$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: QWHSFlva2bHvelLOWwG/3fGis43km+U9Xn3OfJEPoCI= Subject key identifier: CC:70:1D:22:D6:4E:75:5F:EF:36:90:29:DD:3D:2D:5D:C8:80:7C:CE Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 21 Signing time: Thu 21 Aug 2025 08:05:05 +0000 Manifest this update: Thu 21 Aug 2025 08:05:05 +0000 Manifest next update: Thu 28 Aug 2025 08:05:05 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: Zhf7uzzEZVATeJCXMiNCM+inQxAdyvknIZa6rNNuM0M=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Aug 21 08:05:05 2025 GMT Not After : Aug 28 08:05:05 2025 GMT Subject: CN=68a6d331-2cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:92:48:cb:45:f6:e6:cd:fe:9d:49:42:2f:2f: 0e:67:a0:d6:17:dc:6a:a4:89:f1:b3:75:7c:62:d7: b1:fa:0d:b2:87:13:fd:58:df:11:cb:e6:6f:0d:03: 20:a4:fd:c2:44:5c:15:20:66:69:5f:b8:6c:c5:58: 20:29:15:5f:56:f1:89:7f:40:4a:54:40:a6:6b:5a: a8:51:02:53:c9:ff:79:80:6c:cf:20:56:64:47:be: 0d:52:97:e8:cd:bc:14:4c:17:d0:b7:8a:af:10:d6: 2e:14:1a:9a:cf:6b:c8:a3:89:71:55:8d:0f:93:56: 73:2e:bd:3b:a5:5d:6c:d3:26:fc:98:ee:24:75:9c: e4:ef:29:a8:a9:9d:ca:8d:6a:27:26:0b:b4:6a:bd: d5:50:32:16:af:49:6d:08:ab:98:41:92:f1:01:31: 8f:85:5b:b8:8f:25:71:1c:c8:88:4c:ea:0a:a0:d3: 88:a2:8c:21:62:66:b7:fd:f6:4a:d8:31:6c:19:33: 1b:58:e3:a6:f8:ed:45:22:fa:53:c5:03:09:7d:c8: b6:50:ea:da:c3:7c:23:b5:68:0e:6a:61:dd:df:81: e8:0a:dd:0c:34:4e:bf:7d:4c:e9:17:75:27:1e:84: e3:a7:24:c3:fb:78:c7:c3:c9:92:c5:51:af:f0:ca: c4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:70:1D:22:D6:4E:75:5F:EF:36:90:29:DD:3D:2D:5D:C8:80:7C:CE X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:2a:84:c9:4f:36:6b:21:4e:3b:21:c2:fb:29:d8:4b:e4:b1: 3b:50:59:a9:d8:96:50:b4:33:dc:49:ca:9c:88:80:7c:b0:d6: 97:7a:36:29:cd:93:74:29:70:8b:74:10:91:41:dc:36:a0:89: e2:39:80:86:e3:f2:45:07:ae:3f:42:2b:71:6b:73:47:91:77: 35:f8:71:ff:b4:27:c2:28:56:45:5b:1e:94:f8:6a:69:76:f9: 3f:7f:cd:a9:00:62:14:a7:07:ba:32:78:0c:87:72:ac:57:d1: ea:e9:0e:a2:dc:b7:be:bf:34:83:ca:5b:a3:9f:10:b2:53:a0: 13:c1:86:c8:45:17:8a:98:5e:d9:b9:0e:49:1c:8f:92:e6:49: 2f:03:cf:30:92:94:90:e8:b2:e1:d2:90:98:89:72:5d:11:f6: 92:48:ad:9f:6d:ef:8b:af:2d:e0:ae:1a:c5:ab:ca:c8:da:a1: bd:76:f2:a9:04:85:86:d7:83:44:82:be:27:d2:34:d0:91:9b: 9e:39:99:55:5a:ef:fc:67:a1:76:8b:69:dc:c0:c0:47:6e:ce: 80:89:38:ec:f1:81:0b:77:d0:28:65:28:e2:a5:8d:ec:4e:64: 37:16:73:e4:13:9d:31:36:dd:85:88:3d:4c:bc:c0:6c:73:0f: ea:99:3b:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTA4MjEwODA1MDVaFw0yNTA4MjgwODA1MDVaMBgxFjAUBgNV BAMTDTY4YTZkMzMxLTJjZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDckkjLRfbmzf6dSUIvLw5noNYX3GqkifGzdXxi17H6DbKHE/1Y3xHL5m8NAyCk /cJEXBUgZmlfuGzFWCApFV9W8Yl/QEpUQKZrWqhRAlPJ/3mAbM8gVmRHvg1Sl+jN vBRMF9C3iq8Q1i4UGprPa8ijiXFVjQ+TVnMuvTulXWzTJvyY7iR1nOTvKaipncqN aicmC7RqvdVQMhavSW0Iq5hBkvEBMY+FW7iPJXEcyIhM6gqg04iijCFiZrf99krY MWwZMxtY46b47UUi+lPFAwl9yLZQ6trDfCO1aA5qYd3fgegK3Qw0Tr99TOkXdSce hOOnJMP7eMfDyZLFUa/wysTJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzHAdItZO dV/vNpAp3T0tXciAfM4wHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOYqhMlPNmshTjshwvsp2EvksTtQWanYllC0M9xJypyIgHyw1pd6NinN k3QpcIt0EJFB3DagieI5gIbj8kUHrj9CK3Frc0eRdzX4cf+0J8IoVkVbHpT4aml2 +T9/zakAYhSnB7oyeAyHcqxX0erpDqLct76/NIPKW6OfELJToBPBhshFF4qYXtm5 Dkkcj5LmSS8DzzCSlJDosuHSkJiJcl0R9pJIrZ9t74uvLeCuGsWrysjaob128qkE hYbXg0SCvifSNNCRm545mVVa7/xnoXaLadzAwEduzoCJOOzxgQt30ChlKOKljexO ZDcWc+QTnTE23YWIPUy8wGxzD+qZO+c= -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:13 2025 by rpki-client