$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: foogaG9mVa18ouIs3VxKYyDRxyrqFbsR5IMvHaVbbCU= Subject key identifier: B1:56:BA:36:2F:19:D3:5B:12:CD:7B:14:FF:B7:06:46:94:95:37:4F Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 0158 Signing time: Fri 19 Sep 2025 04:40:28 +0000 Manifest this update: Fri 19 Sep 2025 04:40:27 +0000 Manifest next update: Fri 26 Sep 2025 04:40:27 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: uxjimE4ireBtt2nHnH+XCsr+iZbE13MJQ/xaUs4/cr0=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: kfUd7cLCmHmQ/k7ENeRjEkFUrum5OXV/qc4Vt8EOcIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Sep 19 04:40:27 2025 GMT Not After : Sep 26 04:40:27 2025 GMT Subject: CN=68ccdebc-0f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1c:74:db:a2:2f:dd:fc:b1:19:b1:6f:87:0f: 50:a6:12:d4:32:40:d5:23:91:e2:aa:fb:83:db:44: a9:8a:d8:af:8e:a2:f5:6f:d6:94:29:99:87:34:52: ea:c4:52:4d:80:fb:85:d7:9b:b1:88:91:15:46:96: 36:f4:e5:b3:6c:f4:ab:61:e0:b3:21:84:b0:3a:5b: b0:7b:ef:be:52:eb:2a:ce:f0:6a:01:5c:ab:05:14: fd:da:54:ce:be:42:da:0a:8b:7c:26:33:03:34:e3: ae:80:89:78:bc:79:38:b8:a4:c9:ee:33:be:ee:67: 11:a8:60:9b:b7:9f:20:66:8c:be:ff:1c:ce:6c:6c: 41:d0:93:4f:1f:e2:69:f1:b2:15:32:5a:c1:79:9f: 9e:07:0d:9c:55:42:38:fb:53:b7:19:ec:3a:fb:f7: 9b:8b:97:ea:50:ed:fe:56:7b:6c:58:f4:5d:ad:97: 68:78:2c:da:cb:85:ba:3a:28:e6:b2:37:87:77:2b: df:b0:f6:6d:1d:1c:a3:bd:2f:14:5f:60:5c:d5:8d: 22:e4:e8:99:b2:b4:7d:94:a9:85:b9:37:cf:69:b1: 87:f9:b2:e4:f9:db:d7:99:73:ba:59:fa:2c:dc:e0: 2a:ca:e7:c1:5e:2e:e2:40:4a:47:07:fc:f6:54:35: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:56:BA:36:2F:19:D3:5B:12:CD:7B:14:FF:B7:06:46:94:95:37:4F X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:95:f9:11:6a:62:fa:f1:4d:19:0a:13:3b:c7:8b:79:22:ea: f9:35:1f:ea:7e:00:fe:d4:bb:d0:b6:fb:73:ed:bc:d5:35:14: 35:ba:dd:b9:1a:4f:c0:a1:c6:31:74:17:e3:da:ba:91:dc:12: b6:6b:b7:16:05:04:fb:63:02:d9:67:72:30:5b:f5:58:eb:f9: 3a:ea:6d:25:02:f4:d7:a0:77:89:0c:37:b6:25:17:70:55:86: 6b:d4:ed:13:4c:cb:07:73:e8:e0:b3:16:ad:f2:d0:b7:d0:72: 85:b1:33:94:aa:23:5a:75:10:e7:b4:96:74:d3:68:3f:d1:c0: 5c:e5:29:1a:7c:fc:9e:d2:63:67:92:0e:67:0e:92:0d:11:8c: e2:9b:d6:bf:de:88:8d:0c:2b:84:30:8f:f8:32:4b:e4:d1:a5: 3e:3d:ec:5e:e9:04:84:8a:be:2f:87:ac:f7:3d:9a:2f:ec:c7: 05:1c:ea:2f:d3:58:50:8a:8b:c7:48:5c:d2:a0:e3:80:43:6d: c8:f0:f9:0f:49:e9:93:82:82:89:79:9a:00:e4:59:e7:02:9c: 17:17:28:7c:d1:1b:9f:b9:04:41:8c:98:59:67:f3:35:2a:ff: fb:00:40:37:03:a4:18:63:05:4a:0f:37:11:08:5e:5f:a7:56: 2c:6a:01:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwOTE5MDQ0MDI3WhcNMjUwOTI2MDQ0MDI3WjAYMRYwFAYD VQQDEw02OGNjZGViYy0wZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xx026Iv3fyxGbFvhw9QphLUMkDVI5HiqvuD20SpitivjqL1b9aUKZmHNFLq xFJNgPuF15uxiJEVRpY29OWzbPSrYeCzIYSwOluwe+++UusqzvBqAVyrBRT92lTO vkLaCot8JjMDNOOugIl4vHk4uKTJ7jO+7mcRqGCbt58gZoy+/xzObGxB0JNPH+Jp 8bIVMlrBeZ+eBw2cVUI4+1O3Gew6+/ebi5fqUO3+VntsWPRdrZdoeCzay4W6Oijm sjeHdyvfsPZtHRyjvS8UX2Bc1Y0i5OiZsrR9lKmFuTfPabGH+bLk+dvXmXO6Wfos 3OAqyufBXi7iQEpHB/z2VDWIxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFWujYv GdNbEs17FP+3BkaUlTdPMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8lfkRamL68U0ZChM7x4t5Iur5NR/qfgD+1LvQtvtz7bzVNRQ1ut25 Gk/AocYxdBfj2rqR3BK2a7cWBQT7YwLZZ3IwW/VY6/k66m0lAvTXoHeJDDe2JRdw VYZr1O0TTMsHc+jgsxat8tC30HKFsTOUqiNadRDntJZ002g/0cBc5SkafPye0mNn kg5nDpINEYzim9a/3oiNDCuEMI/4Mkvk0aU+Pexe6QSEir4vh6z3PZov7McFHOov 01hQiovHSFzSoOOAQ23I8PkPSemTgoKJeZoA5FnnApwXFyh80RufuQRBjJhZZ/M1 Kv/7AEA3A6QYYwVKDzcRCF5fp1YsagFo -----END CERTIFICATE-----Generated at Fri Sep 19 05:54:53 2025 by rpki-client