$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: gmGXW7zmPezg2YFnf26oDVLe/UKfRQ2oz6KFLv3aDBw= Subject key identifier: B3:3F:7E:F0:8E:8C:EC:4E:3F:E1:A6:89:82:80:63:84:3C:AD:47:D4 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09D2 Signing time: Thu 18 Sep 2025 20:10:59 +0000 Manifest this update: Thu 18 Sep 2025 20:10:58 +0000 Manifest next update: Thu 25 Sep 2025 20:10:58 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: TgSqoNuJU5hFhSmPNcc67050LjkCc0bMr7bVAGHcWQk=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Sep 18 20:10:58 2025 GMT Not After : Sep 25 20:10:58 2025 GMT Subject: CN=68cc6752-506e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:49:6a:74:66:f5:e3:ae:b7:18:5e:0e:06: 4c:ec:88:f0:71:f3:d8:5d:98:4c:af:17:7e:30:58: 59:c6:02:48:2c:f5:ea:b5:c2:8e:8b:be:c9:b8:b3: 42:56:08:36:f4:fc:6e:9a:a0:7f:c6:ea:e5:01:f6: 7d:67:75:ab:b7:b8:f8:83:0e:39:66:ed:34:ea:74: f8:79:0c:80:ee:de:19:c1:cd:56:eb:9d:a5:f3:3e: 1d:02:57:fd:eb:93:fb:0c:5d:6b:05:22:93:4f:d8: 6c:08:03:8f:26:0e:d5:8e:2e:43:ec:9d:50:1a:e9: 73:e7:f1:c1:68:d0:08:4f:d5:1a:18:6d:a9:b9:50: 22:2a:67:df:ef:15:b1:0e:47:3e:fb:87:50:33:8b: e3:7f:58:a0:63:ca:33:83:45:e0:3a:10:4f:da:83: b9:9c:71:2e:53:dd:4d:91:af:b3:c6:8c:09:5d:1b: bc:00:e5:cb:bd:32:23:78:38:a2:79:6b:e5:37:7b: 27:0c:ac:01:78:b7:64:44:b9:8d:94:74:d7:a8:f8: ca:c9:c7:13:b3:63:57:a8:1f:48:77:fa:c2:a1:b0: b8:f9:76:04:6b:e2:6a:17:b1:20:a1:3b:79:1d:f8: 83:75:58:3f:8d:a9:23:a0:33:df:6b:63:50:3b:74: 40:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3F:7E:F0:8E:8C:EC:4E:3F:E1:A6:89:82:80:63:84:3C:AD:47:D4 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:90:30:36:7f:78:87:a5:d0:cb:d9:55:7f:a3:78:8a:a0:ad: 44:7d:d1:57:47:52:cb:ae:3a:62:a9:09:cb:6b:a1:06:73:ad: 39:29:18:00:6c:a8:41:71:5b:ec:f2:18:a0:d3:5c:3a:68:03: a1:0f:14:28:83:dd:ec:98:3c:2b:ed:af:f9:e1:65:e6:37:d0: 24:4f:55:6c:92:23:dd:53:e4:6c:db:8b:52:f7:72:f1:db:83: 40:ab:c7:97:bb:9d:48:e3:36:2b:dc:0e:7b:ce:cb:75:15:6b: 18:b2:ad:87:de:59:a1:27:2d:d6:12:13:68:3e:7e:08:e7:4d: 74:8f:eb:c3:66:8d:02:c8:94:84:c4:90:2b:94:73:91:f2:ba: bf:dc:25:41:ab:54:da:fa:7c:b8:98:93:96:80:c9:7a:59:bf: be:b0:3b:3f:02:74:49:ab:3e:59:3a:a5:93:8e:07:96:f0:15: 49:0c:c9:f8:6d:04:63:cb:12:9d:96:10:0f:95:2a:be:e2:f6: 79:bc:3a:29:e7:5d:03:a8:b1:0d:2b:34:c1:76:3b:1b:79:8b: c6:bf:60:b9:d7:2f:57:4a:da:e6:0f:75:d1:f4:b8:9d:fb:e3: 5b:af:64:e8:00:6b:5f:b0:e6:96:39:e9:5b:16:bc:b5:88:7b: c7:64:13:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUwOTE4MjAxMDU4WhcNMjUwOTI1MjAxMDU4WjAYMRYwFAYD VQQDEw02OGNjNjc1Mi01MDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMBJanRm9eOutxheDgZM7IjwcfPYXZhMrxd+MFhZxgJILPXqtcKOi77JuLNC Vgg29PxumqB/xurlAfZ9Z3Wrt7j4gw45Zu006nT4eQyA7t4Zwc1W652l8z4dAlf9 65P7DF1rBSKTT9hsCAOPJg7Vji5D7J1QGulz5/HBaNAIT9UaGG2puVAiKmff7xWx Dkc++4dQM4vjf1igY8ozg0XgOhBP2oO5nHEuU91Nka+zxowJXRu8AOXLvTIjeDii eWvlN3snDKwBeLdkRLmNlHTXqPjKyccTs2NXqB9Id/rCobC4+XYEa+JqF7EgoTt5 HfiDdVg/jakjoDPfa2NQO3RANQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLM/fvCO jOxOP+GmiYKAY4Q8rUfUMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2kDA2f3iHpdDL2VV/o3iKoK1EfdFXR1LLrjpiqQnLa6EGc605KRgA bKhBcVvs8hig01w6aAOhDxQog93smDwr7a/54WXmN9AkT1VskiPdU+Rs24tS93Lx 24NAq8eXu51I4zYr3A57zst1FWsYsq2H3lmhJy3WEhNoPn4I5010j+vDZo0CyJSE xJArlHOR8rq/3CVBq1Ta+ny4mJOWgMl6Wb++sDs/AnRJqz5ZOqWTjgeW8BVJDMn4 bQRjyxKdlhAPlSq+4vZ5vDop510DqLENKzTBdjsbeYvGv2C51y9XStrmD3XR9Lid ++Nbr2ToAGtfsOaWOelbFry1iHvHZBOJ -----END CERTIFICATE-----Generated at Fri Sep 19 03:58:06 2025 by rpki-client