$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: mwhOPaJ+/RBneQXomUKmfqxssQiNGlcOB/dULsxkXB8= Subject key identifier: B1:45:4F:69:33:B8:DB:45:C2:50:AF:90:7C:56:BF:E9:C6:D4:3A:66 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01E3 Signing time: Tue 09 Sep 2025 02:44:08 +0000 Manifest this update: Tue 09 Sep 2025 02:44:07 +0000 Manifest next update: Tue 16 Sep 2025 02:44:07 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: t7IufGJk1/aKB9dWU7HNtAExaDdoUuSqm/WSy9dPMvQ=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Sep 9 02:44:07 2025 GMT Not After : Sep 16 02:44:07 2025 GMT Subject: CN=68bf9478-1aed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:46:79:32:3b:87:3c:34:db:e6:d8:70:12:a3: 9c:90:19:00:2a:58:c9:77:24:a4:6c:88:9c:db:87: c5:26:c7:4f:bb:e4:45:3a:b9:73:40:d0:ab:2d:c2: d4:9d:00:4e:02:12:ad:8b:44:ad:29:14:01:ce:67: d9:e3:0c:e2:e2:d7:4f:a5:f4:4e:d4:15:cb:51:21: f3:65:a6:da:b9:0a:8b:0f:c6:a0:92:d2:fd:61:1c: 51:c5:a7:d1:0d:5a:1b:95:28:a1:98:c4:4c:cb:f5: a9:0a:4d:e9:83:83:0e:66:5b:59:a9:fa:6c:00:61: 9e:5f:04:67:04:f8:e1:e9:fb:79:d2:11:50:d2:19: 9c:88:52:ff:58:c8:9c:c7:10:1e:bc:6c:e1:3a:0f: 1e:25:07:65:35:60:22:b9:98:d6:e1:02:2d:00:7a: 5b:be:00:fe:23:d4:ca:d8:ba:52:42:6e:d1:a4:5f: 4e:32:c1:13:8c:6e:b0:bb:0e:8d:d7:78:34:f6:e3: 5e:1f:2e:11:10:a7:84:17:a3:d4:d9:b4:7a:d6:7d: c0:0c:50:01:2a:bb:67:90:6a:de:65:f2:01:fc:62: b1:2d:3f:30:b6:5f:3f:ad:83:bf:a0:a0:c8:b1:48: f4:a9:c0:c1:85:48:2c:ad:f6:f9:a2:a7:2d:cd:37: 76:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:45:4F:69:33:B8:DB:45:C2:50:AF:90:7C:56:BF:E9:C6:D4:3A:66 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f3:17:46:b9:90:b0:29:78:97:0b:12:4d:ea:6c:8b:24:80: a2:92:b3:db:60:bc:3d:5d:82:80:ec:cc:7e:69:3a:bd:f9:6b: 26:47:4b:ec:e9:0d:77:65:75:89:07:d1:74:73:a6:4b:a6:30: 13:33:41:e8:8c:01:e3:45:bd:e6:91:f9:65:a3:f2:d7:d1:4b: 2d:57:cb:62:7d:7c:b0:5e:0b:cb:ab:0f:b6:24:42:f2:3e:f2: 46:48:d5:1e:01:fe:0f:df:f8:e5:ec:3e:fe:78:f2:eb:fa:79: 1a:3a:e2:77:fe:ef:f5:62:0f:06:b4:cc:20:7f:ae:0d:ab:a0: c1:c6:41:54:06:c4:5b:a4:dd:0a:77:5b:a5:40:60:58:73:f4: be:ef:b9:5b:e2:f7:37:ce:e6:52:75:42:5e:9e:c3:e4:49:53: 7b:e5:16:70:e3:9b:e8:a0:d1:bb:24:66:c4:be:b4:9c:62:f1: 76:db:9a:69:e3:92:df:71:37:b3:5b:f9:c8:73:4c:c8:ca:fb: 3b:ed:96:2e:4d:c0:60:b6:7c:f8:6d:f5:39:ce:d5:80:e6:78: 84:9f:60:20:16:77:1b:6d:fd:03:d1:98:40:ff:44:35:e0:80: 66:ff:66:e6:fb:61:2c:c9:4a:f9:fc:b5:97:82:7e:e6:7b:7e: c1:40:d4:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwOTA5MDI0NDA3WhcNMjUwOTE2MDI0NDA3WjAYMRYwFAYD VQQDEw02OGJmOTQ3OC0xYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20Z5MjuHPDTb5thwEqOckBkAKljJdySkbIic24fFJsdPu+RFOrlzQNCrLcLU nQBOAhKti0StKRQBzmfZ4wzi4tdPpfRO1BXLUSHzZabauQqLD8agktL9YRxRxafR DVoblSihmMRMy/WpCk3pg4MOZltZqfpsAGGeXwRnBPjh6ft50hFQ0hmciFL/WMic xxAevGzhOg8eJQdlNWAiuZjW4QItAHpbvgD+I9TK2LpSQm7RpF9OMsETjG6wuw6N 13g09uNeHy4REKeEF6PU2bR61n3ADFABKrtnkGreZfIB/GKxLT8wtl8/rYO/oKDI sUj0qcDBhUgsrfb5oqctzTd2/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFFT2kz uNtFwlCvkHxWv+nG1DpmMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP8xdGuZCwKXiXCxJN6myLJICikrPbYLw9XYKA7Mx+aTq9+WsmR0vs 6Q13ZXWJB9F0c6ZLpjATM0HojAHjRb3mkfllo/LX0UstV8tifXywXgvLqw+2JELy PvJGSNUeAf4P3/jl7D7+ePLr+nkaOuJ3/u/1Yg8GtMwgf64Nq6DBxkFUBsRbpN0K d1ulQGBYc/S+77lb4vc3zuZSdUJensPkSVN75RZw45vooNG7JGbEvrScYvF225pp 45LfcTezW/nIc0zIyvs77ZYuTcBgtnz4bfU5ztWA5niEn2AgFncbbf0D0ZhA/0Q1 4IBm/2bm+2EsyUr5/LWXgn7me37BQNTX -----END CERTIFICATE-----Generated at Thu Sep 11 00:28:30 2025 by rpki-client