$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft File: Yb6mqjOAZskOtcsyQAxq52BciKQ.mft (raw, json) Hash identifier: cdsu8znvCgEhZqs3a5alRL+SCIVfbAboUaev2D47gfI= Subject key identifier: 5E:1A:60:BF:F7:63:1F:D6:F7:DC:1B:BC:1C:FF:7F:5A:46:F8:B3:BF Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0FDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft Manifest number: 0FD3 Signing time: Thu 18 Sep 2025 17:39:47 +0000 Manifest this update: Thu 18 Sep 2025 17:39:46 +0000 Manifest next update: Thu 25 Sep 2025 17:39:46 +0000 Files and hashes: 1: Yb6mqjOAZskOtcsyQAxq52BciKQ.crl (hash: T9Ldmr8Zqgcla7FZuxJfu0JtfXfzDhcl2IkBdYSYLt4=) 2: ECB38BAA5C3211E9816E7981C4F9AE02.roa (hash: cCIRQV7ckuHtyIWMyZbPGhi3IsjwZT86WZjPdbGRO6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4058 (0xfda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B, serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: Sep 18 17:39:46 2025 GMT Not After : Sep 25 17:39:46 2025 GMT Subject: CN=68cc43e3-faf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:97:d0:08:82:97:03:d7:07:6a:69:7a:9b: c5:1b:dc:33:bf:2c:25:f3:d1:12:c3:04:d3:38:3c: d6:65:10:c0:74:be:a0:4c:c5:8f:51:17:aa:e2:4d: 2d:c5:cd:9b:94:a3:d6:e9:d2:b5:64:85:8c:a1:1a: 7b:34:20:96:d1:7e:19:0d:ba:3e:e9:67:06:dd:c6: fe:9a:8a:05:ef:7a:b6:f9:ee:11:9b:85:ea:9f:f8: 16:11:05:58:c7:4c:e4:1b:a7:97:9a:16:49:4f:ca: bc:8c:49:a5:31:41:1b:06:4b:8d:70:23:98:42:a5: 80:11:42:27:5f:26:0d:2f:1d:0d:20:5f:73:39:50: 17:a5:13:4d:64:e8:b1:b0:94:8b:30:db:f0:14:a1: 46:a2:a9:66:5a:60:48:41:9e:22:db:a4:43:a1:6e: 13:8e:6a:a5:b7:13:e5:d4:90:b8:4c:7f:d7:ac:dc: 0f:52:1e:fa:7c:ab:62:b2:cd:db:a8:ae:81:6a:cc: 8b:5b:dd:d4:ee:08:20:42:e6:bc:09:33:7f:78:b5: 27:fc:20:45:22:06:14:e7:ee:27:3f:3b:db:ee:13: 49:05:25:11:51:bf:e4:df:ae:00:25:da:49:c8:e2: a3:09:b8:b5:21:c8:52:60:92:ba:f5:86:82:bd:09: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1A:60:BF:F7:63:1F:D6:F7:DC:1B:BC:1C:FF:7F:5A:46:F8:B3:BF X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e5:d4:80:1c:71:e3:6c:9f:b5:2a:54:a6:2a:b7:32:38:27: ce:1c:fd:21:47:0e:00:6d:08:49:ff:27:02:56:eb:97:72:64: 36:2e:20:15:bd:9f:c9:ec:60:c6:29:e7:31:b4:98:78:fa:b6: 5d:17:4f:d5:05:ea:3e:f9:d4:5a:a0:c3:96:6a:e5:44:52:fd: 17:e5:eb:e3:de:20:4f:19:b8:e5:f4:2b:c3:bb:c6:cc:5f:ab: 12:7b:f3:32:53:d6:0f:16:32:45:db:50:e2:54:18:d2:1f:1b: 89:87:f4:79:37:40:48:cd:52:83:13:d1:1f:46:0c:b7:b9:eb: c9:8e:90:b0:61:80:14:9d:13:28:08:4d:47:fa:e3:cd:19:3b: c8:20:52:d7:02:0c:68:63:19:3d:95:51:43:9d:d2:04:8d:90: 1f:0e:7b:24:37:2b:e5:c2:5c:b9:5c:56:97:c7:a3:c7:7e:b4: fb:0c:4a:19:f4:d6:62:20:b4:ee:b0:01:24:55:34:7d:6b:3f: de:c4:dc:60:89:ef:d3:5c:f1:f3:8f:34:a6:36:52:c4:44:48: ec:11:81:c6:b3:d6:11:c5:2e:f5:43:67:8a:66:c1:4c:d5:f0: 09:c5:21:b7:13:5f:af:36:f5:a9:c1:fe:2f:1b:fe:fd:6e:89: 2d:11:51:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjUwOTE4MTczOTQ2WhcNMjUwOTI1MTczOTQ2WjAYMRYwFAYD VQQDEw02OGNjNDNlMy1mYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdWX0AiClwPXB2ppepvFG9wzvywl89ESwwTTODzWZRDAdL6gTMWPUReq4k0t xc2blKPW6dK1ZIWMoRp7NCCW0X4ZDbo+6WcG3cb+mooF73q2+e4Rm4Xqn/gWEQVY x0zkG6eXmhZJT8q8jEmlMUEbBkuNcCOYQqWAEUInXyYNLx0NIF9zOVAXpRNNZOix sJSLMNvwFKFGoqlmWmBIQZ4i26RDoW4TjmqltxPl1JC4TH/XrNwPUh76fKtiss3b qK6BasyLW93U7gggQua8CTN/eLUn/CBFIgYU5+4nPzvb7hNJBSURUb/k364AJdpJ yOKjCbi1IchSYJK69YaCvQkDWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4aYL/3 Yx/W99wbvBz/f1pG+LO/MB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTUyQi8yOENCRkIxNDVDMzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpz a090Y3N5UUF4cTUyQmNpS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO5dSAHHHjbJ+1KlSmKrcyOCfOHP0hRw4AbQhJ/ycCVuuXcmQ2LiAV vZ/J7GDGKecxtJh4+rZdF0/VBeo++dRaoMOWauVEUv0X5evj3iBPGbjl9CvDu8bM X6sSe/MyU9YPFjJF21DiVBjSHxuJh/R5N0BIzVKDE9EfRgy3uevJjpCwYYAUnRMo CE1H+uPNGTvIIFLXAgxoYxk9lVFDndIEjZAfDnskNyvlwly5XFaXx6PHfrT7DEoZ 9NZiILTusAEkVTR9az/exNxgie/TXPHzjzSmNlLEREjsEYHGs9YRxS71Q2eKZsFM 1fAJxSG3E1+vNvWpwf4vG/79boktEVF3 -----END CERTIFICATE-----Generated at Fri Sep 19 04:43:56 2025 by rpki-client