$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft File: 1Ycen8b73n3HG36JXIoEw9ACHYU.mft (raw, json) Hash identifier: xkjp80IoEYmjWKZiI8/oE/ZEdpXF/xBvrALRNftFCek= Subject key identifier: E3:D7:A7:12:E4:F6:B4:CD:2F:C3:6B:13:D9:FF:BE:56:6E:C1:28:E6 Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft Manifest number: 0183 Signing time: Wed 17 Sep 2025 04:10:36 +0000 Manifest this update: Wed 17 Sep 2025 04:10:35 +0000 Manifest next update: Wed 24 Sep 2025 04:10:35 +0000 Files and hashes: 1: 1Ycen8b73n3HG36JXIoEw9ACHYU.crl (hash: Bf8ZO+EB8ZUKsrkCal2VHvCMWzPb4Q/qMT7RPcBO95E=) 2: B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa (hash: yOezlN4+53IwwnSsCKNCBTmWXo8aQEvNaQEYhS9yato=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49, serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: Sep 17 04:10:35 2025 GMT Not After : Sep 24 04:10:35 2025 GMT Subject: CN=68ca34bb-f60b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7a:bf:63:78:b3:e9:5c:72:4f:9d:ca:89:82: 51:d6:09:71:ba:0c:59:18:70:e8:91:80:14:2e:cd: 1c:63:ad:01:8d:01:4d:9e:07:16:3e:b9:6f:90:fe: 84:ed:93:fd:4e:dd:3e:06:08:a4:df:01:43:99:35: 2b:16:a7:25:65:e5:4f:4c:26:d6:ac:76:6a:ab:cb: f3:05:cd:9b:55:0e:73:4b:02:6e:72:ca:5b:70:f9: ec:f8:0a:21:25:a7:9f:52:5d:8f:0c:47:17:09:19: 8b:86:d2:87:ec:d0:33:77:45:f2:7a:3a:83:c0:b0: f4:45:d5:b8:a6:a1:df:20:58:8c:cf:33:d2:b5:c3: b3:98:0c:a8:7c:69:68:d1:3c:f5:4c:1b:0e:f2:ed: 0a:81:6e:07:44:ce:67:37:e8:87:e4:f1:d6:89:89: 27:c6:34:81:06:d0:a2:09:f0:b1:83:e1:75:70:bf: 4a:c4:9a:3f:7e:37:e3:9c:41:fc:f1:a6:8a:cf:d2: 19:5b:35:b8:ec:c5:09:31:5d:1c:ed:ac:a3:b6:1e: b5:e2:a0:8a:3d:2e:58:7d:12:61:a6:72:59:fa:92: 76:71:4b:fb:11:71:14:6c:12:d7:72:e5:46:d5:f6: 4d:cb:aa:cf:21:f3:14:af:ec:99:fd:81:ed:d5:56: 3c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D7:A7:12:E4:F6:B4:CD:2F:C3:6B:13:D9:FF:BE:56:6E:C1:28:E6 X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:22:4e:8d:8e:01:e3:a6:df:67:c3:14:9c:bb:9e:ef:ba:67: f0:63:7d:53:a1:f1:2e:3c:35:42:c4:a3:28:9d:9c:45:6f:dd: 73:d4:c2:0b:f2:a3:b8:73:c7:d4:e2:07:49:59:39:0d:76:e1: b9:1a:d5:57:e0:20:35:db:26:f0:24:7d:d7:ff:f8:50:03:44: 06:55:47:19:ce:83:92:a0:04:a9:82:78:6e:76:13:92:cc:ea: 28:d0:d0:8f:c5:09:0c:32:9f:4a:d5:c2:61:c9:fc:a8:ed:16: 5f:bf:76:61:75:11:7d:87:5b:a7:8b:2f:81:55:5d:2e:d7:6b: 2e:ae:05:d8:5c:cd:77:aa:3f:d6:c8:ca:56:f9:26:ba:fd:85: ee:ac:38:33:82:8c:31:4a:0f:6a:a7:75:54:10:61:99:10:d9: dd:4e:99:50:09:7a:81:ce:db:8c:b2:71:d1:90:c8:f2:39:b7: 24:39:fc:90:d1:3b:ed:26:ff:ec:cb:77:b1:4e:63:09:bd:f3: 59:a4:34:68:40:14:fe:ce:f1:25:b0:6d:cb:16:94:e1:c9:54: b3:7a:a3:cd:6a:c6:f9:3c:b2:fd:c4:b1:8c:66:83:76:d3:c5: 1d:3e:20:a9:65:92:3d:24:01:ed:ab:4e:71:e6:72:94:5b:4a: 1a:7a:6f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDkxMTAvBgNVBAUTKEQ1ODcxRTlGQzZGQkRFN0RDNzFCN0U4OTVDOEEwNEMz RDAwMjFEODUwHhcNMjUwOTE3MDQxMDM1WhcNMjUwOTI0MDQxMDM1WjAYMRYwFAYD VQQDEw02OGNhMzRiYi1mNjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03q/Y3iz6VxyT53KiYJR1glxugxZGHDokYAULs0cY60BjQFNngcWPrlvkP6E 7ZP9Tt0+Bgik3wFDmTUrFqclZeVPTCbWrHZqq8vzBc2bVQ5zSwJucspbcPns+Aoh JaefUl2PDEcXCRmLhtKH7NAzd0XyejqDwLD0RdW4pqHfIFiMzzPStcOzmAyofGlo 0Tz1TBsO8u0KgW4HRM5nN+iH5PHWiYknxjSBBtCiCfCxg+F1cL9KxJo/fjfjnEH8 8aaKz9IZWzW47MUJMV0c7ayjth614qCKPS5YfRJhpnJZ+pJ2cUv7EXEUbBLXcuVG 1fZNy6rPIfMUr+yZ/YHt1VY8FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPXpxLk 9rTNL8NrE9n/vlZuwSjmMB8GA1UdIwQYMBaAFNWHHp/G+959xxt+iVyKBMPQAh2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0OS80N0QwNDQ2NDQ3 QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNuM0hHMzZKWElvRXc5QUNI WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNu M0hHMzZKWElvRXc5QUNIWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVIk6NjgHjpt9nwxScu57vumfwY31TofEuPDVCxKMonZxFb91z1MIL 8qO4c8fU4gdJWTkNduG5GtVX4CA12ybwJH3X//hQA0QGVUcZzoOSoASpgnhudhOS zOoo0NCPxQkMMp9K1cJhyfyo7RZfv3ZhdRF9h1uniy+BVV0u12surgXYXM13qj/W yMpW+Sa6/YXurDgzgowxSg9qp3VUEGGZENndTplQCXqBztuMsnHRkMjyObckOfyQ 0TvtJv/sy3exTmMJvfNZpDRoQBT+zvElsG3LFpThyVSzeqPNasb5PLL9xLGMZoN2 08UdPiCpZZI9JAHtq05x5nKUW0oaem8B -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:23 2025 by rpki-client