$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: x52184jmt+XvuEjvtW/jvBsWm/rztB9UqO+E5sWbDOU= Subject key identifier: EA:FA:5F:5B:C0:C1:EE:D3:E6:09:30:80:AC:0A:5F:63:4E:94:A1:B5 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 0558 Signing time: Tue 16 Sep 2025 23:46:39 +0000 Manifest this update: Tue 16 Sep 2025 23:46:39 +0000 Manifest next update: Tue 23 Sep 2025 23:46:39 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: gDCaLOyjmfIYzj+ZQ5SQiMY8CuUeqvi6nWJ8yE1YWEQ=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: azq2/w0vOg+2swjHdLzDRr5hvzTCb3H9CNSdtAvO6hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Sep 16 23:46:39 2025 GMT Not After : Sep 23 23:46:39 2025 GMT Subject: CN=68c9f6df-08a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8f:be:60:3d:e9:12:ca:d5:e3:42:c5:97:26: 3a:4e:8b:e7:5d:9d:e5:77:c5:66:44:9d:ba:d5:1d: df:9d:6e:92:28:91:56:37:f4:e9:be:2f:95:93:02: 02:b4:0d:6a:25:8e:30:bb:12:6e:e5:96:d4:25:36: 17:ff:5d:64:9d:94:69:5a:f5:b8:a8:49:3a:65:e3: 4b:8d:cb:78:51:12:fc:2a:a3:1d:b2:a3:ca:f2:fb: 49:12:4b:eb:38:a5:57:9f:45:01:35:2f:b5:d6:d7: 4d:f3:21:ff:c6:cc:4d:98:c8:8f:c8:85:1f:e0:72: 66:d9:1f:2a:5b:fe:e9:c2:47:52:ad:3f:c9:97:d7: 3c:8e:24:3c:30:66:6a:0c:4f:27:53:3a:db:7f:18: c6:7b:26:18:d3:69:df:8e:c9:0d:35:08:db:01:18: db:02:5b:e9:97:d5:9f:79:06:1e:e9:1d:18:c3:c0: 85:53:e3:0b:3a:70:e1:65:e3:0c:db:27:bc:df:ee: 86:e9:90:9a:5d:dc:09:75:06:87:5e:59:54:63:a2: 81:3b:c7:c2:32:7f:90:b5:ed:6c:c1:9f:44:09:16: 51:15:54:81:50:fb:8b:ad:03:e8:b4:34:e4:3e:ff: 80:12:9d:83:a7:7b:5e:80:98:10:6b:54:be:7e:c1: f6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FA:5F:5B:C0:C1:EE:D3:E6:09:30:80:AC:0A:5F:63:4E:94:A1:B5 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:3d:57:2c:22:c4:a1:82:6c:e3:37:38:45:8a:73:20:3c:ed: 6b:cc:6c:5f:94:f9:d2:51:84:fc:b0:b6:b3:ac:29:04:c1:64: f3:d9:b3:fd:85:9e:45:07:82:90:aa:77:f1:d6:8a:52:1d:dd: dc:18:3d:d2:59:cb:58:c4:5b:2d:3e:46:76:d5:ce:28:0c:fe: 56:58:55:28:7c:f6:a1:89:58:78:ff:7f:79:90:3f:69:cd:4d: e8:9d:6f:92:a3:39:ee:f6:e6:a6:72:e1:9d:1b:e8:61:ff:20: 57:2e:96:03:ba:67:2d:66:55:b8:61:fb:f8:a4:76:a1:8d:fb: 3a:2d:6d:72:57:b1:ae:c9:87:08:f9:e5:b3:2d:6c:f0:2b:0c: 2f:18:9d:89:a7:e3:14:fc:b8:79:04:0c:80:c2:c9:60:d0:5d: c3:95:61:3d:d1:79:3e:65:c0:e3:79:66:60:0c:8b:80:37:6b: af:5f:ba:8c:a1:4f:18:92:bd:50:50:88:ad:e0:04:21:9d:82: 69:cb:f3:5d:94:59:ad:d2:f1:30:da:99:75:d2:ee:96:df:c4: 06:de:7b:cf:7e:97:71:63:aa:3c:5b:80:51:f9:ea:71:30:b9: f2:4a:a4:9a:a1:55:17:d9:68:5b:34:72:30:ff:d0:48:b3:66: 50:54:b1:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUwOTE2MjM0NjM5WhcNMjUwOTIzMjM0NjM5WjAYMRYwFAYD VQQDEw02OGM5ZjZkZi0wOGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso++YD3pEsrV40LFlyY6TovnXZ3ld8VmRJ261R3fnW6SKJFWN/Tpvi+VkwIC tA1qJY4wuxJu5ZbUJTYX/11knZRpWvW4qEk6ZeNLjct4URL8KqMdsqPK8vtJEkvr OKVXn0UBNS+11tdN8yH/xsxNmMiPyIUf4HJm2R8qW/7pwkdSrT/Jl9c8jiQ8MGZq DE8nUzrbfxjGeyYY02nfjskNNQjbARjbAlvpl9WfeQYe6R0Yw8CFU+MLOnDhZeMM 2ye83+6G6ZCaXdwJdQaHXllUY6KBO8fCMn+Qte1swZ9ECRZRFVSBUPuLrQPotDTk Pv+AEp2Dp3tegJgQa1S+fsH2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr6X1vA we7T5gkwgKwKX2NOlKG1MB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVPVcsIsShgmzjNzhFinMgPO1rzGxflPnSUYT8sLazrCkEwWTz2bP9 hZ5FB4KQqnfx1opSHd3cGD3SWctYxFstPkZ21c4oDP5WWFUofPahiVh4/395kD9p zU3onW+Soznu9uamcuGdG+hh/yBXLpYDumctZlW4Yfv4pHahjfs6LW1yV7GuyYcI +eWzLWzwKwwvGJ2Jp+MU/Lh5BAyAwslg0F3DlWE90Xk+ZcDjeWZgDIuAN2uvX7qM oU8Ykr1QUIit4AQhnYJpy/NdlFmt0vEw2pl10u6W38QG3nvPfpdxY6o8W4BR+epx MLnySqSaoVUX2WhbNHIw/9BIs2ZQVLFe -----END CERTIFICATE-----Generated at Thu Sep 18 23:51:40 2025 by rpki-client