$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: vmV5ObXx9RmX6va/JO76BlDG70kcqAMS4IMayCm7vu8= Subject key identifier: 0A:0D:0E:E3:DD:58:C9:11:54:BE:08:53:15:40:0C:75:AB:93:6E:D1 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: F9 Signing time: Sat 09 Aug 2025 05:35:58 +0000 Manifest this update: Sat 09 Aug 2025 05:35:58 +0000 Manifest next update: Sat 16 Aug 2025 05:35:58 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: JuIlb5cJVUEsguqOAtdV/eesKFg+V0nUFVFMMX8qOHk=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Aug 9 05:35:58 2025 GMT Not After : Aug 16 05:35:58 2025 GMT Subject: CN=6896de3e-5da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a4:8b:eb:03:81:2b:6a:27:7b:48:60:04:6a: e3:7c:18:bf:be:31:a8:14:28:f7:f1:29:aa:b7:7c: b8:2d:71:94:44:f4:dc:a2:f7:5e:24:83:f8:a2:d2: d3:da:ae:5c:c4:57:78:49:04:1b:13:8f:65:e6:14: 2f:be:53:18:19:0c:b6:7b:36:4d:a5:cf:03:05:03: 25:d4:b0:35:6f:b6:8a:b8:f3:9a:3a:e3:64:7f:5e: 00:aa:fe:eb:ab:ea:0f:27:3b:94:fd:c7:31:8e:10: 98:90:04:98:55:fe:e1:f5:a6:43:29:09:ea:ec:dd: e9:4b:ff:fe:0b:89:f9:24:46:5e:e5:72:36:1b:85: 70:6e:b3:26:6f:7b:45:fe:df:1a:7f:3d:f2:5c:14: 63:b9:b4:f4:0f:7a:ef:48:7c:03:1b:86:aa:cf:66: 6c:c9:ad:14:b1:3c:9b:11:f4:78:76:f1:7e:f9:f4: 88:7c:cf:a9:04:81:49:58:3c:c3:b9:3d:aa:57:00: d8:17:1a:5d:83:89:ae:8d:9e:ab:0e:9a:ec:5a:f1: 75:32:14:46:f6:f2:b4:f5:88:a6:b4:c8:08:cd:08: 1f:ad:d4:d7:3e:9a:dd:3e:ee:6f:9e:f7:d3:53:9b: 50:4a:d9:30:e0:0c:76:13:c4:7c:0a:3d:a5:1b:a1: f3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0D:0E:E3:DD:58:C9:11:54:BE:08:53:15:40:0C:75:AB:93:6E:D1 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:49:8e:0e:c5:04:40:0c:1a:68:80:2a:d2:89:10:00:10:07: 7a:6d:e8:2a:7f:db:b1:9b:8b:11:d1:c8:3d:ab:f8:f5:6e:b2: e2:ea:dc:ff:bb:33:38:05:da:25:48:72:07:5b:74:38:31:9d: 7d:20:cd:55:f0:d2:50:b4:ad:a4:65:ca:b6:cd:bb:73:26:79: 48:11:3b:30:12:99:74:00:e6:da:b7:79:77:d9:40:cb:f4:c4: 17:20:ab:68:e1:ec:31:a4:bc:c3:03:21:a0:c7:35:c0:36:5d: 37:7b:45:7f:e1:5c:36:11:c5:03:4e:67:ff:b2:6b:dc:a7:51: 40:7c:78:4d:f2:38:e7:26:5e:9a:66:28:33:1b:67:8b:e8:d8: c2:a6:45:1d:8b:b4:4d:ff:a2:0c:e3:da:82:f6:02:5c:89:7a: fa:7f:b6:f9:1f:a0:49:67:db:01:3f:f1:ea:ab:8b:c7:13:dd: d6:8a:5d:ff:6f:44:3a:4e:92:4f:cf:5a:c4:c1:14:51:fc:3a: f9:bf:69:64:1c:9a:50:53:97:af:0c:e6:bf:b2:c4:26:5b:70: fd:69:81:c1:45:42:e5:41:ab:eb:01:5f:49:79:b4:39:2a:98: 91:2d:36:8e:25:2a:43:16:27:43:89:64:3e:1f:2d:30:30:d5: e6:1c:3e:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUwODA5MDUzNTU4WhcNMjUwODE2MDUzNTU4WjAYMRYwFAYD VQQDEw02ODk2ZGUzZS01ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16SL6wOBK2one0hgBGrjfBi/vjGoFCj38Smqt3y4LXGURPTcovdeJIP4otLT 2q5cxFd4SQQbE49l5hQvvlMYGQy2ezZNpc8DBQMl1LA1b7aKuPOaOuNkf14Aqv7r q+oPJzuU/ccxjhCYkASYVf7h9aZDKQnq7N3pS//+C4n5JEZe5XI2G4VwbrMmb3tF /t8afz3yXBRjubT0D3rvSHwDG4aqz2Zsya0UsTybEfR4dvF++fSIfM+pBIFJWDzD uT2qVwDYFxpdg4mujZ6rDprsWvF1MhRG9vK09YimtMgIzQgfrdTXPprdPu5vnvfT U5tQStkw4Ax2E8R8Cj2lG6HzKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoNDuPd WMkRVL4IUxVADHWrk27RMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABSY4OxQRADBpogCrSiRAAEAd6begqf9uxm4sR0cg9q/j1brLi6tz/ uzM4BdolSHIHW3Q4MZ19IM1V8NJQtK2kZcq2zbtzJnlIETswEpl0AObat3l32UDL 9MQXIKto4ewxpLzDAyGgxzXANl03e0V/4Vw2EcUDTmf/smvcp1FAfHhN8jjnJl6a ZigzG2eL6NjCpkUdi7RN/6IM49qC9gJciXr6f7b5H6BJZ9sBP/Hqq4vHE93Wil3/ b0Q6TpJPz1rEwRRR/Dr5v2lkHJpQU5evDOa/ssQmW3D9aYHBRULlQavrAV9JebQ5 KpiRLTaOJSpDFidDiWQ+Hy0wMNXmHD6g -----END CERTIFICATE-----Generated at Sat Aug 9 10:46:34 2025 by rpki-client