$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: BJcCvcRMGVy+Tv2JDD/Kh5a4AE8Ql/w8zev87oWNphk= Subject key identifier: 4F:AA:6B:CC:38:A2:9A:F3:7A:87:C1:C3:65:02:CA:88:98:55:03:F5 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 010D Signing time: Wed 17 Sep 2025 05:33:46 +0000 Manifest this update: Wed 17 Sep 2025 05:33:45 +0000 Manifest next update: Wed 24 Sep 2025 05:33:45 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: vscDMhmwivUaAYnK7vZl1g8K6gYaCGIIruNYAovJDy4=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Sep 17 05:33:45 2025 GMT Not After : Sep 24 05:33:45 2025 GMT Subject: CN=68ca483a-8b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:67:c5:da:48:d4:f9:44:0f:d2:26:60:87: 87:5a:a2:69:72:74:e7:32:db:4c:ab:5a:e4:6d:ce: fe:01:b4:f0:72:81:24:0e:7f:66:71:6b:eb:3b:a1: f4:c3:4d:12:e6:75:ad:c4:f0:af:8a:44:b9:fa:31: 06:63:ea:35:4b:f1:fc:6a:a9:dd:4e:4d:90:04:63: 8f:f6:9a:bb:73:c6:9e:cc:12:19:72:20:b4:cb:28: c4:03:d8:c1:7f:ff:4f:d2:29:58:e8:9a:4b:3f:b3: d5:e1:35:5c:be:c7:59:ef:f5:ef:26:92:ce:76:ff: fa:e4:2e:72:80:a6:3a:af:7a:d1:3d:be:da:d6:13: e2:86:61:e1:de:46:9e:a2:df:0a:9c:e3:b7:4a:0b: 0c:5b:53:fe:49:0c:a5:7d:b4:33:cf:10:7e:05:eb: 8e:79:e9:25:cb:4d:0a:eb:75:ec:d3:cf:be:d7:bd: 04:6a:7b:5b:7f:4f:46:5f:a9:c9:2c:91:cb:e3:9d: 55:98:96:10:ea:e3:78:a3:49:69:b0:d0:62:26:71: ed:43:1c:53:40:b4:76:75:dc:29:3e:dc:72:00:ba: 8c:f2:58:36:2a:ef:46:68:c7:96:20:0b:d0:31:c3: 84:52:03:fc:99:9a:db:9f:d8:ab:91:44:75:77:dd: 02:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AA:6B:CC:38:A2:9A:F3:7A:87:C1:C3:65:02:CA:88:98:55:03:F5 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b2:28:76:47:05:56:ce:b9:07:53:be:15:11:99:55:09:ed: 33:8a:05:01:f8:5d:4a:0c:f7:df:60:e3:0a:dc:ef:7d:b9:45: 2a:4f:d6:13:74:ee:8f:8c:bc:fe:c5:dc:3b:b5:fb:be:79:29: b7:9c:de:5d:cd:da:df:0c:7f:36:1c:a6:1b:2b:bf:44:4b:53: 2a:8d:ae:7d:2f:d5:04:a7:91:09:f8:a9:84:c2:73:43:b8:c4: 3b:5e:fc:7e:16:be:61:cf:cf:31:d6:98:28:03:a5:4b:36:9b: 2c:00:57:57:2c:2d:1a:a7:3e:27:61:cc:f6:e2:1f:ee:59:68: b1:42:c4:a1:24:3d:77:0d:69:97:c3:6f:9b:43:c1:d3:52:e0: 54:4d:86:9c:66:cb:23:e0:55:18:58:e3:72:b5:66:aa:01:55: 50:26:8a:cc:55:cb:f4:d5:5f:f0:26:a0:a7:b0:08:30:ee:ca: 49:a5:9a:d8:39:b8:74:0a:a6:59:d2:bc:cb:76:c6:2b:39:c6: f2:c4:93:9c:bb:ae:64:57:3e:4b:7c:24:93:9a:e5:d1:c6:63: 9c:69:2a:10:7b:d2:53:bb:b5:42:bb:46:af:4c:79:04:57:75: 83:1d:fb:02:ac:42:44:fb:e7:56:de:94:f5:73:53:84:93:c7: 0a:39:26:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwOTE3MDUzMzQ1WhcNMjUwOTI0MDUzMzQ1WjAYMRYwFAYD VQQDEw02OGNhNDgzYS04YjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypRnxdpI1PlED9ImYIeHWqJpcnTnMttMq1rkbc7+AbTwcoEkDn9mcWvrO6H0 w00S5nWtxPCvikS5+jEGY+o1S/H8aqndTk2QBGOP9pq7c8aezBIZciC0yyjEA9jB f/9P0ilY6JpLP7PV4TVcvsdZ7/XvJpLOdv/65C5ygKY6r3rRPb7a1hPihmHh3kae ot8KnOO3SgsMW1P+SQylfbQzzxB+BeuOeekly00K63Xs08++170Eantbf09GX6nJ LJHL451VmJYQ6uN4o0lpsNBiJnHtQxxTQLR2ddwpPtxyALqM8lg2Ku9GaMeWIAvQ McOEUgP8mZrbn9irkUR1d90CjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+qa8w4 oprzeofBw2UCyoiYVQP1MB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBsih2RwVWzrkHU74VEZlVCe0zigUB+F1KDPffYOMK3O99uUUqT9YT dO6PjLz+xdw7tfu+eSm3nN5dzdrfDH82HKYbK79ES1Mqja59L9UEp5EJ+KmEwnND uMQ7Xvx+Fr5hz88x1pgoA6VLNpssAFdXLC0apz4nYcz24h/uWWixQsShJD13DWmX w2+bQ8HTUuBUTYacZssj4FUYWONytWaqAVVQJorMVcv01V/wJqCnsAgw7spJpZrY Obh0CqZZ0rzLdsYrOcbyxJOcu65kVz5LfCSTmuXRxmOcaSoQe9JTu7VCu0avTHkE V3WDHfsCrEJE++dW3pT1c1OEk8cKOSa/ -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:50 2025 by rpki-client