$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: njqSQ6mo5I2OyYpEt8Rs/c2L79+G6xhQHR24AJO7uOw= Subject key identifier: 37:A2:C5:8F:8D:61:AD:9B:EF:F6:16:0F:CC:4E:AF:76:FE:58:CB:ED Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0C32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0C28 Signing time: Thu 18 Sep 2025 18:52:58 +0000 Manifest this update: Thu 18 Sep 2025 18:52:58 +0000 Manifest next update: Thu 25 Sep 2025 18:52:58 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: EFt4kTD73ySyMiNS1Yk6MKrWxmHisGTrMbLrEIbGu+w=) 2: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: d+PNEJYkgwfN/EWh9YAvK3NrsnGHrIa0Ji1QGqGUhS8=) 3: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: 3gAyCRS9eTrSpT6uGMaC2W//L+1mB9VyFAfUFmHY1AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3122 (0xc32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Sep 18 18:52:58 2025 GMT Not After : Sep 25 18:52:58 2025 GMT Subject: CN=68cc550a-f629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:1d:3c:17:f5:3b:a1:1e:6f:f7:fb:9b:34: 48:69:85:45:7b:38:49:aa:6e:ad:07:bf:5e:b5:16: fb:ca:1f:71:79:a1:21:a4:14:59:6d:a9:e5:cf:c4: 16:d6:b6:37:d7:fd:18:45:70:f8:49:60:62:4e:c2: e5:4f:0e:41:d5:8c:35:37:d3:56:4f:d7:09:28:b4: 44:87:b6:fd:49:03:e8:67:3f:f4:23:e7:c7:ed:4c: 90:8b:57:c1:12:bc:a6:ef:f9:ee:ba:ba:fd:0e:19: 4b:a7:e4:df:3d:b3:c8:2a:15:b4:cf:16:53:4d:59: 6a:f2:d7:27:18:18:c8:c0:e8:3b:3c:e2:49:f9:71: 52:45:cf:14:9a:27:59:9c:fe:f6:af:ab:5e:24:c2: 9b:6e:24:ad:51:b2:01:42:97:65:37:83:37:7d:8d: e7:16:b3:88:a2:bd:e5:fe:d0:cc:9b:aa:1c:ad:df: cc:10:65:a5:c2:41:1f:9a:b0:5b:a2:47:a0:9e:62: 09:10:f2:b0:2e:e1:d9:37:94:47:e7:4f:5d:d1:b2: 28:18:47:e9:94:93:23:d2:6b:27:5b:e6:11:61:1f: 38:9d:40:eb:6b:38:c0:90:dc:1f:f5:32:72:03:d1: 35:c8:a1:7d:a0:a0:99:07:25:a2:21:d3:b6:fd:ec: 1e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:C5:8F:8D:61:AD:9B:EF:F6:16:0F:CC:4E:AF:76:FE:58:CB:ED X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:8e:1f:9e:9a:2e:1b:74:0d:a2:3e:f1:0e:b6:d8:a7:b9:8a: a4:75:c1:d2:a9:41:99:e3:d6:f1:60:bb:3b:54:62:b8:1f:7d: fc:15:32:1e:bd:cb:7a:c8:ae:98:fc:51:20:9e:8d:c1:aa:43: 6c:bc:5b:f0:f3:cd:31:c1:57:d5:74:64:df:af:ae:36:8c:53: 5f:7f:0e:bb:3d:f3:c1:84:21:ba:8f:ee:b0:d7:7d:9d:75:73: 4c:29:f7:58:7c:c6:ac:57:c2:b0:ae:c9:67:d1:aa:a9:28:5d: cf:50:c4:fb:30:58:e0:78:a3:b2:89:84:f4:41:32:50:aa:f5: bc:18:24:b2:d6:0a:38:0d:3c:75:10:65:ed:c0:16:09:1f:1a: 87:a2:74:8c:7d:61:1d:58:57:87:b3:3b:6f:03:9a:1a:f8:3c: 3b:31:dd:89:e6:df:de:78:61:b9:4d:10:a3:dd:5d:da:b2:c6: e0:39:d8:6b:ff:39:df:36:8e:28:eb:5a:f8:44:0a:c3:a3:3b: b0:33:31:9a:1d:a8:b1:a2:fb:ab:bb:da:ae:3c:50:c6:f6:fc: 1d:2f:44:95:a4:5a:1e:c6:5d:61:ee:86:c8:ce:cc:e8:c5:dd: 32:96:bc:ce:8e:22:5d:6c:d5:43:f7:50:fd:73:9e:ed:6d:e4: c2:1a:bf:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjUwOTE4MTg1MjU4WhcNMjUwOTI1MTg1MjU4WjAYMRYwFAYD VQQDEw02OGNjNTUwYS1mNjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FAdPBf1O6Eeb/f7mzRIaYVFezhJqm6tB79etRb7yh9xeaEhpBRZbanlz8QW 1rY31/0YRXD4SWBiTsLlTw5B1Yw1N9NWT9cJKLREh7b9SQPoZz/0I+fH7UyQi1fB Erym7/nuurr9DhlLp+TfPbPIKhW0zxZTTVlq8tcnGBjIwOg7POJJ+XFSRc8UmidZ nP72r6teJMKbbiStUbIBQpdlN4M3fY3nFrOIor3l/tDMm6ocrd/MEGWlwkEfmrBb okegnmIJEPKwLuHZN5RH509d0bIoGEfplJMj0msnW+YRYR84nUDrazjAkNwf9TJy A9E1yKF9oKCZByWiIdO2/eweSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeixY+N Ya2b7/YWD8xOr3b+WMvtMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAjh+emi4bdA2iPvEOttinuYqkdcHSqUGZ49bxYLs7VGK4H338FTIe vct6yK6Y/FEgno3BqkNsvFvw880xwVfVdGTfr642jFNffw67PfPBhCG6j+6w132d dXNMKfdYfMasV8Kwrsln0aqpKF3PUMT7MFjgeKOyiYT0QTJQqvW8GCSy1go4DTx1 EGXtwBYJHxqHonSMfWEdWFeHsztvA5oa+Dw7Md2J5t/eeGG5TRCj3V3assbgOdhr /znfNo4o61r4RArDozuwMzGaHaixovuru9quPFDG9vwdL0SVpFoexl1h7obIzszo xd0ylrzOjiJdbNVD91D9c57tbeTCGr/Q -----END CERTIFICATE-----Generated at Thu Sep 18 20:30:35 2025 by rpki-client