$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: CsZMK8LvYxfY4rVtTnT7zl71K2Vv7VLa0+3tkSZVC2A= Subject key identifier: 50:C7:C6:DE:79:4A:39:EA:9D:03:24:1A:92:C4:ED:D0:DE:AC:49:6A Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: B8 Signing time: Fri 19 Sep 2025 06:36:30 +0000 Manifest this update: Fri 19 Sep 2025 06:36:29 +0000 Manifest next update: Fri 26 Sep 2025 06:36:29 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: eHAkS6PUs0/aFOweQCMWo9b0ipDvBVJ9pmH6lpg44oE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Sep 19 06:36:29 2025 GMT Not After : Sep 26 06:36:29 2025 GMT Subject: CN=68ccf9ed-b39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:17:7a:f3:57:a8:89:f8:d2:ae:21:40:f2:65: 4a:89:07:bd:8a:cc:89:d0:2a:57:10:25:1e:87:95: 48:03:5f:de:19:40:14:df:00:ad:0a:f8:23:e6:08: 34:78:56:2e:93:97:0f:e7:29:90:d0:0d:bc:d7:9e: 66:83:e8:5d:c7:af:f0:0d:44:c8:e9:b2:4c:8b:b3: ca:b6:54:92:bb:10:17:3b:2e:ba:14:8f:cd:7b:a5: 49:44:92:85:a8:f2:39:4d:d9:85:da:72:fd:b3:e1: 01:74:03:ca:a1:23:74:90:e8:4d:ee:a8:1c:18:7d: 98:95:52:a2:43:47:c2:71:ce:4b:5f:82:33:8b:ba: 27:a6:36:b4:a1:88:e8:1b:28:dd:b6:45:01:1b:00: 19:4a:b4:0f:66:93:a7:c0:6b:ee:f0:60:8a:80:b0: cc:69:5e:fd:19:57:a1:7f:c3:66:cc:3d:a7:8d:09: 44:a7:88:a2:bf:5f:41:65:f4:5a:93:06:4a:4d:96: b6:e4:d1:99:a8:59:30:e1:0d:2e:5a:e0:9c:be:64: 72:e0:18:ee:41:a6:3a:d9:45:6c:10:0c:d6:fd:a2: c2:3b:a0:43:1e:cc:a3:bd:05:45:38:90:a3:81:fd: 00:a2:c1:60:fd:21:95:83:cb:5d:8a:f8:81:98:97: c6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C7:C6:DE:79:4A:39:EA:9D:03:24:1A:92:C4:ED:D0:DE:AC:49:6A X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:cb:78:02:e3:8f:96:9c:da:1e:39:13:34:ac:f3:13:44:f0: ee:bd:5b:3c:d4:ef:72:83:92:a3:02:a7:5a:a7:45:fa:fd:a3: f3:f3:04:1a:41:b7:0d:f1:36:d3:65:fb:95:4c:ac:8e:37:24: f7:11:b8:c8:11:eb:70:50:9c:25:44:3b:89:a5:4a:b0:e8:eb: 1c:08:93:c1:45:be:be:61:7d:85:71:ac:c7:a7:71:d6:1c:9c: c7:ad:ea:94:31:d4:8c:f4:1a:f4:d5:52:0f:79:67:d8:e5:0b: c5:37:a6:12:ac:82:08:f3:04:93:dc:42:1a:63:b5:65:80:e4: 48:53:2f:90:d8:df:99:ff:05:5f:2b:70:a1:19:40:df:2c:6a: a4:f7:db:6b:46:fe:0f:cc:35:55:dc:1a:e3:8a:df:8b:cc:4f: cd:b6:ea:12:16:be:e2:87:7c:66:42:23:a2:5a:53:f0:c8:9c: af:31:38:73:cb:8f:ef:b1:8f:27:ba:13:08:21:e3:77:67:28: de:bf:fc:16:c2:83:2d:70:1a:fb:52:b4:f5:22:4b:2c:82:07: 31:26:ed:26:77:3e:9a:f9:15:dc:0c:c1:d6:3b:27:cf:36:98: 49:eb:8c:41:a7:92:f7:a1:b6:e8:32:9f:74:ee:26:53:45:59: 7d:b1:0f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUwOTE5MDYzNjI5WhcNMjUwOTI2MDYzNjI5WjAYMRYwFAYD VQQDEw02OGNjZjllZC1iMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBd681eoifjSriFA8mVKiQe9isyJ0CpXECUeh5VIA1/eGUAU3wCtCvgj5gg0 eFYuk5cP5ymQ0A28155mg+hdx6/wDUTI6bJMi7PKtlSSuxAXOy66FI/Ne6VJRJKF qPI5TdmF2nL9s+EBdAPKoSN0kOhN7qgcGH2YlVKiQ0fCcc5LX4Izi7onpja0oYjo GyjdtkUBGwAZSrQPZpOnwGvu8GCKgLDMaV79GVehf8NmzD2njQlEp4iiv19BZfRa kwZKTZa25NGZqFkw4Q0uWuCcvmRy4BjuQaY62UVsEAzW/aLCO6BDHsyjvQVFOJCj gf0AosFg/SGVg8tdiviBmJfGQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDHxt55 SjnqnQMkGpLE7dDerElqMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRy3gC44+WnNoeORM0rPMTRPDuvVs81O9yg5KjAqdap0X6/aPz8wQa QbcN8TbTZfuVTKyONyT3EbjIEetwUJwlRDuJpUqw6OscCJPBRb6+YX2FcazHp3HW HJzHreqUMdSM9Br01VIPeWfY5QvFN6YSrIII8wST3EIaY7VlgORIUy+Q2N+Z/wVf K3ChGUDfLGqk99trRv4PzDVV3Brjit+LzE/NtuoSFr7ih3xmQiOiWlPwyJyvMThz y4/vsY8nuhMIIeN3Zyjev/wWwoMtcBr7UrT1IkssggcxJu0mdz6a+RXcDMHWOyfP NphJ64xBp5L3obboMp907iZTRVl9sQ/I -----END CERTIFICATE-----Generated at Fri Sep 19 10:39:20 2025 by rpki-client