$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: nbO3jAw8xqRQZpsFWIeasK2jNEP9H+/ZgaH++mPQRJo= Subject key identifier: CE:46:7F:8A:F8:7B:E5:17:DF:50:EA:3F:7E:33:34:9A:6B:3B:4E:F9 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: D7 Signing time: Thu 04 Sep 2025 21:54:38 +0000 Manifest this update: Thu 04 Sep 2025 21:54:37 +0000 Manifest next update: Thu 11 Sep 2025 21:54:37 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: Uk1B+x1qZBsmqfmTtXGbI436Rftu7LSVmRfzOIUPlRA=) 2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: C+d1LQ7j4suoEMqt6jmxPLK9+SyxrHsAW+pg0qKDarw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 21:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Sep 4 21:54:37 2025 GMT Not After : Sep 11 21:54:37 2025 GMT Subject: CN=68ba0a9e-9dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:5b:9a:94:46:98:51:f5:a4:23:e5:15:51: 03:31:39:a8:9a:b6:c6:8e:06:4c:9b:4d:c9:c8:c1: ef:b3:bf:03:53:47:f6:b4:9a:6b:95:31:7d:03:63: 6c:5a:7f:e7:a0:fa:28:62:71:fe:f7:c8:b5:63:62: 28:7c:2d:08:ef:46:9e:b0:72:a0:6e:3c:5a:65:cb: fb:06:e8:d0:22:e4:e6:20:d2:9c:59:97:15:6a:9a: d4:55:9f:e4:27:2a:97:59:49:32:43:9d:2b:38:f7: 9c:b6:c4:9d:df:53:31:a4:85:b4:cf:5b:0f:2f:89: 94:52:9e:0c:a7:d0:97:53:07:08:3e:b2:fb:ff:19: 1a:73:9d:84:27:ae:66:09:a1:c4:88:38:98:bb:d6: ef:24:c5:9e:aa:0c:0c:29:f7:9d:8a:78:43:e1:6d: 46:32:2a:7a:49:bf:86:35:70:3f:e0:0a:26:b5:1b: 00:8e:ea:ef:c2:55:fe:0f:cb:b1:a1:ed:da:66:5d: 58:1f:1a:64:96:ec:0f:63:44:d1:0f:60:55:cb:b9: ac:41:0c:4d:a9:7a:36:48:b3:80:35:64:5b:e7:e4: 17:d2:58:fd:e1:5e:ab:02:cf:37:88:c1:15:32:39: 7c:c5:14:5a:31:96:90:26:be:a8:93:28:25:4a:87: 2c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:46:7F:8A:F8:7B:E5:17:DF:50:EA:3F:7E:33:34:9A:6B:3B:4E:F9 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:0d:36:f4:ab:bc:39:ee:49:99:f7:2b:c0:60:a3:6e:a1:a7: 2a:09:a6:a4:80:a0:f3:41:6e:45:71:72:4e:f4:d2:5d:b0:61: 7e:73:a8:a2:31:6a:ae:ef:12:1a:d8:1e:a6:73:f7:37:70:98: c2:d6:ef:46:8f:0f:86:ec:41:29:34:18:dd:bb:c4:44:7f:6b: 87:fc:c3:18:5b:ee:eb:3e:a6:16:41:36:10:5c:44:cc:fb:a6: 82:42:60:94:af:bb:85:69:5f:76:55:dd:40:9b:0e:15:4e:89: 35:fe:5d:13:79:1c:d5:56:2e:86:75:f2:0f:5b:3e:40:ab:2e: 2d:94:3e:e3:12:5e:02:20:e5:a3:1e:1f:f2:22:04:c4:2f:6f: 82:88:c3:9a:eb:b9:83:04:a8:5c:aa:6b:df:52:b8:2e:41:6f: 98:c8:9c:a9:24:57:c4:1c:65:4f:43:92:76:6d:a5:84:28:fb: 2b:f9:5e:77:82:87:51:bb:f8:3e:4b:22:3b:8d:45:c6:df:f2: b2:35:e6:06:90:83:48:39:7f:02:65:57:e7:1a:cd:63:b5:56: 50:2e:3c:09:29:7d:b2:13:38:87:7f:7e:07:d6:4f:1d:aa:9b: 03:87:45:57:c5:de:35:bd:08:67:ea:49:af:b7:bc:7b:25:52: 2a:6f:20:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUwOTA0MjE1NDM3WhcNMjUwOTExMjE1NDM3WjAYMRYwFAYD VQQDEw02OGJhMGE5ZS05ZGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wxbmpRGmFH1pCPlFVEDMTmomrbGjgZMm03JyMHvs78DU0f2tJprlTF9A2Ns Wn/noPooYnH+98i1Y2IofC0I70aesHKgbjxaZcv7BujQIuTmINKcWZcVaprUVZ/k JyqXWUkyQ50rOPectsSd31MxpIW0z1sPL4mUUp4Mp9CXUwcIPrL7/xkac52EJ65m CaHEiDiYu9bvJMWeqgwMKfedinhD4W1GMip6Sb+GNXA/4AomtRsAjurvwlX+D8ux oe3aZl1YHxpkluwPY0TRD2BVy7msQQxNqXo2SLOANWRb5+QX0lj94V6rAs83iMEV Mjl8xRRaMZaQJr6okyglSocsBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5Gf4r4 e+UX31DqP34zNJprO075MB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyDTb0q7w57kmZ9yvAYKNuoacqCaakgKDzQW5FcXJO9NJdsGF+c6ii MWqu7xIa2B6mc/c3cJjC1u9Gjw+G7EEpNBjdu8REf2uH/MMYW+7rPqYWQTYQXETM +6aCQmCUr7uFaV92Vd1Amw4VTok1/l0TeRzVVi6GdfIPWz5Aqy4tlD7jEl4CIOWj Hh/yIgTEL2+CiMOa67mDBKhcqmvfUrguQW+YyJypJFfEHGVPQ5J2baWEKPsr+V53 godRu/g+SyI7jUXG3/KyNeYGkINIOX8CZVfnGs1jtVZQLjwJKX2yEziHf34H1k8d qpsDh0VXxd41vQhn6kmvt7x7JVIqbyCy -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:26 2025 by rpki-client