$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: zDDw4xowbEn4vZLjw90HegT6y2lUxDfQfVfcbdXlJKE= Subject key identifier: D1:85:8B:76:50:56:ED:CC:D4:42:D4:26:55:13:52:E8:C9:8D:B9:F8 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0171 Signing time: Fri 05 Sep 2025 04:11:10 +0000 Manifest this update: Fri 05 Sep 2025 04:11:09 +0000 Manifest next update: Fri 12 Sep 2025 04:11:09 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: MB95hB6eoLhq2+8A0XSvTRRCt36X+4q0ysi75jO7HxY=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Sep 5 04:11:09 2025 GMT Not After : Sep 12 04:11:09 2025 GMT Subject: CN=68ba62de-3558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:00:b2:dc:39:4d:32:7f:86:fb:0c:2d:82: 7c:02:1f:0b:ca:06:0e:f5:4a:44:11:83:07:20:ac: c0:32:24:38:4a:ec:12:e1:5b:8d:7d:43:ef:61:81: 20:40:aa:39:b2:b5:de:66:a4:d7:0c:d3:3f:8e:49: 7a:b8:16:f2:dc:3f:55:a4:41:b2:a3:d0:5d:a8:be: 58:1d:bc:07:b4:fc:f3:96:08:3d:b1:70:67:51:88: 11:1a:cf:ff:d9:b8:6f:9c:b5:57:ce:e1:cd:87:31: db:f6:d5:8b:a5:c8:d8:48:c2:ac:3b:11:8d:d9:06: 13:ec:c5:3f:a6:f6:66:e1:87:70:dd:04:b0:12:d6: b1:7a:b4:d3:06:49:f3:95:5c:1b:a5:96:6c:c2:e8: cd:58:4c:88:fc:b5:36:84:36:22:74:0e:12:04:e6: 46:d6:3a:bb:fa:b4:39:8d:cc:62:15:a7:c6:0b:79: ed:24:90:49:2a:78:fb:42:fa:65:94:a1:a8:32:6e: 8a:5b:ff:7a:d3:35:01:af:38:23:59:04:bf:b0:de: 8b:97:19:9b:4a:e0:1b:f0:95:3e:42:c0:80:66:d0: 70:26:cf:4a:82:41:75:f9:c4:08:ac:a4:ea:d7:3b: 6f:25:5d:97:bd:e4:e6:9a:68:51:7b:c7:85:0e:49: a5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:85:8B:76:50:56:ED:CC:D4:42:D4:26:55:13:52:E8:C9:8D:B9:F8 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:0a:90:09:58:a0:96:8f:86:88:69:d8:b8:6c:60:6a:01:1d: 58:0d:df:a5:d2:24:c3:33:7a:b0:c0:57:1d:25:07:04:88:ed: 6e:c9:09:dd:65:b8:d9:32:b5:32:6a:b3:52:d0:53:1d:1e:05: 5a:fc:9f:87:1b:d8:8f:96:1d:86:2f:b4:38:3d:bc:01:7d:a7: c2:a3:91:0d:17:41:58:c2:ce:ab:93:b6:f6:ba:3b:6c:56:e7: 3c:5e:ee:4e:17:46:36:98:23:61:0c:57:1a:22:70:98:e2:91: 0c:80:46:6b:60:80:aa:06:28:9e:34:4b:92:07:87:5d:5b:c4: c3:8f:e1:ac:02:7e:4c:60:5a:3e:6c:bc:d5:ba:6e:a4:c4:d0: 60:d4:75:82:46:7a:01:bb:90:e3:ca:9f:eb:75:fd:2e:ce:cc: a6:32:39:69:1b:20:cf:75:29:b9:13:a1:62:39:f1:6e:59:81: fe:37:94:4d:f4:d3:03:5f:85:2e:11:51:cb:5c:82:50:69:0a: 7d:82:29:f4:98:8a:da:52:51:5a:e7:6a:0d:87:c4:b6:c3:09: 43:b2:37:30:19:fd:bf:95:2c:63:80:33:5d:23:38:a8:0d:72: 2f:1f:fe:28:5b:99:2d:1c:f7:4f:d1:9d:6f:02:00:8c:20:5e: dc:eb:89:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwOTA1MDQxMTA5WhcNMjUwOTEyMDQxMTA5WjAYMRYwFAYD VQQDEw02OGJhNjJkZS0zNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNsAstw5TTJ/hvsMLYJ8Ah8LygYO9UpEEYMHIKzAMiQ4SuwS4VuNfUPvYYEg QKo5srXeZqTXDNM/jkl6uBby3D9VpEGyo9BdqL5YHbwHtPzzlgg9sXBnUYgRGs// 2bhvnLVXzuHNhzHb9tWLpcjYSMKsOxGN2QYT7MU/pvZm4Ydw3QSwEtaxerTTBknz lVwbpZZswujNWEyI/LU2hDYidA4SBOZG1jq7+rQ5jcxiFafGC3ntJJBJKnj7Qvpl lKGoMm6KW/960zUBrzgjWQS/sN6LlxmbSuAb8JU+QsCAZtBwJs9KgkF1+cQIrKTq 1ztvJV2XveTmmmhRe8eFDkmlCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGFi3ZQ Vu3M1ELUJlUTUujJjbn4MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0CpAJWKCWj4aIadi4bGBqAR1YDd+l0iTDM3qwwFcdJQcEiO1uyQnd ZbjZMrUyarNS0FMdHgVa/J+HG9iPlh2GL7Q4PbwBfafCo5ENF0FYws6rk7b2ujts Vuc8Xu5OF0Y2mCNhDFcaInCY4pEMgEZrYICqBiieNEuSB4ddW8TDj+GsAn5MYFo+ bLzVum6kxNBg1HWCRnoBu5Djyp/rdf0uzsymMjlpGyDPdSm5E6FiOfFuWYH+N5RN 9NMDX4UuEVHLXIJQaQp9gin0mIraUlFa52oNh8S2wwlDsjcwGf2/lSxjgDNdIzio DXIvH/4oW5ktHPdP0Z1vAgCMIF7c64np -----END CERTIFICATE-----Generated at Sat Sep 6 20:48:27 2025 by rpki-client