$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: DJuOczY/ImT3G9maU3yQxDnKBS+qqAkwJ8zRd3gOBeA= Subject key identifier: 8E:AB:54:14:14:91:0E:1A:40:6A:58:9B:18:0C:2E:35:CE:2C:FA:5F Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05E1 Signing time: Mon 08 Sep 2025 23:08:42 +0000 Manifest this update: Mon 08 Sep 2025 23:08:41 +0000 Manifest next update: Mon 15 Sep 2025 23:08:41 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: U5HulQiuUMa6bfgLaDxxGcPsaXCF+xQ5M5rCD4+91vY=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Sep 8 23:08:41 2025 GMT Not After : Sep 15 23:08:41 2025 GMT Subject: CN=68bf61f9-7b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:69:1b:37:8d:27:b2:d6:7f:94:4c:f7:27: 0e:3a:7e:d4:83:04:da:cb:81:07:c1:c7:78:79:fb: 26:39:b6:d8:cd:c6:5e:ce:ef:f7:9a:7c:a2:26:fd: 9f:35:8d:d4:b0:6b:22:e6:d6:ff:a1:25:1d:71:89: 25:d3:70:a6:f5:ff:d0:ef:64:38:2b:fd:c4:4e:11: 92:a7:81:e9:87:a4:63:04:84:d8:ec:a2:6b:6a:5e: 2b:1f:e7:05:f3:10:05:6f:4a:1b:bd:3b:53:0a:93: e1:56:00:b1:82:c4:f6:a0:ee:55:c2:63:9e:00:3a: f7:93:bb:58:bd:13:99:ab:19:87:80:74:40:8f:c3: 96:0a:2d:db:6d:7c:ac:14:23:a4:64:47:01:59:bc: 1f:b9:c8:32:59:90:e1:a0:23:f3:2c:12:cd:cd:25: 97:df:ba:04:f0:ad:e6:c2:ff:29:68:ae:f1:4a:b7: c0:dc:a4:ee:ee:04:48:63:3c:99:4e:d3:8b:6c:ee: 4d:3e:3a:2a:55:21:b2:f5:1f:fd:ee:a2:d4:85:3e: ac:34:45:56:ea:e2:d1:0d:1f:4b:c3:5e:2a:88:d9: da:7e:5d:cf:3d:de:d0:dc:a9:6f:ab:a0:e2:42:d4: b3:19:6c:2f:dd:d8:cd:2d:e7:e6:20:d4:96:40:47: 79:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AB:54:14:14:91:0E:1A:40:6A:58:9B:18:0C:2E:35:CE:2C:FA:5F X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:18:a2:31:50:01:d0:b8:78:2e:09:ae:36:6b:2b:eb:37:82: e6:4c:17:a8:6f:8c:b4:5e:58:3b:79:c4:0f:5b:e9:75:d2:8e: 9e:ea:ae:bc:3b:ff:88:94:d0:d4:ad:46:3a:14:fa:61:66:1e: 9a:9e:c5:aa:f9:f8:1c:d3:c4:ae:c1:ed:e6:e9:2f:02:a3:0f: e7:f5:72:1f:b8:70:15:20:2a:00:ba:fc:25:c1:57:75:9f:94: 4d:58:f6:f5:6d:00:7e:1e:59:93:f0:c2:08:f2:7e:91:9a:a5: a1:a0:7e:fe:ea:22:32:a7:09:c9:ac:d2:b7:19:a2:c8:ff:d6: 3c:fa:99:d7:34:6e:1a:be:de:99:f1:ba:b7:14:b1:20:de:f7: 9b:3e:80:bd:45:69:9c:8a:a5:8c:d3:08:26:cd:b6:7d:93:6e: ab:73:27:e1:a5:17:9d:bf:05:32:b5:14:da:f3:fa:e9:c3:69: 9e:89:30:46:eb:9d:67:a5:5d:59:2d:a1:b6:04:98:f4:f2:a6: 1d:5f:64:f0:4a:ea:69:51:eb:8d:4f:78:44:bf:97:9e:cf:65: b2:7b:c7:ff:31:14:41:82:26:ad:61:e2:03:56:58:fa:b4:f4: 0f:97:ab:64:1b:3e:84:63:3e:15:e3:f8:49:fe:4f:32:96:aa: 1a:50:43:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwOTA4MjMwODQxWhcNMjUwOTE1MjMwODQxWjAYMRYwFAYD VQQDEw02OGJmNjFmOS03YjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc1pGzeNJ7LWf5RM9ycOOn7UgwTay4EHwcd4efsmObbYzcZezu/3mnyiJv2f NY3UsGsi5tb/oSUdcYkl03Cm9f/Q72Q4K/3EThGSp4Hph6RjBITY7KJral4rH+cF 8xAFb0obvTtTCpPhVgCxgsT2oO5VwmOeADr3k7tYvROZqxmHgHRAj8OWCi3bbXys FCOkZEcBWbwfucgyWZDhoCPzLBLNzSWX37oE8K3mwv8paK7xSrfA3KTu7gRIYzyZ TtOLbO5NPjoqVSGy9R/97qLUhT6sNEVW6uLRDR9Lw14qiNnafl3PPd7Q3Klvq6Di QtSzGWwv3djNLefmINSWQEd5ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6rVBQU kQ4aQGpYmxgMLjXOLPpfMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATGKIxUAHQuHguCa42ayvrN4LmTBeob4y0Xlg7ecQPW+l10o6e6q68 O/+IlNDUrUY6FPphZh6ansWq+fgc08Suwe3m6S8Cow/n9XIfuHAVICoAuvwlwVd1 n5RNWPb1bQB+HlmT8MII8n6RmqWhoH7+6iIypwnJrNK3GaLI/9Y8+pnXNG4avt6Z 8bq3FLEg3vebPoC9RWmciqWM0wgmzbZ9k26rcyfhpRedvwUytRTa8/rpw2meiTBG 651npV1ZLaG2BJj08qYdX2TwSuppUeuNT3hEv5eez2Wye8f/MRRBgiatYeIDVlj6 tPQPl6tkGz6EYz4V4/hJ/k8ylqoaUEOy -----END CERTIFICATE-----Generated at Tue Sep 9 09:59:40 2025 by rpki-client