$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: acxSK4So6qyMG3dTVoYmsT+v4yTetgY6ljpvJngPjdA= Subject key identifier: 30:A3:38:D5:3D:33:04:4C:E8:1E:21:93:A8:62:15:0B:24:4A:90:D5 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B33 Signing time: Fri 08 Aug 2025 19:26:38 +0000 Manifest this update: Fri 08 Aug 2025 19:26:37 +0000 Manifest next update: Fri 15 Aug 2025 19:26:37 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: xH83JguhfpIzKljZDgx8uiALUdYID4BwERPTkk1D7B0=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: oB4ONhIoOVHFLHE+zKePSEzncY8zQatFoaGKjLj9U3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Aug 8 19:26:37 2025 GMT Not After : Aug 15 19:26:37 2025 GMT Subject: CN=68964f6e-549e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:20:43:92:e1:ee:d9:31:49:79:47:d2:75:f8: eb:a5:2a:ff:2d:15:7a:07:90:07:73:b7:c1:aa:37: b1:0a:3a:9a:26:ab:d6:fa:d4:ba:c7:6a:d2:66:ff: 2a:e3:d1:07:d9:b6:96:79:95:21:c2:f0:80:40:95: 7d:65:04:fc:2a:86:34:2d:d2:4b:ef:49:b8:39:84: a1:d0:23:b7:e8:79:00:ca:75:d7:62:70:2e:69:dc: c8:d7:09:23:8e:d8:f9:00:9e:ca:b0:09:a2:7a:2d: 84:25:07:6b:78:2f:b5:65:32:2a:64:e4:cc:9e:53: 67:bd:7f:66:51:67:e0:05:ea:e2:96:91:9d:9f:ed: 93:90:1e:94:e1:61:88:e8:58:36:09:3a:72:d1:e4: 1f:e6:ba:5d:28:6b:3c:06:fe:af:4a:c3:21:ab:5a: d7:2f:34:df:d9:46:6f:e8:e3:4f:76:2a:4b:6e:11: 31:63:ab:76:1a:88:dd:00:75:4e:e4:33:a3:14:14: 23:ef:2c:c8:21:74:da:4a:12:34:38:9b:fb:27:6c: 7b:91:9d:e2:46:84:04:92:79:ff:a2:d6:03:a0:e4: 89:a1:41:82:57:c2:1f:a6:2f:50:72:6a:8d:70:58: ef:4b:af:fd:39:6d:07:f8:36:1e:9e:a9:20:bd:47: f5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A3:38:D5:3D:33:04:4C:E8:1E:21:93:A8:62:15:0B:24:4A:90:D5 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:38:3e:e2:5c:46:b4:c4:26:27:4e:dc:1c:cb:0b:1c:fd:2a: b7:d4:9e:2d:44:8f:1d:c0:2b:64:13:22:f4:c4:e3:a3:c8:fe: c7:a3:94:25:c7:20:30:b9:71:a2:06:ff:fd:67:f7:25:34:f1: 65:ad:45:1d:61:28:64:88:cf:56:b8:8c:d6:81:8c:ac:94:9b: 28:cc:72:ff:fe:8f:54:cb:9c:67:f7:51:d8:43:31:1b:e6:7b: b4:66:a4:54:84:c2:8d:0d:a3:bc:90:33:d7:1f:23:87:cb:0c: 8d:21:9c:53:94:77:8b:45:2a:57:af:2d:d8:f7:62:61:73:0c: b3:b9:c5:91:c6:23:dc:b7:25:e8:d2:74:89:2e:0f:43:a2:c4: bc:fe:69:bc:4b:9f:dd:bd:96:75:4b:5c:22:e2:fd:77:c4:69: d0:05:aa:54:8c:a3:b3:50:dd:c7:ff:97:aa:68:e6:1a:b0:ca: 2a:bf:87:b1:46:95:50:3a:09:13:85:13:50:56:46:f6:56:c1: 62:d5:16:5f:71:2d:93:f2:59:09:89:38:41:f8:e1:76:1c:3e: 1e:65:d1:a9:2a:83:12:95:66:8b:dc:ed:90:65:c8:2f:c6:46: fc:ad:4e:6c:18:82:c2:e3:8b:a9:68:79:08:cf:c6:9b:01:94: 5e:15:72:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUwODA4MTkyNjM3WhcNMjUwODE1MTkyNjM3WjAYMRYwFAYD VQQDEw02ODk2NGY2ZS01NDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9SBDkuHu2TFJeUfSdfjrpSr/LRV6B5AHc7fBqjexCjqaJqvW+tS6x2rSZv8q 49EH2baWeZUhwvCAQJV9ZQT8KoY0LdJL70m4OYSh0CO36HkAynXXYnAuadzI1wkj jtj5AJ7KsAmiei2EJQdreC+1ZTIqZOTMnlNnvX9mUWfgBerilpGdn+2TkB6U4WGI 6Fg2CTpy0eQf5rpdKGs8Bv6vSsMhq1rXLzTf2UZv6ONPdipLbhExY6t2GojdAHVO 5DOjFBQj7yzIIXTaShI0OJv7J2x7kZ3iRoQEknn/otYDoOSJoUGCV8Ifpi9QcmqN cFjvS6/9OW0H+DYenqkgvUf1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCjONU9 MwRM6B4hk6hiFQskSpDVMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVOD7iXEa0xCYnTtwcywsc/Sq31J4tRI8dwCtkEyL0xOOjyP7Ho5Ql xyAwuXGiBv/9Z/clNPFlrUUdYShkiM9WuIzWgYyslJsozHL//o9Uy5xn91HYQzEb 5nu0ZqRUhMKNDaO8kDPXHyOHywyNIZxTlHeLRSpXry3Y92JhcwyzucWRxiPctyXo 0nSJLg9DosS8/mm8S5/dvZZ1S1wi4v13xGnQBapUjKOzUN3H/5eqaOYasMoqv4ex RpVQOgkThRNQVkb2VsFi1RZfcS2T8lkJiThB+OF2HD4eZdGpKoMSlWaL3O2QZcgv xkb8rU5sGILC44upaHkIz8abAZReFXJV -----END CERTIFICATE-----Generated at Sun Aug 10 20:03:59 2025 by rpki-client