$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: yHThE+zDCAY1XQJf0/oJJFTUGcJ7Wo6L2lyDPWN7hYQ= Subject key identifier: 0A:83:6A:3E:FD:53:CF:49:59:C0:88:49:B8:6F:D0:F2:D0:29:15:DC Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1A8B Signing time: Sat 06 Sep 2025 16:23:59 +0000 Manifest this update: Sat 06 Sep 2025 16:23:59 +0000 Manifest next update: Sat 13 Sep 2025 16:23:59 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: Aky6WNG+py5xxtO++TXSeMgtkSIjE2wGHgVEzKplOtw=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6810 (0x1a9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Sep 6 16:23:59 2025 GMT Not After : Sep 13 16:23:59 2025 GMT Subject: CN=68bc601f-c8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:26:7e:81:01:3f:e4:cf:05:77:19:b9:11:92: 30:cd:b8:de:a6:b8:f1:d8:39:56:7b:9f:95:03:9f: 7e:a3:9a:20:68:d5:be:6a:a7:f2:09:a6:18:c6:d1: b0:c9:50:dd:c7:4e:3c:11:ab:d0:28:71:00:b5:96: ec:b3:03:e1:b6:65:c5:36:5a:29:5c:8f:33:90:6a: 99:df:1b:ef:11:e7:72:2b:16:05:ad:4e:2b:52:f2: 08:ba:f6:0e:b9:ad:8c:fd:03:52:33:cb:5b:17:bb: 1c:d9:9d:72:f2:cb:72:02:b5:44:72:8a:da:46:ed: ee:b1:e4:06:0d:4d:f4:16:35:9b:0f:b3:e6:33:7d: 11:bc:47:49:83:79:5f:cc:e8:cc:3e:09:de:c2:cb: 70:de:e4:ea:21:10:84:74:ae:28:3b:ee:12:95:9c: b3:77:a0:51:94:ff:69:b4:3c:60:e4:7a:05:f4:7d: 65:57:97:10:04:8e:91:72:42:1f:cb:d5:29:68:6e: 35:cb:3d:75:cc:23:aa:e3:65:e2:9a:e1:06:6f:16: 20:25:f2:e6:fe:e3:72:56:03:40:b2:c4:e6:bd:29: 63:70:5b:aa:41:f2:ad:44:0d:0a:b8:c9:a3:1c:a9: 8c:67:ad:7d:06:af:e2:51:1e:79:8e:fa:68:b0:a0: 45:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:83:6A:3E:FD:53:CF:49:59:C0:88:49:B8:6F:D0:F2:D0:29:15:DC X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:7e:21:cb:74:a4:2b:17:29:44:39:7c:e0:62:b1:59:1a:68: 58:3b:a6:b7:a6:74:8d:1d:75:4f:ce:75:c6:8f:f0:59:52:cb: 84:be:8f:1d:48:14:3a:75:7c:0b:aa:1d:27:0e:6a:3d:68:03: 64:52:a7:62:b3:b2:23:5d:d1:e1:e5:d3:d3:bb:bb:2d:81:ad: 1d:44:ef:43:08:32:d6:45:5c:f9:95:cf:36:0d:17:c1:6d:3f: c0:a3:c0:67:07:b1:f9:a0:22:c6:2e:31:cb:f0:42:e7:1c:97: 63:76:aa:27:30:2d:0b:da:bb:4f:d5:72:a7:3c:2e:28:6b:f4: a6:75:89:b0:a5:43:fe:5d:ab:9f:0e:73:c2:5b:ac:d1:12:86: 05:37:0e:4f:99:b4:87:15:0c:0d:e8:22:9c:93:a4:9f:02:8f: 93:09:da:86:c0:a4:1f:fb:23:ea:d2:d8:c9:b3:ae:99:72:16: 4b:be:22:7d:c3:56:96:9c:96:75:6c:ae:dc:21:00:c9:6e:91: 52:41:a1:7e:e6:71:a6:0d:9d:9a:47:66:70:e4:c8:55:a0:c5: 1a:13:86:99:8b:87:ba:1f:d4:27:18:c9:7f:81:88:ab:53:a7: 4c:cc:b3:e5:45:7e:5c:00:ed:7f:66:b5:4c:e1:01:08:f7:2c: 93:d7:bd:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUwOTA2MTYyMzU5WhcNMjUwOTEzMTYyMzU5WjAYMRYwFAYD VQQDEw02OGJjNjAxZi1jOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6SZ+gQE/5M8Fdxm5EZIwzbjeprjx2DlWe5+VA59+o5ogaNW+aqfyCaYYxtGw yVDdx048EavQKHEAtZbsswPhtmXFNlopXI8zkGqZ3xvvEedyKxYFrU4rUvIIuvYO ua2M/QNSM8tbF7sc2Z1y8styArVEcoraRu3useQGDU30FjWbD7PmM30RvEdJg3lf zOjMPgnewstw3uTqIRCEdK4oO+4SlZyzd6BRlP9ptDxg5HoF9H1lV5cQBI6RckIf y9UpaG41yz11zCOq42XimuEGbxYgJfLm/uNyVgNAssTmvSljcFuqQfKtRA0KuMmj HKmMZ619Bq/iUR55jvposKBFVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqDaj79 U89JWcCISbhv0PLQKRXcMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWfiHLdKQrFylEOXzgYrFZGmhYO6a3pnSNHXVPznXGj/BZUsuEvo8d SBQ6dXwLqh0nDmo9aANkUqdis7IjXdHh5dPTu7stga0dRO9DCDLWRVz5lc82DRfB bT/Ao8BnB7H5oCLGLjHL8ELnHJdjdqonMC0L2rtP1XKnPC4oa/SmdYmwpUP+Xauf DnPCW6zREoYFNw5PmbSHFQwN6CKck6SfAo+TCdqGwKQf+yPq0tjJs66ZchZLviJ9 w1aWnJZ1bK7cIQDJbpFSQaF+5nGmDZ2aR2Zw5MhVoMUaE4aZi4e6H9QnGMl/gYir U6dMzLPlRX5cAO1/ZrVM4QEI9yyT1732 -----END CERTIFICATE-----Generated at Sun Sep 7 10:53:00 2025 by rpki-client