$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: ubc1g9EEMqQ0AOujbnXokWd2HeSHc3ZI6o7romsxu34= Subject key identifier: 0D:5A:C8:00:DD:CB:19:9E:B9:56:EC:00:45:2C:B4:D6:BA:44:C6:18 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: C5 Signing time: Wed 17 Sep 2025 06:28:12 +0000 Manifest this update: Wed 17 Sep 2025 06:28:12 +0000 Manifest next update: Wed 24 Sep 2025 06:28:12 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: OVctl3+hkfbMZakSDstBwxWI5Gbe03svussk7SLREHg=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Sep 17 06:28:12 2025 GMT Not After : Sep 24 06:28:12 2025 GMT Subject: CN=68ca54fc-dcf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:19:8b:1a:97:24:35:ff:b8:2b:da:d2:cf:26: f8:6b:0d:2a:27:93:a2:54:73:4d:1b:b0:98:3f:20: c8:03:89:3e:ab:e3:81:0d:7c:58:f1:f5:f7:3f:0e: 08:71:0b:f5:ec:0a:3a:96:78:cf:34:82:49:22:e6: 8b:b4:2a:db:19:06:2d:68:13:17:86:b9:0a:23:0b: 5d:95:75:46:90:93:9f:63:ca:63:1a:63:48:25:63: 15:3c:ef:03:a1:ba:3c:27:67:b8:76:11:dc:1e:4c: 27:fe:28:98:39:6d:fd:66:40:ea:50:1f:f4:03:f5: af:fa:a8:dc:dc:17:e0:fe:e3:bd:43:ed:8e:20:0f: e6:67:04:11:10:19:54:25:a3:c0:2b:62:93:cf:8a: 93:b3:ce:11:40:d0:45:93:e1:6c:12:d2:50:c8:e7: 9d:64:15:ae:30:f3:07:2b:04:44:14:c5:cf:c2:70: fe:dc:e3:88:bb:80:b9:ed:91:75:9e:8e:23:57:fd: a5:5a:f4:e7:b1:6c:73:85:08:9f:94:ab:61:83:ed: 63:55:06:2b:c2:bb:10:43:95:d3:63:9b:04:25:70: 02:be:76:47:15:0a:d6:73:b7:aa:ca:8b:9f:e7:86: a2:81:b2:ae:b5:95:53:1d:a8:c2:5b:53:fb:db:1b: 1e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5A:C8:00:DD:CB:19:9E:B9:56:EC:00:45:2C:B4:D6:BA:44:C6:18 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:03:b0:bd:39:a1:b4:c6:45:93:cc:0c:1d:ed:7b:1d:7e:de: ba:1e:1c:48:ed:9d:26:87:9a:89:03:ea:cb:6b:88:9f:a3:de: 7c:61:71:f7:d5:98:da:bd:18:93:18:d4:34:31:aa:b3:d5:71: 70:fc:80:70:31:56:18:15:34:79:5d:cf:7e:d7:6a:7c:e8:b9: 14:2c:e0:fe:85:aa:26:50:50:91:05:bf:df:1f:94:77:b7:0a: 21:8f:b4:f0:bd:7a:ea:10:4d:80:f5:07:b6:99:e1:69:87:77: 20:38:1c:81:15:0b:0e:b7:be:f3:29:ad:87:bc:2d:77:61:c0: 0e:15:4a:9f:8c:e4:b3:1e:4c:d7:dd:29:0e:d6:8f:83:1a:78: 36:d9:1e:7b:56:c1:cc:0f:e5:dd:30:71:04:35:0f:7d:1f:87: c7:2b:2a:d8:7e:b1:9b:77:fa:6f:93:dd:b4:4d:c6:af:f0:a1: ae:a2:41:3f:af:2a:c9:36:35:72:5d:ed:d4:fa:23:01:32:8f: f5:3f:7e:f1:45:33:1d:d7:2b:08:92:c9:62:c7:f4:40:8c:3b: bf:50:6f:cd:f1:91:64:ef:b6:ab:08:c0:d7:fc:73:79:0f:b3: 01:0f:47:88:b2:7f:26:ba:34:01:af:f4:6f:e4:e0:ec:21:7a: 1f:4a:9d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUwOTE3MDYyODEyWhcNMjUwOTI0MDYyODEyWjAYMRYwFAYD VQQDEw02OGNhNTRmYy1kY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxmLGpckNf+4K9rSzyb4aw0qJ5OiVHNNG7CYPyDIA4k+q+OBDXxY8fX3Pw4I cQv17Ao6lnjPNIJJIuaLtCrbGQYtaBMXhrkKIwtdlXVGkJOfY8pjGmNIJWMVPO8D obo8J2e4dhHcHkwn/iiYOW39ZkDqUB/0A/Wv+qjc3Bfg/uO9Q+2OIA/mZwQREBlU JaPAK2KTz4qTs84RQNBFk+FsEtJQyOedZBWuMPMHKwREFMXPwnD+3OOIu4C57ZF1 no4jV/2lWvTnsWxzhQiflKthg+1jVQYrwrsQQ5XTY5sEJXACvnZHFQrWc7eqyouf 54aigbKutZVTHajCW1P72xsevwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1ayADd yxmeuVbsAEUstNa6RMYYMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFA7C9OaG0xkWTzAwd7Xsdft66HhxI7Z0mh5qJA+rLa4ifo958YXH3 1ZjavRiTGNQ0Maqz1XFw/IBwMVYYFTR5Xc9+12p86LkULOD+haomUFCRBb/fH5R3 twohj7TwvXrqEE2A9Qe2meFph3cgOByBFQsOt77zKa2HvC13YcAOFUqfjOSzHkzX 3SkO1o+DGng22R57VsHMD+XdMHEENQ99H4fHKyrYfrGbd/pvk920Tcav8KGuokE/ ryrJNjVyXe3U+iMBMo/1P37xRTMd1ysIkslix/RAjDu/UG/N8ZFk77arCMDX/HN5 D7MBD0eIsn8mujQBr/Rv5ODsIXofSp0M -----END CERTIFICATE-----Generated at Fri Sep 19 04:04:46 2025 by rpki-client