$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft File: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft (raw, json) Hash identifier: /3lnkfSogDvZt0Nu8v7gZoj2H6hOcOuyBALieB0gU08= Subject key identifier: F9:CA:7D:B5:62:B6:67:7D:39:CD:CD:B6:B4:88:28:07:23:6F:3E:E7 Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft Manifest number: 015C Signing time: Sun 07 Sep 2025 04:27:53 +0000 Manifest this update: Sun 07 Sep 2025 04:27:53 +0000 Manifest next update: Sun 14 Sep 2025 04:27:53 +0000 Files and hashes: 1: YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl (hash: TLiIXUipRmlEE794cM0sXAn3TaH4ItwCAYQFkAkWsOE=) 2: E8E76DFA77E111EEAD38F454C4F9AE02.roa (hash: fU/RkpVL4z6Cr0cyCUfNUkgmOGc3QWQsXd03NlJ0kdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0, serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: Sep 7 04:27:53 2025 GMT Not After : Sep 14 04:27:53 2025 GMT Subject: CN=68bd09c9-3806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a9:5d:05:e1:3a:e0:73:31:7a:c9:a6:fd:d5: e8:b2:8d:c7:ff:87:09:e9:e0:aa:88:07:bf:48:8b: 08:f9:4b:79:51:8d:e1:b8:fd:d5:5d:4c:e1:ca:08: f5:e6:b8:44:39:f7:a3:96:a8:76:2a:4b:9a:4f:42: 87:2f:16:3c:e2:3d:02:06:60:6d:48:c0:ae:b3:b9: 16:1f:a2:3a:a9:15:8e:0f:c4:38:dc:dc:60:c8:15: 93:f5:1c:7c:f0:a9:85:f0:f1:63:6e:43:53:f0:52: 6e:44:e8:99:68:4d:1b:85:72:62:15:98:1d:6a:b5: bd:31:51:92:4d:e4:ae:2f:5a:65:a3:f4:fb:50:0d: d2:af:f3:03:c0:54:16:56:dd:4c:9a:16:b8:b2:7a: a4:7e:06:7c:12:ba:ed:a8:05:3f:c2:1a:90:86:86: 3d:a0:83:03:04:85:dc:3c:68:4d:39:f9:99:83:dd: e8:a2:93:03:0e:ae:3a:5e:cf:48:a3:e6:8e:1f:03: 99:9f:f7:71:dc:09:4e:71:4e:12:ea:3c:8b:06:95: e4:84:9e:cf:85:be:c4:d2:21:35:28:94:5c:05:f4: 93:19:da:39:3e:e1:64:a4:7b:46:de:1e:65:e9:a7: 44:9b:bf:3b:19:1e:bd:f8:4f:15:d9:11:5f:74:90: c2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CA:7D:B5:62:B6:67:7D:39:CD:CD:B6:B4:88:28:07:23:6F:3E:E7 X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:85:43:f6:cb:b8:91:7b:8d:b0:99:2e:06:20:fb:a3:c2:8e: a6:4d:8d:7e:b2:98:3e:f7:33:aa:b2:e4:56:2d:17:76:d3:84: 3b:52:24:3e:f8:a4:f3:ee:08:d0:81:22:87:61:9b:d2:18:48: eb:d1:5b:aa:7e:1d:d9:8c:17:c7:d6:88:4d:97:d9:4d:de:87: ca:b2:dd:7f:8b:6a:69:7e:bb:1c:04:0c:18:bb:58:e7:9c:85: 3d:24:11:86:62:41:0e:6c:3f:0e:7d:1f:d8:d6:9a:d2:d6:fc: ca:1c:10:c4:55:85:e3:02:0a:0c:fa:21:56:b3:f1:ed:d2:ae: ef:c4:83:f4:28:e0:2d:4c:9c:0d:9c:3f:3b:60:73:45:8f:4f: 35:aa:ad:ff:04:14:5f:94:ae:d2:90:31:c7:22:93:fb:6f:42: 8c:18:be:86:49:b8:41:1c:a2:53:78:aa:10:18:f7:86:26:f4: 3e:11:59:55:1b:77:22:7b:38:62:85:cc:54:c9:fe:7b:d7:c3: 0c:33:72:d7:b3:f8:77:15:8b:8c:7d:e4:33:6b:fa:bf:41:f2: c8:84:c8:67:37:a3:2c:3b:16:bf:d3:97:ab:e6:02:b0:18:a0: 5d:db:69:94:73:0d:c0:5d:4a:fd:52:42:60:e3:5a:80:ea:d4: 1a:83:70:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG MkI1OTYyMDQwHhcNMjUwOTA3MDQyNzUzWhcNMjUwOTE0MDQyNzUzWjAYMRYwFAYD VQQDEw02OGJkMDljOS0zODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9qldBeE64HMxesmm/dXoso3H/4cJ6eCqiAe/SIsI+Ut5UY3huP3VXUzhygj1 5rhEOfejlqh2KkuaT0KHLxY84j0CBmBtSMCus7kWH6I6qRWOD8Q43NxgyBWT9Rx8 8KmF8PFjbkNT8FJuROiZaE0bhXJiFZgdarW9MVGSTeSuL1plo/T7UA3Sr/MDwFQW Vt1Mmha4snqkfgZ8ErrtqAU/whqQhoY9oIMDBIXcPGhNOfmZg93oopMDDq46Xs9I o+aOHwOZn/dx3AlOcU4S6jyLBpXkhJ7Phb7E0iE1KJRcBfSTGdo5PuFkpHtG3h5l 6adEm787GR69+E8V2RFfdJDCZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnKfbVi tmd9Oc3NtrSIKAcjbz7nMB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3 RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkVEMC80QzE3QTA0RTc3RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4 ZGpscFFYUER6LVh5dFpZZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBchUP2y7iRe42wmS4GIPujwo6mTY1+spg+9zOqsuRWLRd204Q7UiQ+ +KTz7gjQgSKHYZvSGEjr0Vuqfh3ZjBfH1ohNl9lN3ofKst1/i2ppfrscBAwYu1jn nIU9JBGGYkEObD8OfR/Y1prS1vzKHBDEVYXjAgoM+iFWs/Ht0q7vxIP0KOAtTJwN nD87YHNFj081qq3/BBRflK7SkDHHIpP7b0KMGL6GSbhBHKJTeKoQGPeGJvQ+EVlV G3ciezhihcxUyf5718MMM3LXs/h3FYuMfeQza/q/QfLIhMhnN6MsOxa/05er5gKw GKBd22mUcw3AXUr9UkJg41qA6tQag3DD -----END CERTIFICATE-----Generated at Mon Sep 8 14:38:52 2025 by rpki-client