$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: X2dXLfzoiWuqGdeZCfvduaJZ0vSIeuNztdFCJWXD+dY= Subject key identifier: 3F:EB:5D:66:07:2B:11:A2:B6:E0:4D:71:58:54:85:E0:C8:C3:69:80 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: D5 Signing time: Fri 05 Sep 2025 06:01:36 +0000 Manifest this update: Fri 05 Sep 2025 06:01:36 +0000 Manifest next update: Fri 12 Sep 2025 06:01:36 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: 6yxBnglnX3DIFGSshAXXJ1OMnVO/sfTFd+bn+EZ7Dfg=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Sep 5 06:01:36 2025 GMT Not After : Sep 12 06:01:36 2025 GMT Subject: CN=68ba7cc0-1fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e9:21:57:a8:03:3e:79:73:a3:ee:62:a3:10: e8:e0:c7:e7:77:dc:5e:b9:82:5e:bc:0f:a4:85:6a: a1:6c:98:58:24:58:de:90:c0:f7:47:5e:02:3f:d8: db:11:c1:4d:4a:99:f2:cd:5e:f6:2b:66:b4:73:eb: f5:d2:79:1d:d1:84:1a:2e:b1:52:d5:72:c5:17:5b: 8f:31:88:6b:cf:22:0d:38:da:5f:53:a4:b4:d7:47: a1:0d:cd:cf:7c:8d:9a:00:12:e9:48:23:78:20:1e: 25:b1:d1:77:74:ce:c6:04:6f:85:fd:26:22:2d:6e: fb:04:fc:74:29:84:4e:c3:31:87:a4:91:da:bb:78: 2f:99:88:60:cc:b7:61:aa:b2:48:67:36:30:16:c9: e1:12:16:98:92:68:61:7d:cf:41:ea:88:46:0b:f2: 2b:5c:c0:b2:b6:a7:fc:17:38:26:d1:22:1d:07:02: 06:b6:97:ca:1b:28:db:c1:43:68:83:b9:76:6d:2f: 0e:c9:b9:17:1d:4f:6f:55:b6:eb:ed:50:e4:65:b9: 02:af:d1:59:0b:b1:4b:1b:90:39:3f:60:12:3b:32: b6:3a:a0:12:1f:61:91:ca:71:74:7a:da:91:47:61: fd:b4:f8:99:36:b2:af:a1:6f:98:1d:3a:7b:3f:65: 49:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EB:5D:66:07:2B:11:A2:B6:E0:4D:71:58:54:85:E0:C8:C3:69:80 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b7:14:b9:f0:9a:93:f1:1b:dc:02:ed:06:f0:9e:cb:83:84: 1c:fd:78:87:b4:b8:f1:25:86:7a:75:5c:47:2d:6d:a9:88:7c: 1b:b7:99:a3:0d:13:70:af:88:15:ce:ff:ed:02:c6:25:8d:78: f6:85:ef:45:1e:3a:29:4f:36:1e:54:0c:94:5d:2d:8c:08:90: cd:be:18:2a:fb:86:c4:cf:69:54:e7:7c:12:0c:0a:6a:9e:97: ba:9c:ce:a1:a8:f9:cb:5d:5a:70:a1:d4:98:b9:ef:cf:96:d1: 5e:60:11:2d:94:4f:16:ae:6c:20:76:40:5a:cf:01:15:58:b2: 6f:c3:6b:cd:5f:59:cd:1b:53:17:71:3e:e6:17:4d:e0:5c:ac: 2f:81:23:70:9c:0e:f9:d0:20:a2:66:f5:1f:3f:47:c7:f8:f1: 58:f9:81:78:0f:27:c3:34:78:9c:52:ef:11:df:73:28:75:02: 3f:23:d6:b2:25:e9:0a:3d:68:be:da:ac:a6:a2:b5:ee:53:e3: 8a:73:fd:c6:c9:ce:58:e3:fa:6e:fb:17:5a:04:65:80:58:d9: b6:97:bb:43:f4:4e:c6:e1:ba:f7:77:94:52:f6:36:86:25:2c: d6:1a:00:f2:f9:6b:32:ce:a3:58:c0:4d:b5:81:de:fe:30:2e: e0:74:fe:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUwOTA1MDYwMTM2WhcNMjUwOTEyMDYwMTM2WjAYMRYwFAYD VQQDEw02OGJhN2NjMC0xZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqekhV6gDPnlzo+5ioxDo4Mfnd9xeuYJevA+khWqhbJhYJFjekMD3R14CP9jb EcFNSpnyzV72K2a0c+v10nkd0YQaLrFS1XLFF1uPMYhrzyINONpfU6S010ehDc3P fI2aABLpSCN4IB4lsdF3dM7GBG+F/SYiLW77BPx0KYROwzGHpJHau3gvmYhgzLdh qrJIZzYwFsnhEhaYkmhhfc9B6ohGC/IrXMCytqf8Fzgm0SIdBwIGtpfKGyjbwUNo g7l2bS8OybkXHU9vVbbr7VDkZbkCr9FZC7FLG5A5P2ASOzK2OqASH2GRynF0etqR R2H9tPiZNrKvoW+YHTp7P2VJ+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/rXWYH KxGituBNcVhUheDIw2mAMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7txS58JqT8RvcAu0G8J7Lg4Qc/XiHtLjxJYZ6dVxHLW2piHwbt5mj DRNwr4gVzv/tAsYljXj2he9FHjopTzYeVAyUXS2MCJDNvhgq+4bEz2lU53wSDApq npe6nM6hqPnLXVpwodSYue/PltFeYBEtlE8WrmwgdkBazwEVWLJvw2vNX1nNG1MX cT7mF03gXKwvgSNwnA750CCiZvUfP0fH+PFY+YF4DyfDNHicUu8R33ModQI/I9ay JekKPWi+2qymorXuU+OKc/3Gyc5Y4/pu+xdaBGWAWNm2l7tD9E7G4br3d5RS9jaG JSzWGgDy+WsyzqNYwE21gd7+MC7gdP6Q -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:13 2025 by rpki-client