$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft File: yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft (raw, json) Hash identifier: L1UN6r074zOJWfVh6YeWPw3O//knb9G8dng11d2pxQI= Subject key identifier: 89:F5:D8:86:2B:CC:B2:C2:F7:AE:9F:CC:38:48:7B:CA:F8:F5:87:23 Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Certificate serial: 10AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft Manifest number: 1096 Signing time: Thu 18 Sep 2025 17:30:56 +0000 Manifest this update: Thu 18 Sep 2025 17:30:55 +0000 Manifest next update: Thu 25 Sep 2025 17:30:55 +0000 Files and hashes: 1: yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl (hash: POrWIlBhXX666rYl6xNHXoVrCqhv88jlX1ShoRPU/TY=) 2: 9305EF46716511EFAA44E47BC4F9AE02.roa (hash: fEVsLbsqwk43zT4i9cB0QOn6Yu/KoGDrIvPTQDfkam8=) 3: BAE1D7A8716711EFBF91272AC4F9AE02.roa (hash: y8nzjZGMQib7WT4yCqeNAgHbrhJTL2UqXsshegz4sgE=) 4: B9E0D3EA716711EFBF91272AC4F9AE02.roa (hash: D2fBQ+WzSpKBrrM3Q6Z8cohOSpLekw4Ya8dTg5S7nEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3558, serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Validity Not Before: Sep 18 17:30:55 2025 GMT Not After : Sep 25 17:30:55 2025 GMT Subject: CN=68cc41d0-efd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:24:57:c2:16:5d:5e:98:bf:b3:8b:1d:82:67: f7:64:5d:5f:8d:95:26:bd:ac:f8:79:5b:c4:ac:2e: 65:06:45:15:5f:9e:1f:70:73:e1:be:c1:68:73:ba: e7:65:14:3e:cf:9e:5b:52:42:7f:11:64:f5:5d:99: 8d:f1:54:36:8b:ef:01:d6:66:08:d0:75:fe:17:b0: 9e:d1:73:19:31:af:8d:b2:b3:1f:ce:88:0c:d1:6c: a0:7e:46:84:f3:50:b1:2c:ce:f9:d0:ff:02:14:44: 5f:61:da:a0:b3:e2:57:cd:18:98:88:31:6f:1c:03: f6:ff:31:d3:b3:ee:4b:99:85:fd:00:52:23:70:3d: 8f:90:d2:73:7f:2d:c1:59:75:7d:b8:ec:67:b8:89: 13:9f:6b:c0:a2:b9:ea:5f:e5:9a:60:a3:0a:d4:6f: 30:d9:05:6a:79:70:d1:1d:e2:d8:bd:fe:66:5e:ad: 8d:55:b3:1c:6e:02:7a:16:a4:48:51:ea:e4:d2:f6: 85:e8:29:37:59:aa:b9:2a:f0:27:5e:e0:43:5a:e8: 6b:0c:58:25:c5:2f:f1:39:4e:e5:51:6a:50:9f:6d: 5c:4f:7c:38:24:3c:77:9c:5b:85:03:99:5b:b4:96: 00:05:c3:c7:49:5e:9e:ba:49:87:a9:c8:fc:56:c0: fe:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F5:D8:86:2B:CC:B2:C2:F7:AE:9F:CC:38:48:7B:CA:F8:F5:87:23 X509v3 Authority Key Identifier: keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:95:dc:4f:7d:93:8f:1d:36:d4:24:00:cf:cf:22:17:2e:da: 77:43:9f:44:24:7b:bd:2c:16:38:e6:3d:76:38:14:1e:73:f6: 4b:ca:20:86:dc:46:5c:f5:7e:08:9f:a2:ce:da:93:ed:b3:3d: 14:f9:79:17:23:76:41:57:2e:f1:84:ea:02:ab:b8:04:8d:b6: e7:f7:bf:90:33:0d:e1:1a:90:e7:ce:11:54:26:da:82:f3:ed: da:2b:31:d8:07:42:61:b6:b2:e9:0a:5b:00:65:b9:b6:6d:63: b9:98:b2:4a:58:40:d5:f8:75:db:cd:02:45:76:ff:96:f3:c4: b0:34:c1:67:a9:c2:7b:51:20:c8:a7:45:ad:22:68:e3:a9:55: 43:f8:df:94:d9:45:05:f9:08:fa:a7:b1:e0:f2:58:7a:7a:06: 93:94:7c:38:4a:68:22:ab:12:5e:e9:46:7f:e0:fa:a9:fd:0b: 17:a2:13:f1:4f:95:e0:74:0c:5e:01:8d:22:79:b5:7a:bc:d1: ec:ed:85:4d:96:39:a3:41:61:9e:ba:2f:73:1f:ec:2f:2b:e2: c1:6f:1d:3b:bd:8e:f3:f2:26:0f:39:1c:5f:df:f3:d9:54:39: 3c:79:a8:4e:a4:f9:21:5b:c6:e7:c7:f4:c5:52:fa:2d:0b:0a: 64:a6:45:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx RkI5QTVGMkEwHhcNMjUwOTE4MTczMDU1WhcNMjUwOTI1MTczMDU1WjAYMRYwFAYD VQQDEw02OGNjNDFkMC1lZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyRXwhZdXpi/s4sdgmf3ZF1fjZUmvaz4eVvErC5lBkUVX54fcHPhvsFoc7rn ZRQ+z55bUkJ/EWT1XZmN8VQ2i+8B1mYI0HX+F7Ce0XMZMa+NsrMfzogM0WygfkaE 81CxLM750P8CFERfYdqgs+JXzRiYiDFvHAP2/zHTs+5LmYX9AFIjcD2PkNJzfy3B WXV9uOxnuIkTn2vAornqX+WaYKMK1G8w2QVqeXDRHeLYvf5mXq2NVbMcbgJ6FqRI Uerk0vaF6Ck3Waq5KvAnXuBDWuhrDFglxS/xOU7lUWpQn21cT3w4JDx3nFuFA5lb tJYABcPHSV6eukmHqcj8VsD+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIn12IYr zLLC966fzDhIe8r49YcjMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5 MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzU1OC8wRjIxMjE0RTM5MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0 V0Y0eENzMk5feXNmdWFYeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAldxPfZOPHTbUJADPzyIXLtp3Q59EJHu9LBY45j12OBQec/ZLyiCG 3EZc9X4In6LO2pPtsz0U+XkXI3ZBVy7xhOoCq7gEjbbn97+QMw3hGpDnzhFUJtqC 8+3aKzHYB0JhtrLpClsAZbm2bWO5mLJKWEDV+HXbzQJFdv+W88SwNMFnqcJ7USDI p0WtImjjqVVD+N+U2UUF+Qj6p7Hg8lh6egaTlHw4SmgiqxJe6UZ/4Pqp/QsXohPx T5XgdAxeAY0iebV6vNHs7YVNljmjQWGeui9zH+wvK+LBbx07vY7z8iYPORxf3/PZ VDk8eahOpPkhW8bnx/TFUvotCwpkpkXs -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:15 2025 by rpki-client