$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: xBjgkxo0WusOPp4SUy1JEhZpV2sJSucNxUS6H3AzubA= Subject key identifier: 21:41:97:DD:4E:B5:57:C8:BA:28:CE:7A:F0:C4:D5:BF:5E:28:A2:BC Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04B2 Signing time: Tue 05 Aug 2025 00:21:52 +0000 Manifest this update: Tue 05 Aug 2025 00:21:51 +0000 Manifest next update: Tue 12 Aug 2025 00:21:51 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: jqutDtgfYCg1QSRGATClgXgpKyc6otCcWURStTsNpng=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: kkkJWZ9fDn1htzEtE1zpX7lAAG0cOZUfH1foPNvS114=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Aug 5 00:21:51 2025 GMT Not After : Aug 12 00:21:51 2025 GMT Subject: CN=68914ea0-c519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e8:02:c5:bf:9b:5d:0a:3a:7f:ff:c3:fc:1a: 80:01:1b:53:ab:5c:12:cb:3d:0a:4a:2e:fd:b7:3d: 38:de:74:f6:fc:a7:0f:05:a1:fc:7b:79:7d:9d:04: d2:e8:b7:c9:c6:75:81:86:43:96:35:f3:a2:3b:34: ae:58:5a:0f:21:27:04:68:3a:df:56:fb:41:cb:a4: 8c:68:f4:d0:52:d7:cd:85:84:55:8c:cf:38:98:cb: 5e:fc:7d:b9:14:e0:5c:47:09:c5:55:45:42:6c:bd: 31:9b:c0:27:0f:9f:47:88:7a:30:a8:f1:bd:83:b8: 33:ac:7e:bd:d2:a4:fd:c8:88:6b:c9:46:6f:4a:04: 84:28:a5:fa:7f:52:95:1e:b5:b3:9e:fc:9c:31:1d: 6d:18:3f:36:2b:ab:94:72:02:52:5f:77:3f:c0:19: bc:7b:09:8c:1c:2c:ad:50:a6:10:81:0a:54:a0:10: 82:dd:87:8c:7c:72:a5:34:d6:be:47:15:47:74:22: 35:d6:a3:2b:d2:24:67:cb:da:1d:39:24:fa:2a:cc: c5:d5:51:53:9a:9f:23:10:56:a1:be:e1:ee:71:da: 19:d2:46:f8:d4:8a:33:7f:99:fb:97:df:d5:92:ee: c1:c3:50:85:c7:e8:6d:42:59:ce:4a:90:f7:32:14: ea:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:41:97:DD:4E:B5:57:C8:BA:28:CE:7A:F0:C4:D5:BF:5E:28:A2:BC X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:b9:6c:fc:5b:6b:67:7c:ff:95:4c:8d:b1:66:da:0c:52:69: e9:4c:41:3a:57:5f:3c:a4:fd:3a:68:e1:88:b0:e1:71:db:a2: fd:fd:37:87:52:2e:80:ac:ed:e1:63:cc:0d:2f:c3:d3:0f:fe: 6d:d2:aa:be:1c:6a:74:6e:5a:d9:87:7c:98:c3:26:89:09:0b: 44:f5:82:f9:f1:e3:cf:a0:29:5c:de:2b:2d:b3:16:09:0b:82: c6:36:f7:ac:cf:dd:94:8d:90:96:4a:61:0f:ef:86:20:48:9d: 3a:e5:cd:16:ce:78:b6:91:3d:72:21:fc:ea:87:54:89:1c:7b: 58:f5:a3:53:af:fe:f4:3e:41:3c:ef:28:13:4a:2f:55:86:de: 2d:41:82:b2:3e:38:21:27:36:2e:6e:e9:b0:ad:1f:18:65:d6: f2:76:0a:8c:5b:1c:19:d8:d8:1a:31:2c:7a:48:54:1f:28:3e: b9:28:29:ed:f6:81:99:8a:18:0e:dc:e4:89:60:32:a4:6f:55: 1b:70:0a:cf:6d:4e:65:51:86:9d:6b:88:f9:73:ce:2e:18:d7: 6b:cf:7e:8d:3f:14:ec:ab:4b:8c:82:36:8b:24:e9:96:66:b5: 98:87:23:45:e0:46:40:c6:45:9d:2b:57:58:58:1e:b4:b1:53: cd:7f:02:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUwODA1MDAyMTUxWhcNMjUwODEyMDAyMTUxWjAYMRYwFAYD VQQDEw02ODkxNGVhMC1jNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2egCxb+bXQo6f//D/BqAARtTq1wSyz0KSi79tz043nT2/KcPBaH8e3l9nQTS 6LfJxnWBhkOWNfOiOzSuWFoPIScEaDrfVvtBy6SMaPTQUtfNhYRVjM84mMte/H25 FOBcRwnFVUVCbL0xm8AnD59HiHowqPG9g7gzrH690qT9yIhryUZvSgSEKKX6f1KV HrWznvycMR1tGD82K6uUcgJSX3c/wBm8ewmMHCytUKYQgQpUoBCC3YeMfHKlNNa+ RxVHdCI11qMr0iRny9odOST6KszF1VFTmp8jEFahvuHucdoZ0kb41Iozf5n7l9/V ku7Bw1CFx+htQlnOSpD3MhTqbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFBl91O tVfIuijOevDE1b9eKKK8MB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKuWz8W2tnfP+VTI2xZtoMUmnpTEE6V188pP06aOGIsOFx26L9/TeH Ui6ArO3hY8wNL8PTD/5t0qq+HGp0blrZh3yYwyaJCQtE9YL58ePPoClc3istsxYJ C4LGNvesz92UjZCWSmEP74YgSJ065c0Wzni2kT1yIfzqh1SJHHtY9aNTr/70PkE8 7ygTSi9Vht4tQYKyPjghJzYubumwrR8YZdbydgqMWxwZ2NgaMSx6SFQfKD65KCnt 9oGZihgO3OSJYDKkb1UbcArPbU5lUYada4j5c84uGNdrz36NPxTsq0uMgjaLJOmW ZrWYhyNF4EZAxkWdK1dYWB60sVPNfwLT -----END CERTIFICATE-----Generated at Wed Aug 6 11:14:26 2025 by rpki-client