$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: io/6AXhk4fev18tDxGI/j4e9ReQuuyUkufudSF+k7kQ= Subject key identifier: BB:81:29:8D:BF:6A:60:82:70:85:13:DE:69:97:6C:58:CB:E7:B7:5B Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 0340 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 033C Signing time: Sat 23 Aug 2025 01:19:47 +0000 Manifest this update: Sat 23 Aug 2025 01:19:46 +0000 Manifest next update: Sat 30 Aug 2025 01:19:46 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: Q3bzXxfrFneUNEk4E+gtiw2P5VaA2NZwVYW2SyYR4rQ=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 832 (0x340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Aug 23 01:19:46 2025 GMT Not After : Aug 30 01:19:46 2025 GMT Subject: CN=68a91732-83a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:82:2c:74:64:e0:b2:d1:c0:d8:d9:58:81: ff:9b:3b:65:eb:6c:d1:c3:ef:8b:0c:42:79:02:47: 35:b6:53:89:05:11:9e:92:4f:7d:4d:9a:7d:7a:18: c0:19:e6:08:88:7c:d4:c7:32:60:3a:36:e5:04:d9: a0:d1:56:11:a8:24:71:48:30:b4:9f:be:a9:df:c9: fe:ea:71:6f:64:27:bc:6e:02:bc:06:37:1f:25:04: b7:f3:20:59:d1:0a:d6:c0:84:47:cd:b7:eb:9c:7b: 98:96:fd:88:03:aa:67:41:fc:a0:bf:c7:c7:b3:8b: 0f:b6:36:04:f9:03:e1:77:78:25:24:5f:49:8f:90: 4c:01:dc:4e:f5:70:0b:0f:68:d8:fa:f6:c6:72:26: 91:f1:21:e0:e0:36:56:36:57:fa:76:63:ad:95:a9: cf:bb:93:8e:1d:27:86:ec:08:f4:cb:3a:42:da:f2: 12:e7:e4:fa:1c:2e:97:bf:6f:2a:87:94:d3:0d:56: df:6a:95:46:80:0e:74:1a:77:89:43:ef:a4:e9:bf: ec:17:58:73:1c:f9:fe:ac:c4:a3:22:13:8a:80:05: f7:37:c2:5b:6f:20:14:70:f6:ce:8e:bd:33:f5:2b: 9c:43:15:ae:cb:f7:8b:ec:bc:cc:ea:06:67:73:1d: d3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:81:29:8D:BF:6A:60:82:70:85:13:DE:69:97:6C:58:CB:E7:B7:5B X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:8d:c5:de:e1:09:ac:36:87:06:0d:1b:3c:81:91:ef:f4:9c: 27:95:21:b0:f4:7b:4d:e1:b6:5d:48:ec:e3:ce:8f:ff:0c:62: 14:c9:f1:78:92:fe:cb:cd:7b:eb:5c:fd:e0:a0:c3:80:70:d3: ad:4c:88:b8:6e:4c:41:5d:e3:5a:6a:59:f3:1d:d0:53:89:20: f9:3c:05:c8:57:e0:0b:df:2f:7c:5a:25:cb:99:5b:de:9f:5c: 25:89:f4:b5:89:4e:57:83:fd:1a:c3:f1:2f:e1:42:10:95:70: d0:67:13:69:7e:ff:95:08:75:dd:b8:eb:d0:37:e4:cb:e1:84: 1f:fa:e4:39:8d:1a:34:49:87:8c:37:17:73:bb:f6:bf:cc:d6: a8:b2:00:1a:c5:f9:61:9e:0e:f4:b7:b8:0e:5d:ab:f5:6d:12: 88:6e:7e:29:3e:ff:81:cd:ec:26:35:c6:39:7d:04:ad:6a:81: 41:da:da:ac:90:b3:5d:ab:58:81:7d:89:b4:2a:c0:1d:a2:e3: ad:97:94:35:b4:9c:81:22:18:5c:49:5a:f4:ff:9a:e2:b3:91: 8b:13:83:86:70:7a:91:cd:c3:7b:c6:d4:08:44:f6:15:2e:b6: a6:7e:18:b1:bf:4e:ba:4f:d1:ab:78:1f:10:21:3c:36:34:c7: 17:78:13:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUwODIzMDExOTQ2WhcNMjUwODMwMDExOTQ2WjAYMRYwFAYD VQQDEw02OGE5MTczMi04M2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpeCLHRk4LLRwNjZWIH/mztl62zRw++LDEJ5Akc1tlOJBRGekk99TZp9ehjA GeYIiHzUxzJgOjblBNmg0VYRqCRxSDC0n76p38n+6nFvZCe8bgK8BjcfJQS38yBZ 0QrWwIRHzbfrnHuYlv2IA6pnQfygv8fHs4sPtjYE+QPhd3glJF9Jj5BMAdxO9XAL D2jY+vbGciaR8SHg4DZWNlf6dmOtlanPu5OOHSeG7Aj0yzpC2vIS5+T6HC6Xv28q h5TTDVbfapVGgA50GneJQ++k6b/sF1hzHPn+rMSjIhOKgAX3N8JbbyAUcPbOjr0z 9SucQxWuy/eL7LzM6gZncx3T+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuBKY2/ amCCcIUT3mmXbFjL57dbMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBejcXe4QmsNocGDRs8gZHv9JwnlSGw9HtN4bZdSOzjzo//DGIUyfF4 kv7LzXvrXP3goMOAcNOtTIi4bkxBXeNaalnzHdBTiSD5PAXIV+AL3y98WiXLmVve n1wlifS1iU5Xg/0aw/Ev4UIQlXDQZxNpfv+VCHXduOvQN+TL4YQf+uQ5jRo0SYeM Nxdzu/a/zNaosgAaxflhng70t7gOXav1bRKIbn4pPv+BzewmNcY5fQStaoFB2tqs kLNdq1iBfYm0KsAdouOtl5Q1tJyBIhhcSVr0/5ris5GLE4OGcHqRzcN7xtQIRPYV Lramfhixv066T9GreB8QITw2NMcXeBP0 -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:21 2025 by rpki-client