$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft File: Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft (raw, json) Hash identifier: h/lOPOXUwR2u0Mp1x2PH1sgkv7kMqezrChMfS6dLiPo= Subject key identifier: 5E:4D:A4:AA:5B:9C:39:E0:F6:BF:00:3C:FD:D5:12:D7:2E:9E:48:54 Authority key identifier: 63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 Certificate issuer: /CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft Manifest number: 07F0 Signing time: Tue 16 Sep 2025 21:16:58 +0000 Manifest this update: Tue 16 Sep 2025 21:16:57 +0000 Manifest next update: Tue 23 Sep 2025 21:16:57 +0000 Files and hashes: 1: Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl (hash: B8IXJqOir8Nwt7HdVoBva4yUFiLZFb7iv9fADyYS7E4=) 2: 7634D328351411EBBF864670C4F9AE02.roa (hash: gJ6rfZA4kdz2sP4zhVk5qWSiiFvdYYEjJ3d1LC4TVQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB238, serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Validity Not Before: Sep 16 21:16:57 2025 GMT Not After : Sep 23 21:16:57 2025 GMT Subject: CN=68c9d3ca-72b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f9:61:66:6d:86:a7:cf:3c:7e:d7:ff:ed:dd: 4b:4d:6e:f0:f4:57:91:58:72:6c:fa:c0:e9:8b:73: 59:d5:53:35:78:c7:b0:55:65:a8:2f:f4:6b:1f:87: 6c:7d:52:ef:1a:b5:e6:a6:20:e7:cb:d9:98:4b:13: 8b:2b:bf:16:7c:a0:d3:f9:1e:ea:6d:cf:b4:c6:cf: da:ee:4e:ac:ae:42:61:8e:50:65:c4:3b:5d:8c:fc: 06:0e:d3:1c:22:20:98:bb:d6:6c:7c:cb:f8:4f:da: 12:a6:5b:18:29:e6:e0:86:08:d4:5b:e3:26:13:d3: a8:12:5f:e3:89:ee:c4:cb:27:6d:8d:a2:f8:44:85: c3:db:c2:93:60:8d:24:77:a6:89:99:2d:4b:84:cb: ef:6e:1f:f2:de:08:a2:7f:12:27:08:3f:69:91:25: 9d:77:76:58:b8:18:e3:16:5c:eb:ff:97:31:33:a0: 12:1d:b6:2e:6a:90:e4:9f:7e:7d:95:f2:73:5c:44: da:69:e3:21:d6:29:38:fa:65:5c:16:3b:16:48:16: 88:31:c1:d2:36:d5:33:e3:60:7b:6e:48:e6:f3:1c: 2e:40:f9:90:42:c7:34:5f:26:20:dc:cd:5d:be:1b: 28:fa:7e:5b:0e:8e:02:f8:fd:34:1e:4b:12:b2:58: 8c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4D:A4:AA:5B:9C:39:E0:F6:BF:00:3C:FD:D5:12:D7:2E:9E:48:54 X509v3 Authority Key Identifier: keyid:63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:20:75:de:65:f5:45:1b:3a:82:05:f9:0b:e7:77:41:f1:f7: bf:24:8a:cc:34:9a:ca:9b:04:b5:bf:c1:c4:d8:ec:60:c4:04: 6c:5d:84:fa:50:b2:54:06:aa:70:86:0b:2d:04:17:2d:32:8d: 78:06:7b:15:d0:f1:4c:b6:95:09:48:f6:10:30:46:85:68:08: da:aa:12:42:f6:ba:4d:d8:43:5f:1e:bb:68:66:43:16:a6:4a: 1f:ab:86:fa:87:ae:b2:92:ae:a1:1d:fb:38:55:c1:32:ad:57: 95:39:12:a8:6a:42:c3:e3:70:70:bf:55:33:f9:26:40:05:8c: 4a:86:f6:b9:4f:d5:31:11:e0:9c:d4:40:92:82:a4:90:16:6f: 98:82:c1:7c:ea:34:e3:9c:83:3f:fe:3b:3c:a7:2b:f6:18:43: 4a:58:32:aa:76:fc:a8:71:c1:55:6e:94:8f:a3:82:68:2e:95: 3a:1b:c2:a5:28:2a:28:e5:86:c9:ee:68:37:65:50:12:09:b6: 39:ad:51:92:70:4d:cd:97:ad:a9:a0:f3:4d:5b:98:9d:42:93: d9:5e:f6:98:ab:0f:f0:b9:ce:6a:c7:f0:cd:10:06:5b:81:86: 5e:5a:e2:ff:58:3e:96:70:f6:35:34:c0:17:e2:98:4f:a0:82: df:66:53:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMzgxMTAvBgNVBAUTKDYzRkFGNEQyM0U2ODNFOTNGNjA3NjMwRERGRkQ0QjFB RjYzMzNGMDAwHhcNMjUwOTE2MjExNjU3WhcNMjUwOTIzMjExNjU3WjAYMRYwFAYD VQQDEw02OGM5ZDNjYS03MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/lhZm2Gp888ftf/7d1LTW7w9FeRWHJs+sDpi3NZ1VM1eMewVWWoL/RrH4ds fVLvGrXmpiDny9mYSxOLK78WfKDT+R7qbc+0xs/a7k6srkJhjlBlxDtdjPwGDtMc IiCYu9ZsfMv4T9oSplsYKebghgjUW+MmE9OoEl/jie7EyydtjaL4RIXD28KTYI0k d6aJmS1LhMvvbh/y3giifxInCD9pkSWdd3ZYuBjjFlzr/5cxM6ASHbYuapDkn359 lfJzXETaaeMh1ik4+mVcFjsWSBaIMcHSNtUz42B7bkjm8xwuQPmQQsc0XyYg3M1d vhso+n5bDo4C+P00HksSsliMqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5NpKpb nDng9r8APP3VEtcunkhUMB8GA1UdIwQYMBaAFGP69NI+aD6T9gdjDd/9Sxr2Mz8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIzOC84QzdBMzM2OEZE RkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1BwUDJCMk1OM18xTEd2WXpQ d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfcjAwajVvUHBQMkIyTU4zXzFMR3ZZelB3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIzOC84QzdBMzM2OEZERkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1Bw UDJCMk1OM18xTEd2WXpQd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtIHXeZfVFGzqCBfkL53dB8fe/JIrMNJrKmwS1v8HE2OxgxARsXYT6 ULJUBqpwhgstBBctMo14BnsV0PFMtpUJSPYQMEaFaAjaqhJC9rpN2ENfHrtoZkMW pkofq4b6h66ykq6hHfs4VcEyrVeVORKoakLD43Bwv1Uz+SZABYxKhva5T9UxEeCc 1ECSgqSQFm+YgsF86jTjnIM//js8pyv2GENKWDKqdvyoccFVbpSPo4JoLpU6G8Kl KCoo5YbJ7mg3ZVASCbY5rVGScE3Nl62poPNNW5idQpPZXvaYqw/wuc5qx/DNEAZb gYZeWuL/WD6WcPY1NMAX4phPoILfZlO4 -----END CERTIFICATE-----Generated at Thu Sep 18 19:06:21 2025 by rpki-client