$ rpki-client -vvf rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft File: -YvpQtnreFakMNG8KUc7xN1nf-o.mft (raw, json) Hash identifier: +GjBkk0S3yvLYeWRjnTs02RR13PSavRCOrTzb7kpAdE= Subject key identifier: 02:E6:3C:60:D8:A6:F2:C4:91:26:7A:2C:35:AB:33:D7:74:06:CE:06 Authority key identifier: F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA Certificate issuer: /CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft Manifest number: E4 Signing time: Fri 05 Sep 2025 05:47:45 +0000 Manifest this update: Fri 05 Sep 2025 05:47:44 +0000 Manifest next update: Fri 12 Sep 2025 05:47:44 +0000 Files and hashes: 1: -YvpQtnreFakMNG8KUc7xN1nf-o.crl (hash: VANJxjfjUgYLRYIPcLZIYarKw8b8mQtjxKlO4DOXNXg=) 2: 5E1227E22DD511EF9AFE395EC4F9AE02.roa (hash: //CtK2APwvuKqYfNGso7I/JYlqJyjoNEWh980lWprcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91949C1, serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Validity Not Before: Sep 5 05:47:44 2025 GMT Not After : Sep 12 05:47:44 2025 GMT Subject: CN=68ba7981-cdc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c1:e0:91:03:36:83:5a:a3:3a:19:49:4f:9a: 12:e4:21:b9:1c:bb:14:d4:72:5d:f7:b7:60:b6:ff: 6a:fa:e1:3c:32:1d:55:08:db:be:3b:90:eb:e2:da: 94:c8:4e:8f:df:f4:d6:89:c4:e7:1f:1e:91:9c:b0: e4:c4:e6:ce:2a:6c:50:c8:b1:06:e3:bf:5c:d1:ad: 4a:0b:35:a5:b8:1b:cc:42:e2:a2:eb:15:40:5f:d7: a6:88:7c:6e:1f:c3:59:e0:22:9a:92:88:7d:1c:c7: d3:50:c4:4d:aa:e1:54:b8:2e:f1:a8:24:92:11:17: 9e:65:85:c3:8c:d2:b6:77:d1:2c:07:3b:b8:91:62: 77:36:72:b7:f4:94:f5:9a:b0:c9:7c:33:77:4b:1a: 40:47:e4:e5:97:e9:73:0f:59:22:3c:94:a3:be:b3: 6f:ce:ef:d2:af:12:2e:06:8e:42:f2:b6:99:93:d8: d3:29:f1:72:43:87:89:fe:b7:6b:06:d8:75:65:9a: ae:cd:99:47:f0:44:c9:a1:56:8b:30:70:6f:f7:a0: bc:ff:c5:18:f8:22:1f:1c:77:c6:09:80:29:3f:d0: b2:4d:9d:85:a0:77:3e:58:19:98:13:a6:82:55:81: b3:d2:ce:b3:ca:a1:58:00:1d:dd:30:76:4a:88:8f: 22:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E6:3C:60:D8:A6:F2:C4:91:26:7A:2C:35:AB:33:D7:74:06:CE:06 X509v3 Authority Key Identifier: keyid:F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:70:11:07:e9:d4:74:ae:27:da:67:ae:da:63:eb:6c:78:dd: 6f:37:b6:7e:b6:3b:f7:0b:ba:56:a0:10:ee:7f:a2:5b:95:87: 90:9e:c8:29:16:d4:33:eb:62:45:5f:70:69:6f:7a:43:00:8f: 9a:e1:0c:4c:5f:4d:28:f3:a8:82:9f:7f:79:98:c2:6d:7d:3b: 3d:2e:c9:e7:89:53:1b:2f:16:6e:28:c6:15:46:ed:a0:09:5c: c9:ba:b9:9e:6b:c7:ae:f0:f7:08:dd:53:db:07:62:a7:43:da: d5:61:6b:2f:39:96:5e:9f:f6:a0:aa:6c:18:01:eb:a9:77:e7: d8:36:be:c3:d4:42:1c:a0:c7:92:f2:82:89:62:d4:1d:90:c2: 69:85:ab:4a:0c:5d:e8:0b:2c:40:7d:44:70:bf:e8:3f:c9:5d: 38:31:12:57:3d:bf:b4:5b:18:0a:f2:40:f6:37:bd:4a:81:44: df:06:03:8e:0d:8d:4f:9a:8f:77:53:1b:6e:39:b4:f6:8e:e2: 3a:36:9b:ef:20:7d:fd:12:ce:b1:22:42:dc:0a:51:3f:e6:88: 0b:78:15:57:e8:a6:eb:d0:74:75:95:af:34:d1:ab:46:74:a2: 55:d8:a6:12:15:3a:00:af:f1:da:61:92:0d:a1:b0:6c:37:ec: 2a:9f:20:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ5QzExMTAvBgNVBAUTKEY5OEJFOTQyRDlFQjc4NTZBNDMwRDFCQzI5NDczQkM0 REQ2NzdGRUEwHhcNMjUwOTA1MDU0NzQ0WhcNMjUwOTEyMDU0NzQ0WjAYMRYwFAYD VQQDEw02OGJhNzk4MS1jZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sHgkQM2g1qjOhlJT5oS5CG5HLsU1HJd97dgtv9q+uE8Mh1VCNu+O5Dr4tqU yE6P3/TWicTnHx6RnLDkxObOKmxQyLEG479c0a1KCzWluBvMQuKi6xVAX9emiHxu H8NZ4CKakoh9HMfTUMRNquFUuC7xqCSSEReeZYXDjNK2d9EsBzu4kWJ3NnK39JT1 mrDJfDN3SxpAR+Tll+lzD1kiPJSjvrNvzu/SrxIuBo5C8raZk9jTKfFyQ4eJ/rdr Bth1ZZquzZlH8ETJoVaLMHBv96C8/8UY+CIfHHfGCYApP9CyTZ2FoHc+WBmYE6aC VYGz0s6zyqFYAB3dMHZKiI8iLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALmPGDY pvLEkSZ6LDWrM9d0Bs4GMB8GA1UdIwQYMBaAFPmL6ULZ63hWpDDRvClHO8TdZ3/q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDlDMS8wOUY1MkIxNDJE RDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVGYWtNTkc4S1VjN3hOMW5m LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ZdnBRdG5yZUZha01ORzhLVWM3eE4xbmYtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDlDMS8wOUY1MkIxNDJERDUxMUVGOUU1MDVFNURDNEY5QUUwMi8tWXZwUXRucmVG YWtNTkc4S1VjN3hOMW5mLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUcBEH6dR0rifaZ67aY+tseN1vN7Z+tjv3C7pWoBDuf6JblYeQnsgp FtQz62JFX3Bpb3pDAI+a4QxMX00o86iCn395mMJtfTs9LsnniVMbLxZuKMYVRu2g CVzJurmea8eu8PcI3VPbB2KnQ9rVYWsvOZZen/agqmwYAeupd+fYNr7D1EIcoMeS 8oKJYtQdkMJphatKDF3oCyxAfURwv+g/yV04MRJXPb+0WxgK8kD2N71KgUTfBgOO DY1Pmo93UxtuObT2juI6NpvvIH39Es6xIkLcClE/5ogLeBVX6Kbr0HR1la800atG dKJV2KYSFToAr/HaYZINobBsN+wqnyDy -----END CERTIFICATE-----Generated at Sat Sep 6 15:12:23 2025 by rpki-client