$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: 6gDHuLknpiTTxTvXUu0KCspAPAnJnxDiuy9ZnvasKwk= Subject key identifier: 06:A6:E2:E2:C0:63:59:D3:35:9D:0B:22:B5:71:47:D3:1F:D1:E8:A6 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0C9E Signing time: Thu 18 Sep 2025 18:26:54 +0000 Manifest this update: Thu 18 Sep 2025 18:26:54 +0000 Manifest next update: Thu 25 Sep 2025 18:26:54 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: l/ma3v4A5HZ3pv7fDACD1CnKKoVvNW35wPB75q0leqM=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: VMJPLLhedlHAk4tQ5HhxEAJ5POLeqMTVPXSXcNzn0f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B, serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Sep 18 18:26:54 2025 GMT Not After : Sep 25 18:26:54 2025 GMT Subject: CN=68cc4eee-2ae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:d0:f4:31:1e:d9:ef:f5:35:d7:43:b1:1a: c4:0a:7e:87:a0:b4:4c:e4:d5:6f:2a:ca:16:9c:79: c7:17:5b:a7:71:29:35:5b:fd:92:a6:62:98:9c:5d: b3:53:7a:f8:37:21:ca:aa:a8:ec:e2:16:c5:d8:d1: d7:14:19:a9:cf:f1:85:f2:93:13:52:de:a1:aa:f5: 23:e5:76:c3:cf:5e:ad:92:0c:8b:72:a1:f4:26:4f: f3:22:b5:0b:e4:b9:a0:1f:65:fa:b3:d9:54:8a:d7: f6:30:be:23:d1:d0:fb:07:e6:e6:db:04:e7:3a:50: ae:65:ec:8f:9f:9c:35:24:ba:1a:d7:34:cc:f7:29: 20:a0:64:80:ea:cd:d7:7f:f5:c7:6e:ae:a5:4d:8d: f4:a6:7d:f6:90:03:60:90:81:2a:e9:37:79:b8:0a: db:23:a6:3c:0b:ef:49:ed:4b:39:20:bc:db:ec:21: 38:3a:f8:f9:1d:30:d4:b7:fa:c2:46:b7:95:08:9f: 5c:b8:f4:79:ea:6b:33:ee:61:49:18:18:c4:29:1e: 6b:b0:49:ad:77:d0:05:99:35:9c:24:7b:9a:72:27: c5:d7:c0:a8:6b:08:84:15:8a:02:69:73:c0:c5:e6: 0b:08:78:0d:c2:50:35:62:3d:65:12:5e:d0:cc:30: 31:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A6:E2:E2:C0:63:59:D3:35:9D:0B:22:B5:71:47:D3:1F:D1:E8:A6 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b7:02:23:a4:80:cf:e8:bf:e8:68:8c:07:b4:a7:6c:65:76: be:22:48:60:ca:64:65:e7:46:17:c7:e7:1b:88:c0:55:ba:ff: d4:b8:7f:7c:ba:ea:70:de:b8:33:f8:e3:01:9c:ab:55:cd:4e: 27:ac:9f:7c:75:be:7d:4d:b3:5a:0a:f0:5e:95:83:c7:76:b0: ea:49:5c:15:37:30:34:fd:5d:8d:54:8e:07:66:2c:ad:45:e1: dd:6a:81:77:fc:67:01:0f:25:80:b8:90:2a:64:38:06:bc:7f: 00:ba:70:58:7a:19:ad:fd:fe:28:e3:52:ca:a6:4d:e3:bd:d1: 15:6a:5d:07:ab:ad:67:79:09:a5:5c:20:9f:24:d2:f9:5e:67: ae:95:24:c8:d9:7c:86:41:1a:12:e1:58:77:41:ad:eb:de:58: 91:a6:95:9b:4c:b4:91:0f:76:47:a8:d8:b1:8d:a6:04:32:1c: c7:17:88:74:f6:6d:ea:b5:04:b0:dd:aa:be:23:84:be:fd:82: 0c:e4:45:8a:d2:b2:96:27:68:a7:c2:7a:73:52:30:1a:b5:7f: 03:49:28:d4:67:66:f2:27:68:10:44:f1:de:1a:f5:04:f2:24: 51:76:b2:d8:e4:03:6d:7e:55:d6:05:b0:e0:7d:2d:c6:ea:b9: cb:39:e2:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUwOTE4MTgyNjU0WhcNMjUwOTI1MTgyNjU0WjAYMRYwFAYD VQQDEw02OGNjNGVlZS0yYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHrQ9DEe2e/1NddDsRrECn6HoLRM5NVvKsoWnHnHF1uncSk1W/2SpmKYnF2z U3r4NyHKqqjs4hbF2NHXFBmpz/GF8pMTUt6hqvUj5XbDz16tkgyLcqH0Jk/zIrUL 5LmgH2X6s9lUitf2ML4j0dD7B+bm2wTnOlCuZeyPn5w1JLoa1zTM9ykgoGSA6s3X f/XHbq6lTY30pn32kANgkIEq6Td5uArbI6Y8C+9J7Us5ILzb7CE4Ovj5HTDUt/rC RreVCJ9cuPR56msz7mFJGBjEKR5rsEmtd9AFmTWcJHuacifF18CoawiEFYoCaXPA xeYLCHgNwlA1Yj1lEl7QzDAx5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAam4uLA Y1nTNZ0LIrVxR9Mf0eimMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBftwIjpIDP6L/oaIwHtKdsZXa+IkhgymRl50YXx+cbiMBVuv/UuH98 uupw3rgz+OMBnKtVzU4nrJ98db59TbNaCvBelYPHdrDqSVwVNzA0/V2NVI4HZiyt ReHdaoF3/GcBDyWAuJAqZDgGvH8AunBYehmt/f4o41LKpk3jvdEVal0Hq61neQml XCCfJNL5XmeulSTI2XyGQRoS4Vh3Qa3r3liRppWbTLSRD3ZHqNixjaYEMhzHF4h0 9m3qtQSw3aq+I4S+/YIM5EWK0rKWJ2inwnpzUjAatX8DSSjUZ2byJ2gQRPHeGvUE 8iRRdrLY5ANtflXWBbDgfS3G6rnLOeL7 -----END CERTIFICATE-----Generated at Thu Sep 18 20:45:37 2025 by rpki-client