$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: y79BWH3eqGL7M5qEnKnusIiDA/Zose/SBXLkEYweTrI= Subject key identifier: 8C:21:F5:30:A1:3A:F4:F6:D9:06:63:FC:7B:C5:60:33:E0:18:7E:B9 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: E2 Signing time: Tue 09 Sep 2025 05:39:01 +0000 Manifest this update: Tue 09 Sep 2025 05:39:00 +0000 Manifest next update: Tue 16 Sep 2025 05:39:00 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: qNKlAksbNXutPKdhf1UEMYMJOUhUqKTHapGELvgT4rY=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Sep 9 05:39:00 2025 GMT Not After : Sep 16 05:39:00 2025 GMT Subject: CN=68bfbd74-e2c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:6a:f5:56:70:1d:d4:77:8c:af:79:00:89: b4:cc:f6:de:21:53:b8:cd:ce:9b:11:cc:0d:f2:81: cc:b0:02:22:03:d9:c4:37:49:7e:5b:d7:17:a7:9e: 46:a2:45:10:0a:b6:66:77:ad:92:ce:d7:69:4a:07: 16:2d:70:48:53:d5:46:91:7a:f1:40:99:6c:2c:36: fb:b1:95:10:66:61:c5:fe:c6:9a:c1:19:ca:7c:79: 83:a8:9f:42:68:a3:a6:95:35:31:31:a1:a3:eb:67: 45:00:da:79:5d:80:73:0b:bf:d0:03:59:05:98:d9: b0:b1:10:c1:ac:4c:a4:5a:ef:ca:ba:3b:db:32:10: 2b:1e:3f:37:88:a1:1e:39:90:83:ce:62:8d:e4:61: ad:56:8a:53:55:1d:db:5a:e0:5f:33:de:e5:26:48: 07:3b:ad:3b:bd:65:7e:33:a2:f9:18:5e:8c:e8:98: b4:1b:af:4a:7d:c2:f1:68:14:0e:f6:2e:f3:68:42: fa:4b:7c:82:d7:ae:a1:e3:a8:0f:59:05:0f:04:09: ab:c7:20:6a:2d:0b:53:30:3a:99:9d:2a:72:23:75: 78:55:f4:9c:7a:ba:98:a7:8a:11:ef:e6:7e:fe:b4: ad:44:88:87:a9:b1:e0:4a:d1:47:f1:c2:79:7d:d1: 07:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:21:F5:30:A1:3A:F4:F6:D9:06:63:FC:7B:C5:60:33:E0:18:7E:B9 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:90:6e:9c:9a:27:af:c4:d1:ef:e8:5d:5f:ed:c0:20:1d:a2: 7f:d2:d8:a8:87:fe:6c:66:d2:fe:23:41:79:0b:ca:95:e5:e6: 08:a1:49:77:bd:f7:1c:8d:6d:49:4a:16:c3:b6:5a:e8:f5:b1: b9:8f:fb:24:75:0f:ef:f9:c3:44:a1:ab:46:3a:35:5f:b6:c8: dd:a5:25:ae:e5:21:40:f5:d4:ab:a0:96:f2:d9:31:dd:a4:5e: 4a:23:92:e7:cb:48:b4:f4:9e:1f:d7:7b:9b:82:03:21:1d:43: 07:24:8f:6b:03:03:1f:13:b2:6e:b8:49:9a:90:dc:4e:5f:ab: 8c:16:3a:7c:4d:1a:dc:4a:75:23:5b:16:39:3a:6f:f0:cb:3b: 6f:fc:bb:eb:62:94:c0:8f:1a:6c:ca:0c:1f:39:9b:0c:8d:38: b0:a9:38:9f:ab:7e:a8:cf:e2:ab:f6:93:9c:b1:b2:33:2a:ae: bb:b0:30:0a:9c:16:63:ff:0d:54:37:40:49:63:e2:e8:e2:a1: 18:b8:15:1e:39:15:8b:c0:94:68:d6:69:67:b2:55:88:f0:8b: 92:4b:6a:b3:b5:b0:e7:6b:9c:a9:e8:d1:c3:c0:ea:0a:36:ae: 8a:f5:f4:fc:34:31:13:0d:97:76:b7:92:56:5c:58:a8:3f:0c: a6:18:27:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwOTA5MDUzOTAwWhcNMjUwOTE2MDUzOTAwWjAYMRYwFAYD VQQDEw02OGJmYmQ3NC1lMmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7xq9VZwHdR3jK95AIm0zPbeIVO4zc6bEcwN8oHMsAIiA9nEN0l+W9cXp55G okUQCrZmd62SztdpSgcWLXBIU9VGkXrxQJlsLDb7sZUQZmHF/saawRnKfHmDqJ9C aKOmlTUxMaGj62dFANp5XYBzC7/QA1kFmNmwsRDBrEykWu/KujvbMhArHj83iKEe OZCDzmKN5GGtVopTVR3bWuBfM97lJkgHO607vWV+M6L5GF6M6Ji0G69KfcLxaBQO 9i7zaEL6S3yC166h46gPWQUPBAmrxyBqLQtTMDqZnSpyI3V4VfScerqYp4oR7+Z+ /rStRIiHqbHgStFH8cJ5fdEHQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwh9TCh OvT22QZj/HvFYDPgGH65MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABkG6cmievxNHv6F1f7cAgHaJ/0tioh/5sZtL+I0F5C8qV5eYIoUl3 vfccjW1JShbDtlro9bG5j/skdQ/v+cNEoatGOjVftsjdpSWu5SFA9dSroJby2THd pF5KI5Lny0i09J4f13ubggMhHUMHJI9rAwMfE7JuuEmakNxOX6uMFjp8TRrcSnUj WxY5Om/wyztv/LvrYpTAjxpsygwfOZsMjTiwqTifq36oz+Kr9pOcsbIzKq67sDAK nBZj/w1UN0BJY+Lo4qEYuBUeORWLwJRo1mlnslWI8IuSS2qztbDna5yp6NHDwOoK Nq6K9fT8NDETDZd2t5JWXFioPwymGCdn -----END CERTIFICATE-----Generated at Tue Sep 9 09:02:47 2025 by rpki-client