$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: KJgjmdzQhxVRW/nX6XIBb7zapyrjZZStg1tct6gMx2k= Subject key identifier: 78:B3:D2:9B:69:EF:50:BD:E9:75:41:DD:2D:5D:54:93:57:AF:2B:8C Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 1C Signing time: Mon 11 Aug 2025 08:12:58 +0000 Manifest this update: Mon 11 Aug 2025 08:12:58 +0000 Manifest next update: Mon 18 Aug 2025 08:12:58 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: Z9cvYwdkbhdZo7ZkM/BdWYCU39m1GWF6jAZLNGzuUh0=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Aug 11 08:12:58 2025 GMT Not After : Aug 18 08:12:58 2025 GMT Subject: CN=6899a60a-7486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:19:bc:c2:7a:7c:83:9c:c6:12:f1:8b:5b: df:6b:37:8b:8a:e6:3c:44:86:f4:53:d9:16:bd:5c: e5:64:09:ff:75:13:8b:c1:65:a3:3b:ef:cf:76:0d: d0:0b:b6:e2:d1:f8:02:a0:b5:82:27:b3:1e:c6:7c: 09:e5:23:fc:74:3b:7d:d5:a9:ec:08:db:6e:37:1c: 12:2a:3b:76:a0:b3:b5:ac:3b:4e:24:07:19:78:7a: 43:56:b9:ef:3d:34:e1:db:11:55:c8:06:21:bc:54: 79:98:b9:9f:0c:be:d4:7d:c7:23:36:8b:93:df:c7: d1:d3:39:f0:0c:8a:7e:73:2b:da:e1:0d:45:8c:72: 85:96:84:ef:82:67:61:e4:2a:4e:d9:73:d2:0c:61: 71:5b:aa:15:ce:47:8c:81:89:7f:a5:e8:43:3c:ff: 78:d2:47:27:39:fa:ca:40:4a:9e:72:e9:32:24:46: 37:4c:3b:78:7c:92:96:e1:d5:46:aa:be:47:c9:b7: 1d:07:b2:50:f6:1a:f3:46:8e:97:82:8a:b2:17:de: 10:0c:13:ae:04:18:9c:95:cf:56:3c:75:bf:51:52: cb:59:c1:7c:a5:86:ed:58:4c:e4:0b:59:11:5b:df: 98:f0:65:75:67:c3:8b:f6:bc:d6:0f:dd:c8:eb:11: 23:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B3:D2:9B:69:EF:50:BD:E9:75:41:DD:2D:5D:54:93:57:AF:2B:8C X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:bc:d9:40:89:7c:aa:35:69:0b:87:f5:c0:3e:02:8b:54:af: f1:ad:e9:4a:f2:99:c3:71:17:a9:21:58:84:86:ec:47:1a:8a: 44:00:34:28:89:fd:b3:58:ed:5b:5f:94:65:bb:c8:33:32:4e: 15:fc:82:92:b7:4f:ed:22:83:19:88:4c:32:d2:1c:0a:00:0b: 49:4e:6e:5a:21:27:ed:fa:e5:79:c2:24:b9:1d:37:b6:18:0f: 41:79:ea:6b:7f:0a:33:af:4e:a9:aa:40:d5:ca:4a:14:0e:37: 35:a2:54:2e:13:af:ea:22:24:64:53:81:df:16:89:c8:cf:03: a7:da:ae:7e:e1:e6:44:7c:44:9e:01:96:ad:d7:31:3a:c9:3f: 94:9b:97:0e:d1:a9:b1:f8:63:d2:c0:64:24:de:6d:43:94:8a: bb:da:54:3e:86:7e:13:e6:ae:8d:e1:e3:c5:53:2c:7e:ab:e4: 68:b1:10:a7:fb:3f:9b:fd:ce:d0:ec:70:ca:d3:e8:fc:1b:dc: e4:27:4d:cb:f3:f8:0c:38:7d:64:09:b7:19:72:79:b9:b5:d9: f9:74:5c:56:83:e4:41:d7:1d:c0:f2:19:3e:17:6b:f9:d0:c2: 56:cf:c7:84:8c:06:1f:39:d5:ab:de:95:47:42:64:56:f1:03: 49:6b:46:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTA4MTEwODEyNThaFw0yNTA4MTgwODEyNThaMBgxFjAUBgNV BAMTDTY4OTlhNjBhLTc0ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO6xm8wnp8g5zGEvGLW99rN4uK5jxEhvRT2Ra9XOVkCf91E4vBZaM77892DdAL tuLR+AKgtYInsx7GfAnlI/x0O33VqewI2243HBIqO3ags7WsO04kBxl4ekNWue89 NOHbEVXIBiG8VHmYuZ8MvtR9xyM2i5Pfx9HTOfAMin5zK9rhDUWMcoWWhO+CZ2Hk Kk7Zc9IMYXFbqhXOR4yBiX+l6EM8/3jSRyc5+spASp5y6TIkRjdMO3h8kpbh1Uaq vkfJtx0HslD2GvNGjpeCirIX3hAME64EGJyVz1Y8db9RUstZwXylhu1YTOQLWRFb 35jwZXVnw4v2vNYP3cjrESMVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeLPSm2nv UL3pdUHdLV1Uk1evK4wwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACe82UCJfKo1aQuH9cA+AotUr/Gt6UrymcNxF6khWISG7EcaikQANCiJ /bNY7VtflGW7yDMyThX8gpK3T+0igxmITDLSHAoAC0lOblohJ+365XnCJLkdN7YY D0F56mt/CjOvTqmqQNXKShQONzWiVC4Tr+oiJGRTgd8WicjPA6farn7h5kR8RJ4B lq3XMTrJP5Sblw7RqbH4Y9LAZCTebUOUirvaVD6GfhPmro3h48VTLH6r5GixEKf7 P5v9ztDscMrT6Pwb3OQnTcvz+Aw4fWQJtxlyebm12fl0XFaD5EHXHcDyGT4Xa/nQ wlbPx4SMBh851avelUdCZFbxA0lrRkQ= -----END CERTIFICATE-----Generated at Mon Aug 11 12:58:19 2025 by rpki-client