$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft File: ySmS1w7OQRpiVb9AueCkUhSUQA0.mft (raw, json) Hash identifier: v1MRa4GB9RlEB0g4B9dl3QLCPBJr4Qe40zOb+HreDVc= Subject key identifier: B6:55:3E:F6:7A:D3:15:D7:AB:26:84:15:91:22:D1:0B:B8:F0:9E:22 Authority key identifier: C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D Certificate issuer: /CN=A91C4102/serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Certificate serial: 0A82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft Manifest number: 1235 Signing time: Sun 24 Aug 2025 19:35:41 +0000 Manifest this update: Sun 24 Aug 2025 19:35:41 +0000 Manifest next update: Sun 31 Aug 2025 19:35:41 +0000 Files and hashes: 1: ySmS1w7OQRpiVb9AueCkUhSUQA0.crl (hash: gWbSU1JyDrKIWNpvXTl+qvILaRJ/fSPbdrHrA9q3jVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2690 (0xa82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102, serialNumber=C92992D70ECE411A6255BF40B9E0A4521494400D Validity Not Before: Aug 24 19:35:41 2025 GMT Not After : Aug 31 19:35:41 2025 GMT Subject: CN=68ab698d-90db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:55:d7:85:fd:55:44:cd:09:2e:4e:c3:a4:d4: 47:ac:9f:91:82:27:27:91:8b:46:f5:a8:6c:a1:a8: b5:f9:b0:15:5b:27:e0:f2:45:3c:00:8d:03:d4:ac: ff:34:b9:74:1d:64:50:e4:e4:4e:4f:63:b4:1c:6c: 9a:b3:cb:a5:ab:f1:1a:09:92:3f:24:8d:d7:dd:5a: 3f:7d:b8:4f:11:b8:ce:e4:ef:0a:79:f0:da:64:ff: 35:3b:df:c5:57:a6:12:c0:fe:ac:86:7c:58:61:f9: cd:c2:bc:a3:20:57:cc:aa:4d:fc:ea:08:db:0d:96: 8e:30:24:af:37:d2:01:6a:6c:04:bb:45:3a:25:ef: 13:b3:fd:82:80:ad:fd:1f:ff:0a:e3:3b:00:95:ce: 91:08:70:e9:8f:40:11:da:c9:dd:d3:3f:11:41:7e: 1a:77:3c:e5:67:34:c8:8d:2f:1b:e8:07:2a:77:1f: b1:58:93:4a:b6:cd:a8:7d:81:33:77:8c:88:4a:a2: 2c:6e:3c:0e:cd:ac:9f:aa:6d:8a:e2:55:4c:c7:1b: 6a:c1:df:68:84:7f:bf:a5:e5:05:54:b1:1f:0a:8d: e8:f8:2a:81:0b:4d:e0:b0:94:9f:96:31:77:1a:76: 6b:82:f1:1e:5e:82:8a:9b:4b:48:86:a8:88:0c:6d: a5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:55:3E:F6:7A:D3:15:D7:AB:26:84:15:91:22:D1:0B:B8:F0:9E:22 X509v3 Authority Key Identifier: keyid:C9:29:92:D7:0E:CE:41:1A:62:55:BF:40:B9:E0:A4:52:14:94:40:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySmS1w7OQRpiVb9AueCkUhSUQA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/ySmS1w7OQRpiVb9AueCkUhSUQA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ab:eb:d2:1c:98:ab:90:0d:dd:e2:c7:1c:85:ab:de:bb:7f: 21:ec:e9:d7:9a:d4:64:79:95:60:c2:a5:9c:91:f1:74:3b:9b: 55:8e:2e:da:06:2e:e7:6c:0d:b7:2c:f3:81:9d:48:b5:c9:e1: 5e:16:96:48:68:6a:ee:60:cc:ac:45:ad:05:34:51:e0:4a:16: 9c:f4:dc:58:99:42:1b:8f:c0:f6:a7:15:8c:f0:1d:ca:f2:c5: 50:cd:6e:46:f1:40:95:8e:a2:58:8b:bc:52:76:4b:6e:d5:5b: c7:fa:7d:bd:39:d3:60:d9:59:14:85:59:6a:38:72:67:e9:4a: 0f:7d:dc:fc:4f:eb:32:c4:85:a6:1b:ca:29:ee:eb:da:2e:41: c0:a9:e4:08:9c:71:ae:c1:c2:62:02:a0:96:57:fa:76:63:e1: 28:a5:e3:f9:be:70:d2:65:b4:ca:14:a5:93:2e:86:5e:7f:92: ac:c5:89:62:db:ec:5c:c2:fc:b7:18:7e:5c:24:7a:d6:9c:5c: d5:fc:e2:a1:bc:27:ac:ea:88:f1:82:89:f1:2b:84:ee:65:d9: ed:80:7e:48:16:42:33:e8:95:e7:b7:43:0f:d1:89:d5:f4:7e: 8b:d7:99:0a:ca:b7:31:9f:49:b4:e6:70:8d:4a:55:85:f7:10: 4e:cd:72:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEM5Mjk5MkQ3MEVDRTQxMUE2MjU1QkY0MEI5RTBBNDUy MTQ5NDQwMEQwHhcNMjUwODI0MTkzNTQxWhcNMjUwODMxMTkzNTQxWjAYMRYwFAYD VQQDEw02OGFiNjk4ZC05MGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVXXhf1VRM0JLk7DpNRHrJ+RgicnkYtG9ahsoai1+bAVWyfg8kU8AI0D1Kz/ NLl0HWRQ5OROT2O0HGyas8ulq/EaCZI/JI3X3Vo/fbhPEbjO5O8KefDaZP81O9/F V6YSwP6shnxYYfnNwryjIFfMqk386gjbDZaOMCSvN9IBamwEu0U6Je8Ts/2CgK39 H/8K4zsAlc6RCHDpj0AR2snd0z8RQX4adzzlZzTIjS8b6Acqdx+xWJNKts2ofYEz d4yISqIsbjwOzayfqm2K4lVMxxtqwd9ohH+/peUFVLEfCo3o+CqBC03gsJSfljF3 GnZrgvEeXoKKm0tIhqiIDG2leQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZVPvZ6 0xXXqyaEFZEi0Qu48J4iMB8GA1UdIwQYMBaAFMkpktcOzkEaYlW/QLngpFIUlEAN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FScGlWYjlBdWVDa1VoU1VR QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTbVMxdzdPUVJwaVZiOUF1ZUNrVWhTVVFBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi95U21TMXc3T1FS cGlWYjlBdWVDa1VoU1VRQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyq+vSHJirkA3d4scchaveu38h7OnXmtRkeZVgwqWckfF0O5tVji7a Bi7nbA23LPOBnUi1yeFeFpZIaGruYMysRa0FNFHgShac9NxYmUIbj8D2pxWM8B3K 8sVQzW5G8UCVjqJYi7xSdktu1VvH+n29OdNg2VkUhVlqOHJn6UoPfdz8T+syxIWm G8op7uvaLkHAqeQInHGuwcJiAqCWV/p2Y+EopeP5vnDSZbTKFKWTLoZef5KsxYli 2+xcwvy3GH5cJHrWnFzV/OKhvCes6ojxgonxK4TuZdntgH5IFkIz6JXnt0MP0YnV 9H6L15kKyrcxn0m05nCNSlWF9xBOzXIA -----END CERTIFICATE-----Generated at Sun Aug 24 21:54:14 2025 by rpki-client