$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft File: YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft (raw, json) Hash identifier: hZdFUpgnaMl4hk56QLkYSJsQtzk9Fv+eEMJcQ/BF1VU= Subject key identifier: B5:27:2C:13:F0:8F:9F:E1:0D:85:8F:13:70:21:55:D0:31:E5:43:53 Authority key identifier: 62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC Certificate issuer: /CN=A91685E9/serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft Manifest number: 95 Signing time: Fri 05 Sep 2025 07:14:30 +0000 Manifest this update: Fri 05 Sep 2025 07:14:30 +0000 Manifest next update: Fri 12 Sep 2025 07:14:30 +0000 Files and hashes: 1: YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl (hash: 7NE2fkW0UD19+XrMlKRofyNGGyShEoAWrH/BLJah8Ys=) 2: E3239FCAD48C11EFA27EEC37C4F9AE02.roa (hash: fYzwGdwCqYZskymy95U02CPM2CRp+XXOXIkMFaQRIIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Validity Not Before: Sep 5 07:14:30 2025 GMT Not After : Sep 12 07:14:30 2025 GMT Subject: CN=68ba8dd6-1ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:e7:b5:1c:d3:71:f6:3e:5b:c0:eb:f5:2b: 55:71:02:10:ef:0e:5a:53:f9:27:f6:9b:83:a4:f2: 57:b7:fe:32:2c:0d:d1:1f:d8:83:d5:b1:e2:46:64: b9:97:5f:d1:1b:7f:54:81:47:aa:66:5a:61:4a:69: 7a:e6:b4:df:a3:4a:34:a4:38:91:22:5e:34:08:d4: f1:c4:75:54:8f:38:80:73:b6:da:40:9c:35:ce:30: e3:83:6b:1a:2a:69:8f:94:70:8b:3e:7a:80:41:28: a8:7d:4f:b0:a8:bc:2e:79:27:d6:ef:78:70:dd:40: f6:e1:2f:b0:0b:bc:98:31:66:2a:97:67:5b:5f:29: 3b:03:4a:fb:2c:ac:16:9d:e5:53:54:dc:48:b6:30: 9b:18:f3:fc:00:2d:ec:cc:2b:60:9d:40:86:1d:11: d5:fd:30:58:f5:f7:8e:c4:f0:a9:01:6d:69:9e:ac: 1e:25:65:87:be:65:86:01:85:a2:0b:9f:05:c6:79: 03:7e:d6:d9:82:dc:03:24:9d:b4:1a:c7:d2:e7:1d: 0b:8f:51:92:f8:67:c5:8d:43:1c:20:6d:b7:ac:2c: 66:1c:bd:11:b4:5c:af:ef:b1:38:ac:f1:58:be:35: d7:eb:ce:b8:9f:8f:db:94:7c:63:1a:84:0f:31:c0: 6f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:27:2C:13:F0:8F:9F:E1:0D:85:8F:13:70:21:55:D0:31:E5:43:53 X509v3 Authority Key Identifier: keyid:62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:ee:66:3a:f5:9a:3a:42:76:3c:5b:3a:b1:65:ef:f8:26:c0: 8d:cb:ed:92:fa:b9:e5:36:f3:56:a5:5a:73:bc:fc:12:e7:b0: 84:3d:83:31:dd:3e:85:ba:30:c1:c9:55:69:5d:55:4f:bf:ee: cd:fa:4f:f0:e2:38:27:1f:ec:05:b1:ff:cb:62:bd:0a:73:02: f5:22:8b:1d:9f:d6:de:b0:66:a1:29:72:4d:ad:42:91:fb:56: 3b:54:cd:c7:34:d6:19:b0:bb:b5:65:19:5d:d7:e4:8f:6c:aa: d7:44:2c:0b:9b:60:46:95:d4:f1:d4:fd:b7:84:7f:70:2d:73: 6e:8a:9c:a3:f4:1f:0d:40:ab:2e:89:6f:e8:b7:f2:65:5b:b7: b2:1f:a4:8b:82:8f:4b:43:14:ab:e6:4e:4b:0c:66:a7:fe:d9: 33:e0:e3:91:ec:77:d5:35:07:09:38:0b:82:fd:a5:ee:e4:65: 56:fe:74:60:51:51:25:6d:64:e1:06:e8:72:f6:aa:48:a8:f6: 73:21:53:25:bc:04:6c:2f:cc:6b:4d:14:3a:4d:36:68:37:5a: 24:fb:8a:37:da:b3:64:93:6d:4b:cc:b2:38:dd:77:08:54:f2: 69:da:e2:92:ac:88:ee:05:7b:a5:ce:7a:3c:1d:9d:c8:76:68: d0:ca:e2:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKDYyNEI5NkUxRDY2NUVENzhFNzhERkFGNkMyMjAxOTEw NzNEQjY2Q0MwHhcNMjUwOTA1MDcxNDMwWhcNMjUwOTEyMDcxNDMwWjAYMRYwFAYD VQQDEw02OGJhOGRkNi0xZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjvntRzTcfY+W8Dr9StVcQIQ7w5aU/kn9puDpPJXt/4yLA3RH9iD1bHiRmS5 l1/RG39UgUeqZlphSml65rTfo0o0pDiRIl40CNTxxHVUjziAc7baQJw1zjDjg2sa KmmPlHCLPnqAQSiofU+wqLwueSfW73hw3UD24S+wC7yYMWYql2dbXyk7A0r7LKwW neVTVNxItjCbGPP8AC3szCtgnUCGHRHV/TBY9feOxPCpAW1pnqweJWWHvmWGAYWi C58FxnkDftbZgtwDJJ20GsfS5x0Lj1GS+GfFjUMcIG23rCxmHL0RtFyv77E4rPFY vjXX6864n4/blHxjGoQPMcBvkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUnLBPw j5/hDYWPE3AhVdAx5UNTMB8GA1UdIwQYMBaAFGJLluHWZe1454369sIgGRBz22bM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DMTEyRjU1Q0Qx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi9Za3VXNGRabDdYam5qZnIyd2lBWkVIUGJa c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lrdVc0ZFpsN1hqbmpmcjJ3aUFaRUhQYlpzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODVFOS9DMTEyRjU1Q0QxNzYxMUVGOTVDNURFNUFDNEY5QUUwMi9Za3VXNGRabDdY am5qZnIyd2lBWkVIUGJac3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDd7mY69Zo6QnY8WzqxZe/4JsCNy+2S+rnlNvNWpVpzvPwS57CEPYMx 3T6FujDByVVpXVVPv+7N+k/w4jgnH+wFsf/LYr0KcwL1Iosdn9besGahKXJNrUKR +1Y7VM3HNNYZsLu1ZRld1+SPbKrXRCwLm2BGldTx1P23hH9wLXNuipyj9B8NQKsu iW/ot/JlW7eyH6SLgo9LQxSr5k5LDGan/tkz4OOR7HfVNQcJOAuC/aXu5GVW/nRg UVElbWThBuhy9qpIqPZzIVMlvARsL8xrTRQ6TTZoN1ok+4o32rNkk21LzLI43XcI VPJp2uKSrIjuBXulzno8HZ3IdmjQyuIn -----END CERTIFICATE-----Generated at Sat Sep 6 15:12:24 2025 by rpki-client