$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: UXalY3U0sMz7j23/I5ANZrAD9w9Th/hBY/Fxsp1yOm4= Subject key identifier: 56:CB:0E:8F:6A:E1:5F:F8:67:1A:B4:82:D1:97:D5:7A:70:E0:10:58 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01C3 Signing time: Fri 19 Sep 2025 03:24:47 +0000 Manifest this update: Fri 19 Sep 2025 03:24:46 +0000 Manifest next update: Fri 26 Sep 2025 03:24:46 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: 8AF3iknLsGGJ2mJyb7mU48RWa/zQ45tUAWRSxipwN8o=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Sep 19 03:24:46 2025 GMT Not After : Sep 26 03:24:46 2025 GMT Subject: CN=68ccccff-2868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:5e:c6:7d:07:fb:a5:cf:40:35:4a:49:5a: 9b:95:12:06:7f:ad:8f:d4:5e:5d:46:cd:9f:7e:f4: 47:91:34:5c:e2:24:86:70:06:64:84:72:6f:d3:a2: 17:6e:34:19:01:43:19:b5:0b:67:a6:e2:a9:34:c5: ba:a3:63:91:99:85:91:16:1d:b0:e5:f2:77:c6:02: be:0d:e9:fe:48:5c:b7:b8:76:bc:c3:c9:81:c1:d4: 16:a8:d1:ab:1d:95:f0:df:02:6d:ab:6f:51:88:60: cb:41:67:38:79:05:bb:24:a0:08:79:88:16:54:dd: 7e:88:b7:d0:6f:98:76:da:64:fd:db:4d:3d:5e:27: 38:df:44:26:78:87:f9:b2:5e:c5:32:7e:6f:cc:d7: f2:a0:a6:43:e8:2b:1c:67:90:49:7b:1e:0a:c7:5b: 8f:df:1e:5e:2e:8e:74:0b:ce:e5:05:35:3d:8b:24: cf:21:6f:73:0a:06:58:3d:ff:d5:a8:67:0b:00:58: 04:5f:60:72:3f:b7:6e:e6:59:11:8b:1d:03:7c:58: 35:f4:bd:9f:58:d3:0c:81:8b:93:f4:fb:4d:64:d4: 7f:58:35:4f:c6:ba:dc:31:1f:02:29:0f:16:90:94: 63:29:e4:3f:0b:48:44:c9:37:56:9c:21:eb:72:83: f1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CB:0E:8F:6A:E1:5F:F8:67:1A:B4:82:D1:97:D5:7A:70:E0:10:58 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ee:52:d5:06:9b:be:4f:86:fd:82:38:54:b0:51:38:71:51: 0d:d3:33:50:71:ac:05:25:b5:83:35:f6:37:28:ea:e5:73:d1: df:1f:a2:82:6c:1d:18:46:18:e5:06:d9:43:7d:32:37:28:b1: d1:14:e3:61:ff:75:c8:50:5b:f0:6b:6c:f7:a9:59:e7:e5:b0: 3c:c1:0f:94:66:b1:b4:c8:2b:1c:72:59:a3:a0:7f:7e:a4:4f: 22:7f:96:fa:d6:ee:e6:a7:f3:1a:4c:79:88:87:81:9a:9d:3d: 66:b5:4e:d3:17:fb:2c:4c:d3:60:49:18:95:69:04:4c:57:44: b5:82:01:06:cc:c6:d8:5a:15:2e:e3:e5:47:71:6f:c5:65:54: 87:a9:a1:d3:2e:82:2d:2c:0a:28:64:f8:ed:0f:8f:77:a3:92: 10:59:67:1d:3a:74:aa:7f:bb:94:56:a2:90:73:3c:fa:5f:32: ea:5b:6b:aa:dd:d4:86:b7:03:b6:85:7a:55:53:e9:4d:19:96: 28:ea:97:28:33:9b:4c:e6:c3:7e:84:f3:89:7f:f0:cb:08:41: 9a:01:8b:57:ae:ef:b1:57:b3:d3:a4:9a:ce:d6:94:7e:aa:1a: 9f:4f:6a:20:e1:0a:fb:7a:4a:70:68:f4:4b:df:7b:62:15:fd: aa:8d:f0:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUwOTE5MDMyNDQ2WhcNMjUwOTI2MDMyNDQ2WjAYMRYwFAYD VQQDEw02OGNjY2NmZi0yODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDtexn0H+6XPQDVKSVqblRIGf62P1F5dRs2ffvRHkTRc4iSGcAZkhHJv06IX bjQZAUMZtQtnpuKpNMW6o2ORmYWRFh2w5fJ3xgK+Den+SFy3uHa8w8mBwdQWqNGr HZXw3wJtq29RiGDLQWc4eQW7JKAIeYgWVN1+iLfQb5h22mT92009Xic430QmeIf5 sl7FMn5vzNfyoKZD6CscZ5BJex4Kx1uP3x5eLo50C87lBTU9iyTPIW9zCgZYPf/V qGcLAFgEX2ByP7du5lkRix0DfFg19L2fWNMMgYuT9PtNZNR/WDVPxrrcMR8CKQ8W kJRjKeQ/C0hEyTdWnCHrcoPxiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbLDo9q 4V/4Zxq0gtGX1Xpw4BBYMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA17lLVBpu+T4b9gjhUsFE4cVEN0zNQcawFJbWDNfY3KOrlc9HfH6KC bB0YRhjlBtlDfTI3KLHRFONh/3XIUFvwa2z3qVnn5bA8wQ+UZrG0yCscclmjoH9+ pE8if5b61u7mp/MaTHmIh4GanT1mtU7TF/ssTNNgSRiVaQRMV0S1ggEGzMbYWhUu 4+VHcW/FZVSHqaHTLoItLAooZPjtD493o5IQWWcdOnSqf7uUVqKQczz6XzLqW2uq 3dSGtwO2hXpVU+lNGZYo6pcoM5tM5sN+hPOJf/DLCEGaAYtXru+xV7PTpJrO1pR+ qhqfT2og4Qr7ekpwaPRL33tiFf2qjfBw -----END CERTIFICATE-----Generated at Fri Sep 19 05:52:14 2025 by rpki-client