$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: 9aK5vMgGZWKBCk8U1DCiCrna97+AtGzzayecL83yZk8= Subject key identifier: 85:B6:7D:91:4E:A4:01:14:1D:5B:90:02:69:C0:37:0E:43:C5:F4:28 Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: 0126 Signing time: Tue 09 Sep 2025 04:48:17 +0000 Manifest this update: Tue 09 Sep 2025 04:48:16 +0000 Manifest next update: Tue 16 Sep 2025 04:48:16 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: ESyer9YJOv+AlQEwRzl6LpT8hBJ/vzFcUtnzHtK0yaw=) 2: 7447BEF0928411EFB854A522C4F9AE02.roa (hash: 8r1ggxGUtscfFUhVNnn2tSXuD/VeviYdi6zXjlI+agM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: Sep 9 04:48:16 2025 GMT Not After : Sep 16 04:48:16 2025 GMT Subject: CN=68bfb191-35d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:68:ff:98:b7:4e:f7:b4:4d:67:bf:aa:a7: c8:09:52:c0:db:d3:83:63:7e:a6:fd:74:3a:22:ea: 37:88:fc:f5:7b:8e:90:11:5c:be:6c:ca:5e:42:61: ea:6c:ff:a1:64:06:4e:cc:77:de:6f:5f:7d:3c:5e: 3e:0c:1d:91:2a:93:b3:8d:95:60:73:0e:1c:c7:19: 6f:e4:12:b4:6f:ca:bd:f2:9d:11:30:34:dc:3e:19: f1:f5:e8:b7:25:75:19:6a:dd:36:15:9c:43:81:55: bf:9a:88:6e:fd:dc:b3:2a:09:3a:a2:8c:7b:e5:78: 2b:ce:47:42:cd:d0:ea:df:06:ce:6d:18:d9:ec:38: 18:3e:84:fc:46:f1:14:98:7a:ea:a9:ff:f3:e6:72: dc:cd:31:66:3c:3e:14:d0:d0:bb:94:97:4b:9d:fd: c1:c4:ef:ba:69:09:23:cb:0b:d7:b3:3f:9b:15:8e: 01:f6:d4:98:b4:c6:f0:ba:89:d8:53:0f:bc:9b:10: cb:bd:d2:09:03:93:be:04:3d:02:c3:2f:30:38:f6: a1:13:8f:44:16:e0:d9:09:73:73:bf:78:fe:74:cf: 8c:f3:50:03:bb:2b:e6:a0:62:0c:7e:07:d3:23:86: ef:34:cd:57:17:ae:d7:68:a0:09:78:d3:43:ee:08: 3f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B6:7D:91:4E:A4:01:14:1D:5B:90:02:69:C0:37:0E:43:C5:F4:28 X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fc:0e:58:a8:56:84:8b:ab:29:ac:d2:8d:75:30:99:e3:2b: ca:cc:4a:bd:f0:fa:d7:68:0e:49:8d:b0:65:02:c2:0d:1a:4f: c2:0a:c3:85:d1:b9:26:05:38:6e:83:92:cc:dc:80:76:b2:8e: ca:4c:77:1a:25:8f:39:fd:fb:37:58:e7:84:e4:50:c0:ec:6b: 88:c3:c9:e9:43:ac:48:8c:70:4c:11:81:f8:69:70:0f:81:2f: 0b:fd:6b:a4:6e:0a:cf:d1:5b:88:f4:ec:7a:26:b0:58:f2:ac: af:b2:96:0c:ee:39:fa:10:59:bd:aa:26:da:4b:6b:89:74:fb: a1:2f:e5:e0:00:6f:49:12:ba:a8:d3:8e:c7:a2:0c:29:7c:23: 0d:c1:92:a5:92:de:24:df:c2:fe:5b:9a:8b:82:51:30:5d:a9: 3a:0d:97:42:77:d4:f5:88:ed:2f:b4:4c:f0:fa:6d:29:82:b9: 57:61:2f:f5:58:5d:65:83:f6:8b:2f:d8:71:a4:36:57:c4:65: ac:d2:3b:5f:45:54:ea:7d:dc:45:9d:c2:66:cc:7d:d7:4f:f2: a9:2b:0e:23:b2:4c:8a:13:c9:c9:39:dd:fb:0a:91:54:0b:4c: 92:20:6b:30:47:dc:a0:cf:78:dd:af:4e:34:7e:1b:0b:6d:31: da:24:a8:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKDYyNjEwOUJCRUNDOThCQTUyRTdGMzk5QjgwOTYyRDNB RkU1QUIyRDQwHhcNMjUwOTA5MDQ0ODE2WhcNMjUwOTE2MDQ0ODE2WjAYMRYwFAYD VQQDEw02OGJmYjE5MS0zNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSdo/5i3Tve0TWe/qqfICVLA29ODY36m/XQ6Iuo3iPz1e46QEVy+bMpeQmHq bP+hZAZOzHfeb199PF4+DB2RKpOzjZVgcw4cxxlv5BK0b8q98p0RMDTcPhnx9ei3 JXUZat02FZxDgVW/mohu/dyzKgk6oox75XgrzkdCzdDq3wbObRjZ7DgYPoT8RvEU mHrqqf/z5nLczTFmPD4U0NC7lJdLnf3BxO+6aQkjywvXsz+bFY4B9tSYtMbwuonY Uw+8mxDLvdIJA5O+BD0Cwy8wOPahE49EFuDZCXNzv3j+dM+M81ADuyvmoGIMfgfT I4bvNM1XF67XaKAJeNND7gg/kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIW2fZFO pAEUHVuQAmnANw5DxfQoMB8GA1UdIwQYMBaAFGJhCbvsyYulLn85m4CWLTr+WrLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FRTMxRDg3NEQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2VXVmem1iZ0pZdE92NWFz dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FRTMxRDg3NEQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2 VXVmem1iZ0pZdE92NWFzdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/A5YqFaEi6sprNKNdTCZ4yvKzEq98PrXaA5JjbBlAsINGk/CCsOF 0bkmBThug5LM3IB2so7KTHcaJY85/fs3WOeE5FDA7GuIw8npQ6xIjHBMEYH4aXAP gS8L/WukbgrP0VuI9Ox6JrBY8qyvspYM7jn6EFm9qibaS2uJdPuhL+XgAG9JErqo 047HogwpfCMNwZKlkt4k38L+W5qLglEwXak6DZdCd9T1iO0vtEzw+m0pgrlXYS/1 WF1lg/aLL9hxpDZXxGWs0jtfRVTqfdxFncJmzH3XT/KpKw4jskyKE8nJOd37CpFU C0ySIGswR9ygz3jdr040fhsLbTHaJKhg -----END CERTIFICATE-----Generated at Tue Sep 9 16:59:09 2025 by rpki-client