$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: g9YQVrF0pWrh1ecer7OViVyRfElrzb6PWltO04loK6k= Subject key identifier: 4B:2E:4F:5C:BD:90:1E:70:06:49:45:4E:21:DC:39:BE:A5:25:5E:E5 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 01EB Signing time: Tue 09 Sep 2025 02:36:28 +0000 Manifest this update: Tue 09 Sep 2025 02:36:28 +0000 Manifest next update: Tue 16 Sep 2025 02:36:28 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: giaCko+Y76v3ADT9c4WkNY8alPEZNYsi5Vh00LJbxAE=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Sep 9 02:36:28 2025 GMT Not After : Sep 16 02:36:28 2025 GMT Subject: CN=68bf92ac-9757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:55:1d:fb:ae:c9:e8:67:fd:2b:a1:54:f1:5c: 8c:ff:1c:77:f7:ad:5a:06:e7:31:45:0e:83:aa:99: e8:3e:15:70:f2:4e:1e:0a:be:fa:6f:e6:09:cf:35: 60:4c:65:be:44:6a:5f:b3:37:c3:d7:16:af:c0:7e: 44:2c:10:67:f4:71:35:27:4d:05:49:14:c3:6d:00: 9b:99:07:b9:9a:86:b1:51:a2:76:1d:d3:6b:5a:25: 8a:df:19:b4:ba:0f:fb:85:11:ff:36:bc:6d:93:17: 28:13:33:5e:05:70:2b:45:6f:86:16:e3:0e:a1:0f: 81:48:5b:75:e5:24:d6:30:2d:8c:89:14:cb:9f:16: 99:a2:ef:cd:3e:b0:a0:d3:a1:9d:01:e9:1a:c3:42: da:d0:26:7f:44:d4:40:2e:c0:05:8e:77:27:3f:21: 2a:4a:0d:7c:7f:4d:6f:03:75:27:e9:10:2c:d9:69: 9a:9a:be:17:94:51:90:39:60:01:20:3b:84:42:2f: f0:69:f8:1f:45:5d:98:38:14:6a:de:d7:34:19:28: 16:ce:be:1c:9b:cf:91:8b:86:86:74:cc:a4:7e:ee: e9:fa:a2:28:f9:bd:17:2a:cd:3b:fe:56:1d:c3:d5: 90:b2:3f:52:90:c8:cd:0c:4b:22:de:12:87:44:c9: 11:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2E:4F:5C:BD:90:1E:70:06:49:45:4E:21:DC:39:BE:A5:25:5E:E5 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:59:53:42:e7:6b:16:bd:e5:ad:39:e5:05:1f:ce:3c:a8:96: 40:ce:5e:8f:a2:e9:1d:21:ab:4f:b0:6e:96:a1:b3:d6:d9:0b: 4f:fd:b1:f1:84:45:cb:ef:52:e1:26:91:6c:3b:b4:7a:48:b0: 0f:d1:30:b3:ae:fb:2f:0f:e7:27:6f:98:74:31:91:3c:0f:18: d4:d3:b6:c3:fa:a1:8c:55:47:2c:47:64:54:a5:e2:56:80:3d: 98:53:cb:bf:d6:de:ef:c0:25:9f:c5:bd:43:71:c0:c0:06:70: b2:f4:c8:65:28:33:32:db:51:bb:a1:b1:46:83:58:70:46:28: 12:95:6c:48:e8:76:9a:93:e5:bb:43:d8:a8:05:90:2a:6f:42: 7f:2d:bd:25:78:9d:4d:e8:9e:0d:7c:fa:2b:e5:8d:e2:b4:e0: d2:98:44:f8:57:1c:4e:bf:80:3a:7e:99:9d:89:f7:28:90:2c: 91:0d:bb:53:39:09:82:06:81:5b:97:84:e1:e1:ff:50:77:e4: 52:74:56:b6:31:87:44:c7:68:52:f5:f6:3a:3d:b0:84:44:76: 80:7d:ee:e5:7e:fb:c0:59:80:59:bb:09:25:91:50:7b:f5:cb: 1b:f4:63:e6:93:f3:47:88:d8:ec:be:29:49:40:dc:38:4c:ed: 57:76:8f:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUwOTA5MDIzNjI4WhcNMjUwOTE2MDIzNjI4WjAYMRYwFAYD VQQDEw02OGJmOTJhYy05NzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFUd+67J6Gf9K6FU8VyM/xx3961aBucxRQ6DqpnoPhVw8k4eCr76b+YJzzVg TGW+RGpfszfD1xavwH5ELBBn9HE1J00FSRTDbQCbmQe5moaxUaJ2HdNrWiWK3xm0 ug/7hRH/NrxtkxcoEzNeBXArRW+GFuMOoQ+BSFt15STWMC2MiRTLnxaZou/NPrCg 06GdAekaw0La0CZ/RNRALsAFjncnPyEqSg18f01vA3Un6RAs2Wmamr4XlFGQOWAB IDuEQi/wafgfRV2YOBRq3tc0GSgWzr4cm8+Ri4aGdMykfu7p+qIo+b0XKs07/lYd w9WQsj9SkMjNDEsi3hKHRMkRLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsuT1y9 kB5wBklFTiHcOb6lJV7lMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/WVNC52sWveWtOeUFH848qJZAzl6PoukdIatPsG6WobPW2QtP/bHx hEXL71LhJpFsO7R6SLAP0TCzrvsvD+cnb5h0MZE8DxjU07bD+qGMVUcsR2RUpeJW gD2YU8u/1t7vwCWfxb1DccDABnCy9MhlKDMy21G7obFGg1hwRigSlWxI6Haak+W7 Q9ioBZAqb0J/Lb0leJ1N6J4NfPor5Y3itODSmET4VxxOv4A6fpmdifcokCyRDbtT OQmCBoFbl4Th4f9Qd+RSdFa2MYdEx2hS9fY6PbCERHaAfe7lfvvAWYBZuwklkVB7 9csb9GPmk/NHiNjsvilJQNw4TO1Xdo9j -----END CERTIFICATE-----Generated at Tue Sep 9 16:31:57 2025 by rpki-client