8:ed:6c:79:39:ae:02:7c:c6: 31:fe:8d:dc:82:28:fd:6e:07:5e:14:d6:86:ad:98: 7b:d8:40:dc:49:ee:65:d8:89:04:e4:ea:df:7a:af: 3b:bc:92:c4:62:3f:4d:de:22:a3:a6:9c:b9:7d:38: d4:d2:66:c5:32:78:bd:7f:8c:b1:38:43:62:06:75: 71:4b:8c:30:97:07:b3:e8:85:2e:b1:ed:3c:38:8f: 7e:c3:dc:52:b2:dd:8a:bb:b0:83:84:58:b0:fb:e0: 70:28:10:a7:2d:95:a1:00:c0:b8:e7:74:4b:2e:32: 8f:5b:1f:d6:89:b2:1f:ee:ab:9a:6c:c0:62:59:c5: c0:48:2b:47:1a:eb:b2:8d:ef:63:5e:e0:ca:ce:e6: e8:e7:31:78:42:33:7f:62:b7:a5:e9:4d:da:de:f1: 55:a4:65:e6:5d:8d:e7:00:79:d2:66:b7:39:a3:c4: 9e:4f:a1:8c:dd:1b:db:dc:77:9d:5b:ef:f8:72:9b: c1:60:9d:ae:94:1c:17:7a:2e:19:25:5d:3f:01:aa: 4f:f8:cf:76:8d:93:a3:4e:5c:7a:15:dc:bf:ee:de: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7B:DD:CF:35:CF:75:1F:7F:95:F0:77:1C:BB:DE:7F:48:B8:EE:F2 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:3d:0d:63:1d:7b:9c:c6:0e:d2:44:03:e6:5a:3e:b9:bb:66: dd:77:20:14:63:cf:80:f4:82:c2:42:49:ab:de:64:07:67:24: bf:a9:07:88:27:37:de:0f:86:6c:9b:ea:e8:b5:7e:dc:ba:3d: ec:39:e6:0e:6b:90:a1:fd:c9:d1:c6:ad:3e:b4:89:e2:dc:d8: 2d:55:2f:03:95:11:d5:b2:1a:85:c5:d3:4e:2e:ba:aa:4a:a7: 5c:27:4c:fd:29:fc:39:e6:51:39:ae:39:ba:a4:e6:9a:6a:a4: 3a:57:1e:c7:32:de:ae:87:95:3e:75:85:2b:fa:a2:57:27:1b: df:d9:3e:7d:26:91:f0:e7:3d:cc:da:59:a2:17:9b:f5:fb:e3: 3c:fa:ad:c2:b9:cb:70:4e:88:0a:ee:58:2d:04:88:7d:a7:ff: b3:1a:b0:a8:66:27:2a:4b:a1:f5:44:10:1f:87:53:be:69:93: 1c:f3:37:17:56:e9:71:ba:38:bd:78:3d:a0:0c:f3:7b:c8:80: 7b:3b:ff:c0:79:3d:64:cd:a4:6f:78:ca:fa:99:bc:e6:a4:40: c1:08:f1:2c:bc:09:20:8a:a3:30:e7:6c:c8:5e:66:7d:5f:f8: a0:2d:5a:59:35:70:7f:53:1e:a0:5f:72:21:30:75:19:61:50: 95:58:b9:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwOTA4MTYzMzA5WhcNMjUwOTE1MTYzMzA5WjAYMRYwFAYD VQQDEw02OGJmMDU0NS1iODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUyYf7zW5oU1TOwIdb6nymArpiJOX2AzqoSQNp3QK0gG99eo7Wx5Oa4CfMYx /o3cgij9bgdeFNaGrZh72EDcSe5l2IkE5Orfeq87vJLEYj9N3iKjppy5fTjU0mbF Mni9f4yxOENiBnVxS4wwlwez6IUuse08OI9+w9xSst2Ku7CDhFiw++BwKBCnLZWh AMC453RLLjKPWx/WibIf7quabMBiWcXASCtHGuuyje9jXuDKzubo5zF4QjN/Yrel 6U3a3vFVpGXmXY3nAHnSZrc5o8SeT6GM3Rvb3HedW+/4cpvBYJ2ulBwXei4ZJV0/ AapP+M92jZOjTlx6Fdy/7t7E7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBl73c81 z3Uff5Xwdxy73n9IuO7yMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZPQ1jHXucxg7SRAPmWj65u2bddyAUY8+A9ILCQkmr3mQHZyS/qQeI JzfeD4Zsm+rotX7cuj3sOeYOa5Ch/cnRxq0+tIni3NgtVS8DlRHVshqFxdNOLrqq SqdcJ0z9Kfw55lE5rjm6pOaaaqQ6Vx7HMt6uh5U+dYUr+qJXJxvf2T59JpHw5z3M 2lmiF5v1++M8+q3CuctwTogK7lgtBIh9p/+zGrCoZicqS6H1RBAfh1O+aZMc8zcX Vulxuji9eD2gDPN7yIB7O//AeT1kzaRveMr6mbzmpEDBCPEsvAkgiqMw52zIXmZ9 X/igLVpZNXB/Ux6gX3IhMHUZYVCVWLnh -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:53 2025 by rpki-client