$ rpki-client -vvf rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft File: Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft (raw, json) Hash identifier: A+OkySGTJH2ED0cBo5lzvMpmS+t3fgX21wQEfU7XjYo= Subject key identifier: 27:D2:47:6E:C3:A0:E9:DC:C1:AA:E9:93:AE:A8:70:F3:C3:47:87:6C Authority key identifier: 63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C Certificate issuer: /CN=A91C15F2/serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft Manifest number: 060A Signing time: Wed 20 Aug 2025 22:57:20 +0000 Manifest this update: Wed 20 Aug 2025 22:57:20 +0000 Manifest next update: Wed 27 Aug 2025 22:57:20 +0000 Files and hashes: 1: Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl (hash: 6ow+WGjY0X9ioeSqDjaCebirSDB1okdCVwHvnPqOyOw=) 2: C8AE3C40B93811EBAC80A46DC4F9AE02.roa (hash: Ck3Q3b0m7wZfc35rCMLbisQ7sVgiMLOPm+0PDdt1xrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C15F2, serialNumber=6382B513348315D5AF3F130EC54C1DA867288C2C Validity Not Before: Aug 20 22:57:20 2025 GMT Not After : Aug 27 22:57:20 2025 GMT Subject: CN=68a652d0-4748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1b:ab:5d:f9:fa:0e:32:b7:ee:65:f2:b2:a4: 57:51:48:e1:66:ec:37:c9:76:00:f5:5e:c6:3d:ad: 4c:66:d2:31:cf:49:d9:5f:d1:a0:e6:da:cf:d1:71: a0:2e:ef:cd:60:e7:9c:dd:72:3d:8a:d5:e7:c1:ee: fd:3a:3e:4d:a2:b7:a8:54:b8:bd:42:63:ad:7c:a7: f5:11:26:6f:18:81:9e:a5:67:85:d9:7e:a4:43:a4: 1c:11:ab:8b:ba:d9:7b:68:b9:ef:e2:06:0c:b0:54: 9b:0d:ca:e4:8c:50:3f:52:35:eb:c6:e9:85:6c:72: b8:71:f3:e9:9f:15:78:0a:95:8d:f3:ef:ed:5a:39: d4:f4:e1:a9:29:a4:21:58:72:6d:81:87:3b:3a:ee: ff:36:e7:a1:be:1f:80:c0:1f:ba:71:14:80:f3:31: 05:27:ad:53:cc:26:d6:5c:55:e0:85:06:08:74:e7: 39:a0:b1:c8:5c:cb:a7:33:0b:b4:ef:f7:9b:6f:04: dd:b1:10:04:34:76:24:05:c3:3f:0d:df:84:2f:48: 3f:64:93:70:6c:0a:b1:6c:f4:aa:3c:2a:16:f1:a6: 6f:49:56:7e:fc:a4:46:0a:e4:51:52:3d:69:a5:28: 34:a4:81:b6:8e:1d:a1:61:9b:2d:8a:ca:43:a2:0f: 0c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D2:47:6E:C3:A0:E9:DC:C1:AA:E9:93:AE:A8:70:F3:C3:47:87:6C X509v3 Authority Key Identifier: keyid:63:82:B5:13:34:83:15:D5:AF:3F:13:0E:C5:4C:1D:A8:67:28:8C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4K1EzSDFdWvPxMOxUwdqGcojCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C15F2/56322D98B89811EBAD6C1D48C4F9AE02/Y4K1EzSDFdWvPxMOxUwdqGcojCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:61:b7:49:a6:b7:1b:26:24:6c:7d:a5:8a:1a:fe:a3:81:ac: 39:6f:7e:b7:9c:9b:05:54:27:09:a3:f4:17:2a:fd:bc:e1:d3: db:57:da:14:c9:02:d9:93:8e:8a:aa:59:ed:ac:2a:74:24:79: 4a:05:f4:2e:9a:9b:5a:68:89:9e:68:f3:23:97:07:b5:83:67: 9a:6f:42:2b:a7:45:29:a1:ff:d5:e3:1d:d5:41:e0:b5:c8:2b: 9a:56:8b:0a:89:d5:33:54:45:ef:29:e4:94:d6:d9:a2:48:f8: 1f:65:8a:f2:70:c4:fe:d5:92:1a:cb:33:6a:09:94:af:58:cc: a2:a7:3c:0c:15:e2:79:67:4b:ab:74:81:5c:71:a1:c8:54:01: 90:fd:12:f4:99:0f:25:f9:e3:bb:9e:3f:ca:b6:88:2f:51:00: 29:56:1a:a0:9c:aa:32:04:d8:56:39:ee:eb:78:7a:57:fc:22: 96:cb:47:14:3c:7c:bf:b8:99:fd:49:ee:f9:69:57:a9:14:29: 28:8c:76:f1:04:d3:5c:41:ee:31:17:8c:32:11:43:b3:03:68: 1a:86:72:d1:3b:b0:65:b9:8c:33:4d:81:3e:50:12:a9:81:4e: 5f:03:14:f1:b1:30:4e:26:c1:9f:8a:c1:9b:01:9f:ea:63:be: a0:e5:10:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE1RjIxMTAvBgNVBAUTKDYzODJCNTEzMzQ4MzE1RDVBRjNGMTMwRUM1NEMxREE4 NjcyODhDMkMwHhcNMjUwODIwMjI1NzIwWhcNMjUwODI3MjI1NzIwWjAYMRYwFAYD VQQDEw02OGE2NTJkMC00NzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xurXfn6DjK37mXysqRXUUjhZuw3yXYA9V7GPa1MZtIxz0nZX9Gg5trP0XGg Lu/NYOec3XI9itXnwe79Oj5NoreoVLi9QmOtfKf1ESZvGIGepWeF2X6kQ6QcEauL utl7aLnv4gYMsFSbDcrkjFA/UjXrxumFbHK4cfPpnxV4CpWN8+/tWjnU9OGpKaQh WHJtgYc7Ou7/Nuehvh+AwB+6cRSA8zEFJ61TzCbWXFXghQYIdOc5oLHIXMunMwu0 7/ebbwTdsRAENHYkBcM/Dd+EL0g/ZJNwbAqxbPSqPCoW8aZvSVZ+/KRGCuRRUj1p pSg0pIG2jh2hYZstispDog8MpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfSR27D oOncwarpk66ocPPDR4dsMB8GA1UdIwQYMBaAFGOCtRM0gxXVrz8TDsVMHahnKIws MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTVGMi81NjMyMkQ5OEI4 OTgxMUVCQUQ2QzFENDhDNEY5QUUwMi9ZNEsxRXpTREZkV3ZQeE1PeFV3ZHFHY29q Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0SzFFelNERmRXdlB4TU94VXdkcUdjb2pDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTVGMi81NjMyMkQ5OEI4OTgxMUVCQUQ2QzFENDhDNEY5QUUwMi9ZNEsxRXpTREZk V3ZQeE1PeFV3ZHFHY29qQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkYbdJprcbJiRsfaWKGv6jgaw5b363nJsFVCcJo/QXKv284dPbV9oU yQLZk46KqlntrCp0JHlKBfQumptaaImeaPMjlwe1g2eab0Irp0Upof/V4x3VQeC1 yCuaVosKidUzVEXvKeSU1tmiSPgfZYrycMT+1ZIayzNqCZSvWMyipzwMFeJ5Z0ur dIFccaHIVAGQ/RL0mQ8l+eO7nj/KtogvUQApVhqgnKoyBNhWOe7reHpX/CKWy0cU PHy/uJn9Se75aVepFCkojHbxBNNcQe4xF4wyEUOzA2gahnLRO7BluYwzTYE+UBKp gU5fAxTxsTBOJsGfisGbAZ/qY76g5RAh -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:26 2025 by rpki-client