$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: gRsBC0XliLppCKxNQI4IxyoT74WWj4JjZxnLFbBR/kM= Subject key identifier: EC:00:ED:F0:07:40:3F:17:E5:3F:23:67:91:FB:E8:34:24:BB:36:65 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 0505 Signing time: Wed 17 Sep 2025 00:01:50 +0000 Manifest this update: Wed 17 Sep 2025 00:01:49 +0000 Manifest next update: Wed 24 Sep 2025 00:01:49 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: c4HxZ4kPd9GRp1XsjNn0SNN7s7gTFFhOFtgNAM1H4x4=) 2: B0A2E01225C411EC88466E59C4F9AE02.roa (hash: 8z4FQ3P4ffexi4IqxjF16x9Xr0QlwFMb8TffrA8dnxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Sep 17 00:01:49 2025 GMT Not After : Sep 24 00:01:49 2025 GMT Subject: CN=68c9fa6d-1e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d3:73:f9:03:7c:dc:b4:4d:1f:71:91:ab:9b: ec:16:00:f0:38:19:c4:dd:5f:4d:30:74:73:12:55: 23:5a:86:d8:77:ee:92:f3:d1:47:c5:9a:1f:47:93: b8:89:59:0c:12:fa:6f:22:7b:c0:07:60:61:7b:82: da:dc:ce:e8:b0:17:da:40:01:84:de:9f:b9:20:41: 9b:b9:6a:24:0d:2c:af:f2:f9:f6:b3:bc:c6:3f:8b: 17:ce:7d:db:ea:cc:7e:65:2e:b0:04:7e:83:7f:3e: f1:41:ca:96:95:c8:00:53:d8:e6:eb:d9:e6:e3:95: 8b:54:f5:89:8e:90:10:56:71:10:b7:62:6b:05:0f: e0:33:39:8f:08:0e:6b:bb:ab:d9:c3:d6:6b:51:80: d5:02:2c:34:4e:ff:4a:12:da:f2:0b:b0:e8:5b:72: 51:dd:fc:93:86:fa:2c:03:d6:e4:aa:65:d9:8b:db: 59:f9:2a:77:ee:bd:6e:79:75:45:3f:be:1c:39:12: 5a:b0:f7:56:4a:84:10:f7:aa:4f:ae:7d:93:ed:61: 60:c7:cf:95:2d:f1:34:15:08:82:27:ed:24:1b:8e: 15:31:b0:bc:38:30:40:a5:68:53:3f:29:6d:20:dd: bc:af:06:c4:44:c4:40:c4:3a:0f:bd:76:bc:81:72: 6e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:00:ED:F0:07:40:3F:17:E5:3F:23:67:91:FB:E8:34:24:BB:36:65 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f6:14:19:aa:4c:e0:fd:bf:44:61:1d:f5:f6:e6:2d:00:c9: 1e:2c:b4:c5:64:d2:f0:2b:bc:bb:7b:cc:6b:3b:02:f8:ac:cd: af:af:33:99:ef:5a:d6:8e:09:cf:d2:85:0e:a3:7b:52:c3:ea: 76:42:0d:09:3e:b7:21:62:01:a5:0e:a9:b8:41:f7:9e:1d:88: 2a:05:71:b7:47:09:11:a4:e2:5d:03:40:86:d6:b2:a2:2c:82: 6e:ec:81:e9:3e:d3:11:be:fd:ca:ce:52:b3:d7:6f:9e:a0:ff: e8:eb:c9:7f:de:56:3f:7a:92:7c:ab:4d:48:35:dc:39:55:5e: 7f:6f:53:fa:7c:9e:f2:9c:32:a4:57:9d:7a:66:78:cb:23:4e: 84:0e:58:39:64:a4:d7:df:98:8c:f8:18:76:7f:39:62:b8:7a: 87:ab:68:bf:c3:a7:c5:e2:71:c1:93:c9:6c:9c:30:d7:e8:e8: c4:92:a8:7f:68:4a:e6:03:29:6a:cd:e2:3d:ac:17:d0:eb:3b: 4e:2c:b7:e7:ce:0e:e3:9a:c7:da:a9:96:64:5b:1b:3c:d6:1f: 44:c8:5d:80:09:1d:ec:50:06:70:3f:85:ff:2c:0c:27:d0:ee: 07:10:f3:87:5c:f4:94:d7:14:06:d0:9f:73:57:3b:56:a1:5a: 7d:0e:0a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUwOTE3MDAwMTQ5WhcNMjUwOTI0MDAwMTQ5WjAYMRYwFAYD VQQDEw02OGM5ZmE2ZC0xZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstNz+QN83LRNH3GRq5vsFgDwOBnE3V9NMHRzElUjWobYd+6S89FHxZofR5O4 iVkMEvpvInvAB2Bhe4La3M7osBfaQAGE3p+5IEGbuWokDSyv8vn2s7zGP4sXzn3b 6sx+ZS6wBH6Dfz7xQcqWlcgAU9jm69nm45WLVPWJjpAQVnEQt2JrBQ/gMzmPCA5r u6vZw9ZrUYDVAiw0Tv9KEtryC7DoW3JR3fyThvosA9bkqmXZi9tZ+Sp37r1ueXVF P74cORJasPdWSoQQ96pPrn2T7WFgx8+VLfE0FQiCJ+0kG44VMbC8ODBApWhTPylt IN28rwbERMRAxDoPvXa8gXJuRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwA7fAH QD8X5T8jZ5H76DQkuzZlMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ9hQZqkzg/b9EYR319uYtAMkeLLTFZNLwK7y7e8xrOwL4rM2vrzOZ 71rWjgnP0oUOo3tSw+p2Qg0JPrchYgGlDqm4QfeeHYgqBXG3RwkRpOJdA0CG1rKi LIJu7IHpPtMRvv3KzlKz12+eoP/o68l/3lY/epJ8q01INdw5VV5/b1P6fJ7ynDKk V516ZnjLI06EDlg5ZKTX35iM+Bh2fzliuHqHq2i/w6fF4nHBk8lsnDDX6OjEkqh/ aErmAylqzeI9rBfQ6ztOLLfnzg7jmsfaqZZkWxs81h9EyF2ACR3sUAZwP4X/LAwn 0O4HEPOHXPSU1xQG0J9zVztWoVp9Dgp5 -----END CERTIFICATE-----Generated at Thu Sep 18 19:13:18 2025 by rpki-client