$ rpki-client -vvf rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft File: jYqA7HIK5-1T_SED6OachVWtD4Y.mft (raw, json) Hash identifier: wVufHAyCa35dLhqVnBrfHgmjfval+fKxBnWY2qtIlz0= Subject key identifier: 27:D9:6A:F5:AE:0E:0E:A3:D4:CB:C4:57:0E:2E:78:2D:93:72:9B:C1 Authority key identifier: 8D:8A:80:EC:72:0A:E7:ED:53:FD:21:03:E8:E6:9C:85:55:AD:0F:86 Certificate issuer: /CN=A91BECBA/serialNumber=8D8A80EC720AE7ED53FD2103E8E69C8555AD0F86 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft Manifest number: B6 Signing time: Sat 23 Aug 2025 06:13:50 +0000 Manifest this update: Sat 23 Aug 2025 06:13:49 +0000 Manifest next update: Sat 30 Aug 2025 06:13:49 +0000 Files and hashes: 1: jYqA7HIK5-1T_SED6OachVWtD4Y.crl (hash: x71lhA6hLyQfZv1hrlCDwfBhKtBVQQHztMtUV/9DMBY=) 2: A0142C706B6611EF88C61580C4F9AE02.roa (hash: WL6knuhT+IT7g3hW2IRpH1KnEWqyPmGpIe/IXLQK6so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.crl rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BECBA, serialNumber=8D8A80EC720AE7ED53FD2103E8E69C8555AD0F86 Validity Not Before: Aug 23 06:13:49 2025 GMT Not After : Aug 30 06:13:49 2025 GMT Subject: CN=68a95c1d-2038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:aa:bf:ad:cb:45:09:8f:cc:12:50:51:80:66: b2:58:16:df:8d:ef:b6:a2:d3:62:8a:f9:24:b1:f4: 1f:29:d9:3b:6f:5b:76:65:af:e3:2e:46:57:ee:a6: f7:d1:1e:b4:92:eb:e1:6d:18:d4:8e:53:66:6c:e3: 62:82:32:cb:bd:ca:63:df:20:e6:3a:2b:90:7a:c0: 60:74:ad:d3:34:8b:8b:a6:e9:48:22:36:4e:04:50: b9:de:50:9a:be:ef:03:95:38:6c:df:3d:43:17:1f: 7d:fe:1f:b3:ab:10:ea:a3:6a:f7:d7:a6:4e:6d:eb: dc:2f:bd:2b:3c:38:68:6a:49:10:75:4b:e6:32:fb: 9d:11:fa:13:42:0f:17:eb:15:5a:d9:66:a8:94:e6: 34:55:11:42:09:bd:11:ec:07:cd:06:5e:58:7b:3a: ff:5b:51:16:3f:d3:df:0c:a5:f2:df:14:17:e7:28: 86:c2:e0:c0:ec:4f:47:5a:19:3b:f7:d9:0b:60:85: b8:a5:1d:40:85:3d:2d:dd:19:98:f0:f3:08:d0:5c: 12:0c:5a:e2:d7:1d:d7:e6:8a:50:a2:ae:59:a2:f8: 2c:c7:6b:1b:81:3c:e2:44:a9:3a:5d:e8:d5:bf:79: 7e:b8:d5:f9:2a:b8:be:71:93:e7:96:8e:ef:2c:8a: 5d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D9:6A:F5:AE:0E:0E:A3:D4:CB:C4:57:0E:2E:78:2D:93:72:9B:C1 X509v3 Authority Key Identifier: keyid:8D:8A:80:EC:72:0A:E7:ED:53:FD:21:03:E8:E6:9C:85:55:AD:0F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jYqA7HIK5-1T_SED6OachVWtD4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BECBA/583E2B9A6B6511EFA857E80CC4F9AE02/jYqA7HIK5-1T_SED6OachVWtD4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:dd:36:5a:89:8a:d7:f2:43:09:19:13:ef:79:3b:0b:fd:ae: 91:13:bf:f8:44:ed:e0:fe:35:ea:32:e8:0a:4a:cf:0e:02:dc: e2:72:71:b0:51:bb:fc:ac:72:fb:88:27:59:4d:8d:dd:09:5b: 7e:6a:49:60:ff:93:cc:bb:b1:ac:ec:76:9e:8e:8f:35:f6:44: f1:4d:e8:ff:52:9a:8b:df:2b:a9:92:0c:f7:17:fb:60:8f:c5: de:13:92:1e:1f:45:d9:47:65:f2:b5:2e:39:a3:d9:57:43:2c: cd:6c:df:00:d1:d0:50:48:a2:be:d2:f0:4c:87:3c:10:69:25: 0b:22:ad:9d:4d:7a:be:42:76:19:79:44:80:99:7e:34:91:c0: e2:f3:5e:b1:a7:94:79:1e:fa:d1:cd:b5:2d:df:7d:ce:f4:64: 62:a9:4b:ad:1a:dd:e9:b4:59:40:24:bf:c6:5d:6c:59:4a:41: c1:8e:8b:69:94:d3:c4:6b:94:3b:ac:4c:31:3e:f9:ea:11:fa: f8:c7:31:b0:96:9e:ec:47:d9:83:f5:ec:3a:29:d7:fd:41:8d: 7d:fd:2f:6f:eb:da:f2:c6:e6:2c:2f:de:28:f3:b0:34:3e:d1: 31:0c:33:d1:1c:fd:92:34:63:1d:69:1e:bd:d0:5c:9b:90:b9: 5f:4e:0d:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVDQkExMTAvBgNVBAUTKDhEOEE4MEVDNzIwQUU3RUQ1M0ZEMjEwM0U4RTY5Qzg1 NTVBRDBGODYwHhcNMjUwODIzMDYxMzQ5WhcNMjUwODMwMDYxMzQ5WjAYMRYwFAYD VQQDEw02OGE5NWMxZC0yMDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qq/rctFCY/MElBRgGayWBbfje+2otNiivkksfQfKdk7b1t2Za/jLkZX7qb3 0R60kuvhbRjUjlNmbONigjLLvcpj3yDmOiuQesBgdK3TNIuLpulIIjZOBFC53lCa vu8DlThs3z1DFx99/h+zqxDqo2r316ZObevcL70rPDhoakkQdUvmMvudEfoTQg8X 6xVa2WaolOY0VRFCCb0R7AfNBl5Yezr/W1EWP9PfDKXy3xQX5yiGwuDA7E9HWhk7 99kLYIW4pR1AhT0t3RmY8PMI0FwSDFri1x3X5opQoq5Zovgsx2sbgTziRKk6XejV v3l+uNX5Kri+cZPnlo7vLIpd5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfZavWu Dg6j1MvEVw4ueC2TcpvBMB8GA1UdIwQYMBaAFI2KgOxyCuftU/0hA+jmnIVVrQ+G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUNCQS81ODNFMkI5QTZC NjUxMUVGQTg1N0U4MENDNEY5QUUwMi9qWXFBN0hJSzUtMVRfU0VENk9hY2hWV3RE NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pZcUE3SElLNS0xVF9TRUQ2T2FjaFZXdEQ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUNCQS81ODNFMkI5QTZCNjUxMUVGQTg1N0U4MENDNEY5QUUwMi9qWXFBN0hJSzUt MVRfU0VENk9hY2hWV3RENFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt3TZaiYrX8kMJGRPveTsL/a6RE7/4RO3g/jXqMugKSs8OAtzicnGw Ubv8rHL7iCdZTY3dCVt+aklg/5PMu7Gs7Haejo819kTxTej/UpqL3yupkgz3F/tg j8XeE5IeH0XZR2XytS45o9lXQyzNbN8A0dBQSKK+0vBMhzwQaSULIq2dTXq+QnYZ eUSAmX40kcDi816xp5R5HvrRzbUt333O9GRiqUutGt3ptFlAJL/GXWxZSkHBjotp lNPEa5Q7rEwxPvnqEfr4xzGwlp7sR9mD9ew6Kdf9QY19/S9v69ryxuYsL94o87A0 PtExDDPRHP2SNGMdaR690FybkLlfTg1U -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:52 2025 by rpki-client