$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: 3ZiktOLSno2JwNssmtaAuPoHhqbvn/ukcow33CDzYqI= Subject key identifier: 44:78:9C:22:3F:30:96:58:8B:08:8D:11:4B:00:62:A6:8E:62:90:5C Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 09 Signing time: Sat 05 Jul 2025 08:29:44 +0000 Manifest this update: Sat 05 Jul 2025 08:29:43 +0000 Manifest next update: Sat 12 Jul 2025 08:29:43 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: QWVrFWAHKfhbbxiMvQazhv1YnrlYwemfZ6iJh4XqgvU=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Jul 2025 08:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Jul 5 08:29:43 2025 GMT Not After : Jul 12 08:29:43 2025 GMT Subject: CN=6868e278-4c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:06:a5:5c:db:63:d9:a8:2f:ab:91:a3:32: db:fe:b4:a7:15:99:a4:af:8d:68:f3:fe:47:1a:61: e0:63:ea:03:4a:66:7e:b6:f0:cd:37:e3:a8:84:fe: 07:5d:9f:26:a9:02:69:7a:93:6f:de:2b:e1:d4:97: 76:fb:4d:70:aa:36:21:8b:4a:13:03:0f:7e:0b:11: 76:83:0a:e3:f1:0a:78:20:ae:28:00:f4:ec:7a:be: 40:2b:69:50:99:13:7f:86:a1:dd:df:4e:31:16:ed: b0:55:53:fe:ab:08:e3:51:97:d9:f8:02:43:bc:8c: cf:ad:8f:55:0b:17:c5:1b:c9:71:aa:9b:f0:e4:fa: ce:24:f7:56:96:68:e1:d7:4c:1e:50:eb:3d:b2:03: bb:66:f2:ab:b5:9d:e3:d9:41:f6:89:d7:1d:ec:d2: 51:be:5b:d8:1a:e4:08:59:10:37:2c:db:2b:98:3a: 5f:99:29:3a:ef:fc:80:28:96:ed:21:11:9f:ee:f8: 99:7a:f0:36:fc:6a:4a:fa:f9:7b:62:2f:f1:60:8a: 72:d5:17:f3:a6:ca:8e:23:05:6b:d9:bd:4f:a5:4e: 2f:b1:a3:86:df:80:72:48:46:4f:65:a5:d9:ac:60: a4:29:a7:30:0b:c3:8a:0d:ad:68:2d:53:72:b9:72: d4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:78:9C:22:3F:30:96:58:8B:08:8D:11:4B:00:62:A6:8E:62:90:5C X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:89:1e:ec:49:6e:92:96:7f:b6:51:d1:4f:3b:88:f2:74:05: 3c:50:12:19:29:f9:65:f1:48:6b:ff:af:bb:56:64:01:d0:42: 11:da:02:c5:1f:bc:63:c7:19:02:01:a8:3e:83:77:55:d3:33: 51:2d:2b:6b:cf:31:64:76:9e:69:0a:7b:13:ab:4c:f1:4b:f5: 25:3b:79:32:14:be:81:86:52:d3:61:c3:8d:d6:c0:4d:bc:e2: 0b:62:98:d5:7b:8d:68:89:69:84:ea:db:56:76:90:62:20:8b: ca:a5:5b:b5:f6:c5:8a:89:23:9e:ef:7b:09:44:71:20:0a:26: fd:fb:14:2c:6c:24:20:69:0f:cf:60:90:30:08:9c:c1:74:11: 96:32:30:49:a3:e4:00:a0:04:02:e7:e2:73:5f:eb:1a:b0:fe: 20:ed:4d:30:ff:28:76:43:d3:63:b3:24:26:d1:50:4d:67:07: 82:91:90:79:f1:6f:3c:6f:89:c4:e2:b8:85:a1:ca:3e:10:83: 4d:21:c7:d9:ad:a4:28:67:fe:34:09:2b:b5:ce:5b:f8:75:61: 4f:16:0c:22:e5:4d:de:b4:ca:44:46:9d:28:49:cc:52:76:f9: cb:b5:9e:65:d9:43:33:3d:34:79:1d:23:32:cc:12:14:e9:50: 1c:40:06:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTA3MDUwODI5NDNaFw0yNTA3MTIwODI5NDNaMBgxFjAUBgNV BAMTDTY4NjhlMjc4LTRjNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzVAalXNtj2agvq5GjMtv+tKcVmaSvjWjz/kcaYeBj6gNKZn628M0346iE/gdd nyapAml6k2/eK+HUl3b7TXCqNiGLShMDD34LEXaDCuPxCnggrigA9Ox6vkAraVCZ E3+God3fTjEW7bBVU/6rCONRl9n4AkO8jM+tj1ULF8UbyXGqm/Dk+s4k91aWaOHX TB5Q6z2yA7tm8qu1nePZQfaJ1x3s0lG+W9ga5AhZEDcs2yuYOl+ZKTrv/IAolu0h EZ/u+Jl68Db8akr6+XtiL/FginLVF/Omyo4jBWvZvU+lTi+xo4bfgHJIRk9lpdms YKQppzALw4oNrWgtU3K5ctQ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURHicIj8w lliLCI0RSwBipo5ikFwwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABOJHuxJbpKWf7ZR0U87iPJ0BTxQEhkp+WXxSGv/r7tWZAHQQhHaAsUf vGPHGQIBqD6Dd1XTM1EtK2vPMWR2nmkKexOrTPFL9SU7eTIUvoGGUtNhw43WwE28 4gtimNV7jWiJaYTq21Z2kGIgi8qlW7X2xYqJI57vewlEcSAKJv37FCxsJCBpD89g kDAInMF0EZYyMEmj5ACgBALn4nNf6xqw/iDtTTD/KHZD02OzJCbRUE1nB4KRkHnx bzxvicTiuIWhyj4Qg00hx9mtpChn/jQJK7XOW/h1YU8WDCLlTd60ykRGnShJzFJ2 +cu1nmXZQzM9NHkdIzLMEhTpUBxABq8= -----END CERTIFICATE-----Generated at Mon Jul 7 09:51:37 2025 by rpki-client