$ rpki-client -vvf rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft File: ybbzh3rMoIEu_42KP1wESgwwvIA.mft (raw, json) Hash identifier: DAB8B3HSna04YqRblfpSex1P8ldZE23jnT0epZA8VVw= Subject key identifier: BA:CF:15:AD:8D:F4:7A:49:14:B0:4B:10:31:5F:06:EB:55:DB:4F:C0 Authority key identifier: C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 Certificate issuer: /CN=A91A77C2/serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft Manifest number: 05EC Signing time: Mon 08 Sep 2025 23:01:15 +0000 Manifest this update: Mon 08 Sep 2025 23:01:15 +0000 Manifest next update: Mon 15 Sep 2025 23:01:15 +0000 Files and hashes: 1: ybbzh3rMoIEu_42KP1wESgwwvIA.crl (hash: Uvrs4ed5+zzonkw3kZQv3Yd+XfgBCPUhYxAW3E18Yo0=) 2: E5692882C63411EB9E5F5F30C4F9AE02.roa (hash: NtEKqe9K8qVaWm1bTRQ0N6CeN9vSLJhLoVuJfNIm9AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A77C2, serialNumber=C9B6F3877ACCA0812EFF8D8A3F5C044A0C30BC80 Validity Not Before: Sep 8 23:01:15 2025 GMT Not After : Sep 15 23:01:15 2025 GMT Subject: CN=68bf603b-97df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1f:2e:b7:b6:50:a8:e0:ff:0f:33:37:6a:6a: 4b:13:f6:c6:19:50:90:7d:86:de:af:50:70:c6:25: a8:59:cd:c1:c4:7d:23:a9:29:38:1a:67:42:1b:77: cc:2d:e8:74:70:5e:3b:34:93:4a:44:de:05:95:59: 4b:cd:ff:40:97:48:5e:44:f4:24:dd:7b:84:cc:28: 7e:da:cc:75:c2:f3:3f:07:6d:d6:dd:41:98:c0:f4: 28:d8:e8:d5:a6:27:2e:50:f0:0a:3c:e1:21:5c:66: f2:2d:8f:4c:ba:ed:fd:91:cb:7f:3e:f9:19:c4:b2: fd:5d:72:e0:a1:1d:96:85:85:98:8d:55:8d:27:2d: f8:8a:7e:e5:66:f2:f9:b9:eb:0d:98:66:2f:8b:09: 9f:f2:a6:88:88:44:f4:00:19:09:93:0f:6c:cd:63: 0d:9c:83:1a:5c:ce:c4:53:f2:0f:91:96:c1:0e:e6: 2d:3f:13:74:1c:13:00:13:a2:33:e2:c0:e7:ff:d5: 21:47:9d:8e:49:af:9b:b6:6d:17:05:05:2f:27:09: e3:c4:79:e1:d6:6e:0e:d3:59:4b:07:ae:b8:04:44: d2:1d:e3:c6:70:5a:b4:3f:a4:6c:12:0a:18:cb:eb: 41:56:e0:29:00:b5:60:d9:ff:83:25:a5:ce:94:c7: dd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CF:15:AD:8D:F4:7A:49:14:B0:4B:10:31:5F:06:EB:55:DB:4F:C0 X509v3 Authority Key Identifier: keyid:C9:B6:F3:87:7A:CC:A0:81:2E:FF:8D:8A:3F:5C:04:4A:0C:30:BC:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybbzh3rMoIEu_42KP1wESgwwvIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A77C2/3EDAD10CC63211EBAAD74A2EC4F9AE02/ybbzh3rMoIEu_42KP1wESgwwvIA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b0:ad:75:96:f3:8d:24:b9:25:49:fd:ed:f8:45:12:84:a3: be:2a:c8:5b:66:14:15:66:4a:20:4f:71:03:5f:19:91:1a:39: dc:3b:0a:b0:d8:b4:7a:80:40:ea:e7:bd:30:59:da:96:4b:cf: 05:6b:a6:56:7c:56:08:c1:28:ea:ca:41:89:06:24:55:14:32: ea:51:14:b9:0c:98:80:1f:7c:13:32:48:ac:02:83:b1:d6:f4: 16:9e:59:2f:7a:ec:f7:f9:a7:72:3d:42:7d:1d:1d:b6:d0:1e: db:3e:38:6d:d0:2f:47:23:e0:f6:fd:24:dd:35:26:81:25:29: b8:7d:3e:6d:f4:79:63:65:1e:7f:26:91:45:94:d5:b3:7e:86: ae:b2:74:6e:eb:76:1e:0b:19:7b:22:3c:8f:61:b1:04:93:2b: 40:e1:c1:5f:95:6e:2a:39:b4:8f:39:ff:f3:de:e2:e5:57:d9: 9d:c8:d2:b8:4d:22:b3:e4:d9:63:89:2b:fc:a4:2c:25:31:06: c1:ad:71:54:87:90:63:23:c5:44:0a:ec:4e:8b:43:30:a9:40: 46:e5:25:c8:10:a4:38:e7:5f:b4:b0:5d:5e:3e:16:16:47:a5: 87:45:98:d3:7a:75:cf:9a:dd:93:38:0d:6e:02:cc:0e:a2:c7: 85:d4:c2:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3QzIxMTAvBgNVBAUTKEM5QjZGMzg3N0FDQ0EwODEyRUZGOEQ4QTNGNUMwNDRB MEMzMEJDODAwHhcNMjUwOTA4MjMwMTE1WhcNMjUwOTE1MjMwMTE1WjAYMRYwFAYD VQQDEw02OGJmNjAzYi05N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB8ut7ZQqOD/DzM3ampLE/bGGVCQfYber1BwxiWoWc3BxH0jqSk4GmdCG3fM Leh0cF47NJNKRN4FlVlLzf9Al0heRPQk3XuEzCh+2sx1wvM/B23W3UGYwPQo2OjV picuUPAKPOEhXGbyLY9Muu39kct/PvkZxLL9XXLgoR2WhYWYjVWNJy34in7lZvL5 uesNmGYviwmf8qaIiET0ABkJkw9szWMNnIMaXM7EU/IPkZbBDuYtPxN0HBMAE6Iz 4sDn/9UhR52OSa+btm0XBQUvJwnjxHnh1m4O01lLB664BETSHePGcFq0P6RsEgoY y+tBVuApALVg2f+DJaXOlMfdfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrPFa2N 9HpJFLBLEDFfButV20/AMB8GA1UdIwQYMBaAFMm284d6zKCBLv+Nij9cBEoMMLyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzdDMi8zRURBRDEwQ0M2 MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9JRXVfNDJLUDF3RVNnd3d2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liYnpoM3JNb0lFdV80MktQMXdFU2d3d3ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzdDMi8zRURBRDEwQ0M2MzIxMUVCQUFENzRBMkVDNEY5QUUwMi95YmJ6aDNyTW9J RXVfNDJLUDF3RVNnd3d2SUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQsK11lvONJLklSf3t+EUShKO+KshbZhQVZkogT3EDXxmRGjncOwqw 2LR6gEDq570wWdqWS88Fa6ZWfFYIwSjqykGJBiRVFDLqURS5DJiAH3wTMkisAoOx 1vQWnlkveuz3+adyPUJ9HR220B7bPjht0C9HI+D2/STdNSaBJSm4fT5t9HljZR5/ JpFFlNWzfoausnRu63YeCxl7IjyPYbEEkytA4cFflW4qObSPOf/z3uLlV9mdyNK4 TSKz5NljiSv8pCwlMQbBrXFUh5BjI8VECuxOi0MwqUBG5SXIEKQ451+0sF1ePhYW R6WHRZjTenXPmt2TOA1uAswOoseF1MLq -----END CERTIFICATE-----Generated at Tue Sep 9 13:31:24 2025 by rpki-client