$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft File: y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json) Hash identifier: rqXaotepdN5zfsLXbW4Nl+7VwjL/K6llBYCWzMvOhx4= Subject key identifier: 70:86:1C:D8:58:1D:FE:58:1C:BC:AF:B3:6E:34:FE:7B:B5:C5:78:39 Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 Certificate issuer: /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft Manifest number: 039E Signing time: Tue 09 Sep 2025 00:50:54 +0000 Manifest this update: Tue 09 Sep 2025 00:50:53 +0000 Manifest next update: Tue 16 Sep 2025 00:50:53 +0000 Files and hashes: 1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: zi8i3paxz10q7Bw5m+7qwPpB1kWczlbTVYDru9ZFka4=) 2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: mfWKFm3R9Zz1cfvfe7gZWjinbVCRooVyIR4rmFi/Bec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7700, serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Validity Not Before: Sep 9 00:50:53 2025 GMT Not After : Sep 16 00:50:53 2025 GMT Subject: CN=68bf79ed-9325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:27:06:60:f3:64:b5:ac:18:b9:41:62:8d: 45:f9:53:2e:46:28:32:05:2a:60:b8:c5:9e:5b:eb: 54:7b:15:e0:86:3b:61:f0:bc:cc:18:fa:83:69:64: 3d:c0:48:19:7c:71:6a:d7:2b:24:ef:e9:c6:00:16: 63:61:c7:62:72:2c:80:cc:22:e5:68:db:0c:e3:0d: 5d:9a:68:ef:fb:37:df:c7:05:73:c7:f3:9b:71:12: 54:46:21:29:c2:1e:5b:7a:22:19:c3:2e:dd:7b:87: ae:d1:00:e0:00:28:02:fe:de:b8:1d:49:39:3e:da: 17:be:9f:d6:b7:3f:63:35:73:c7:55:0b:b6:cf:7b: 38:cf:fb:88:e8:30:0d:5c:95:64:f1:20:bb:5e:34: 41:52:6b:75:17:6e:97:16:88:bb:84:77:e6:41:5e: f9:bd:e9:4d:64:d7:e8:fd:88:39:6b:9b:e5:c9:8e: f5:23:32:93:9a:71:e1:4a:3f:6d:d2:7e:8e:5a:c8: ea:04:64:2b:90:51:72:06:84:b7:06:1c:c1:6c:f0: 39:18:93:0a:5c:65:6c:c8:ef:16:d6:36:dd:ce:67: 59:19:23:96:e6:e3:6e:a4:27:89:75:96:7f:13:a9: 10:b2:c3:01:90:06:0b:97:a3:b1:11:63:95:74:0d: 99:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:86:1C:D8:58:1D:FE:58:1C:BC:AF:B3:6E:34:FE:7B:B5:C5:78:39 X509v3 Authority Key Identifier: keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ee:93:f4:93:8f:83:e2:7e:36:db:5f:3f:43:cb:cb:40:d4: cd:3c:1b:f0:45:a8:1a:c9:32:61:08:1e:ed:57:4e:a8:9f:75: dd:52:20:0b:43:ec:46:c4:46:d2:fa:a4:32:56:1f:ad:8e:97: 61:49:08:05:78:1f:31:b1:a5:43:b3:f4:b8:e0:35:48:df:81: 27:a9:f3:3a:2c:08:d8:6e:6c:d2:99:42:23:17:9b:c5:ef:08: 3e:6d:54:95:0f:89:05:47:23:f9:f2:3f:98:71:89:34:bd:9e: 34:ac:4c:0b:68:19:8f:11:1e:b1:52:9f:36:45:1a:17:80:40: 2f:bb:83:99:d8:85:8a:b8:3e:e4:99:16:6f:9b:11:4b:57:68: 4e:2c:0b:81:5e:36:fb:a1:c8:27:b5:4c:4c:38:d0:9b:35:b8: fb:fd:27:d7:ec:2e:f2:1c:52:06:d7:d4:cd:69:b1:f4:04:18: be:b7:cc:48:b8:11:5b:4d:e7:26:cb:1e:02:11:2e:a3:0c:21: 13:28:0b:2f:40:3e:f9:36:4b:cc:1c:0d:f2:0c:62:2f:e4:75: f9:3d:84:1d:3e:1e:17:f3:c2:81:49:b4:9c:87:a5:ed:85:7a: 8b:1b:fc:f1:00:cf:56:eb:b6:d0:01:48:a2:23:d7:da:d2:de: 8e:20:ec:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJDMzJENUM0ODFG NUQzMEYxRjIwHhcNMjUwOTA5MDA1MDUzWhcNMjUwOTE2MDA1MDUzWjAYMRYwFAYD VQQDEw02OGJmNzllZC05MzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdknBmDzZLWsGLlBYo1F+VMuRigyBSpguMWeW+tUexXghjth8LzMGPqDaWQ9 wEgZfHFq1ysk7+nGABZjYcdiciyAzCLlaNsM4w1dmmjv+zffxwVzx/ObcRJURiEp wh5beiIZwy7de4eu0QDgACgC/t64HUk5PtoXvp/Wtz9jNXPHVQu2z3s4z/uI6DAN XJVk8SC7XjRBUmt1F26XFoi7hHfmQV75velNZNfo/Yg5a5vlyY71IzKTmnHhSj9t 0n6OWsjqBGQrkFFyBoS3BhzBbPA5GJMKXGVsyO8W1jbdzmdZGSOW5uNupCeJdZZ/ E6kQssMBkAYLl6OxEWOVdA2ZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCGHNhY Hf5YHLyvs240/nu1xXg5MB8GA1UdIwQYMBaAFMu/JgNyTXhWaxwSwy1cSB9dMPHy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzcwMC9DQ0RCRjRGMEFF NTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVGWnJIQkxETFZ4SUgxMHc4 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3OG1BM0pOZUZackhCTERMVnhJSDEwdzhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVG WnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo7pP0k4+D4n42218/Q8vLQNTNPBvwRagayTJhCB7tV06on3XdUiAL Q+xGxEbS+qQyVh+tjpdhSQgFeB8xsaVDs/S44DVI34EnqfM6LAjYbmzSmUIjF5vF 7wg+bVSVD4kFRyP58j+YcYk0vZ40rEwLaBmPER6xUp82RRoXgEAvu4OZ2IWKuD7k mRZvmxFLV2hOLAuBXjb7ocgntUxMONCbNbj7/SfX7C7yHFIG19TNabH0BBi+t8xI uBFbTecmyx4CES6jDCETKAsvQD75NkvMHA3yDGIv5HX5PYQdPh4X88KBSbSch6Xt hXqLG/zxAM9W67bQAUiiI9fa0t6OIOw4 -----END CERTIFICATE-----Generated at Tue Sep 9 13:36:56 2025 by rpki-client