$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft File: yGA2V1UkSO1buu1xck0iIPA798Y.mft (raw, json) Hash identifier: n+C2DYt31699Q3yTzW0Ew3kBn4ZwufPBBCskQeaHJIw= Subject key identifier: 0A:00:42:5B:EE:62:14:21:C0:3B:44:37:F0:F2:62:9C:17:37:79:4E Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft Manifest number: DE Signing time: Fri 05 Sep 2025 05:58:23 +0000 Manifest this update: Fri 05 Sep 2025 05:58:22 +0000 Manifest next update: Fri 12 Sep 2025 05:58:22 +0000 Files and hashes: 1: yGA2V1UkSO1buu1xck0iIPA798Y.crl (hash: Qm7tKCADrPKow1oFF48rSqkOOQ/llURbWtvxb8JHuOs=) 2: C006CA2248B311EFB8A4C178C4F9AE02.roa (hash: BB5/p5ExgMeQd5Go8UNqIFMq/xQWZ4tohFPvDD4Zv98=) 3: 68EBA63A48B911EFB80D9535C4F9AE02.roa (hash: SDdYRvXnG416X1QTBXKH/HiVb0zTXNC7wcw8Ko4jVbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Sep 5 05:58:22 2025 GMT Not After : Sep 12 05:58:22 2025 GMT Subject: CN=68ba7bfe-ef57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:44:e1:2c:37:ff:1c:2c:0a:7d:77:c8:62:3c: 27:29:63:de:a0:31:7e:08:f4:53:6d:71:9a:56:97: 13:bd:d4:c3:a0:eb:8f:a0:8e:e1:e1:7e:c9:e7:8e: c0:c8:55:28:17:e7:89:09:17:85:1c:b2:7e:43:55: 27:7d:43:39:12:ff:92:7a:12:70:56:b4:f6:fb:2d: a3:17:b8:8c:8b:d0:7c:df:89:2e:0d:fb:b8:d7:0b: d1:39:72:6a:9f:45:f7:eb:89:a3:d9:9c:d1:58:82: f7:f3:6c:4c:9a:0e:1d:36:1e:42:18:56:3a:f5:c5: 52:cb:72:d5:8b:e6:ab:db:87:e7:0a:85:97:5e:6f: d8:dc:07:53:ff:f7:7c:0c:59:6c:30:c6:14:a1:30: d6:28:4c:3d:81:d1:a3:83:67:43:56:17:9b:fd:b2: d2:7a:d1:b4:43:c1:4e:fc:53:ce:23:be:b3:a2:01: c4:f2:a0:7c:df:92:37:82:9c:2f:9e:e8:eb:33:c5: 91:a1:60:0e:31:ab:ef:e0:7a:97:54:2a:72:fb:50: 92:a5:eb:90:b6:dd:8e:db:be:56:0b:9a:a3:a8:82: bf:59:b1:fd:a3:47:f7:2e:17:4b:41:8b:70:36:3d: 2e:02:c4:c4:60:61:d9:79:f7:d8:94:df:ce:d8:e2: e3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:00:42:5B:EE:62:14:21:C0:3B:44:37:F0:F2:62:9C:17:37:79:4E X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a6:58:88:60:1a:07:01:6e:65:c4:9c:a4:06:90:b3:37:09: 9b:59:49:76:72:f5:a5:f0:a8:f1:f8:cd:c8:4b:48:ae:08:55: 1d:40:b1:f5:8c:75:3b:8d:c4:b6:2d:87:56:76:f1:78:68:7d: 65:48:62:2b:18:96:59:bb:1d:4c:41:2a:86:0e:89:f2:b5:2e: 63:73:28:a5:99:ec:f0:a7:a7:cc:d5:a3:bf:77:46:ec:0e:ce: e9:33:e2:58:b9:9f:2a:9b:aa:e0:bf:9b:9f:cd:82:bd:05:f5: fd:50:9a:69:40:58:f3:cf:c4:ff:18:53:5d:ed:6b:5c:3d:f4: 5d:9e:00:69:28:05:5c:e2:1e:19:94:4d:8c:f2:cc:83:36:9c: 40:58:96:79:df:3f:eb:15:68:32:44:7d:cf:d3:76:91:fb:0a: af:60:84:74:88:cd:bf:02:8b:6a:69:97:52:e9:b4:11:ac:db: ad:a7:89:60:89:e8:12:f7:83:4a:58:99:eb:d4:2e:c8:98:d9: d9:3b:e2:a7:fc:0f:71:23:4f:9c:8f:93:74:6a:ed:8e:13:c1: 79:3b:4e:99:d7:85:03:c1:59:b1:7b:40:64:1b:c4:a6:ce:2b: 84:cc:c0:ea:31:54:5f:36:5f:56:34:e3:a8:ec:54:77:fa:e6: 71:ec:73:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjUwOTA1MDU1ODIyWhcNMjUwOTEyMDU1ODIyWjAYMRYwFAYD VQQDEw02OGJhN2JmZS1lZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEThLDf/HCwKfXfIYjwnKWPeoDF+CPRTbXGaVpcTvdTDoOuPoI7h4X7J547A yFUoF+eJCReFHLJ+Q1UnfUM5Ev+SehJwVrT2+y2jF7iMi9B834kuDfu41wvROXJq n0X364mj2ZzRWIL382xMmg4dNh5CGFY69cVSy3LVi+ar24fnCoWXXm/Y3AdT//d8 DFlsMMYUoTDWKEw9gdGjg2dDVheb/bLSetG0Q8FO/FPOI76zogHE8qB835I3gpwv nujrM8WRoWAOMavv4HqXVCpy+1CSpeuQtt2O275WC5qjqIK/WbH9o0f3LhdLQYtw Nj0uAsTEYGHZeffYlN/O2OLjKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoAQlvu YhQhwDtEN/DyYpwXN3lOMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi82RDIwNzVGNjQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NP MWJ1dTF4Y2swaUlQQTc5OFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSpliIYBoHAW5lxJykBpCzNwmbWUl2cvWl8Kjx+M3IS0iuCFUdQLH1 jHU7jcS2LYdWdvF4aH1lSGIrGJZZux1MQSqGDonytS5jcyilmezwp6fM1aO/d0bs Ds7pM+JYuZ8qm6rgv5ufzYK9BfX9UJppQFjzz8T/GFNd7WtcPfRdngBpKAVc4h4Z lE2M8syDNpxAWJZ53z/rFWgyRH3P03aR+wqvYIR0iM2/AotqaZdS6bQRrNutp4lg iegS94NKWJnr1C7ImNnZO+Kn/A9xI0+cj5N0au2OE8F5O06Z14UDwVmxe0BkG8Sm ziuEzMDqMVRfNl9WNOOo7FR3+uZx7HNY -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:26 2025 by rpki-client