$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: +kLPuza0k4vOGFmIOmT5Apt/F1AUZwD25PgsTDnaJnM= Subject key identifier: 6B:59:AE:8D:E0:1F:07:3C:F9:DA:DB:2F:94:FA:C6:D7:47:58:22:3B Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0119 Signing time: Sat 09 Aug 2025 05:16:26 +0000 Manifest this update: Sat 09 Aug 2025 05:16:25 +0000 Manifest next update: Sat 16 Aug 2025 05:16:25 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: MdE3aD475jm2wrFiT6zJR7k9qbWJ0kKwXCFMEKQbXqo=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Aug 9 05:16:25 2025 GMT Not After : Aug 16 05:16:25 2025 GMT Subject: CN=6896d9aa-b1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5a:17:34:7d:b3:a5:20:da:34:9f:09:53:84: 99:5e:5c:76:5c:41:99:70:14:3a:db:fc:2b:0f:9c: ff:36:ca:41:d8:19:f8:ae:9a:43:e4:e7:3d:02:d5: 76:e3:dd:1e:89:27:6b:2f:ab:42:d5:a4:b6:67:53: 83:7f:f2:0f:a5:9b:bf:49:33:8e:ac:7b:93:0a:f4: 2f:a6:b4:e8:41:38:9a:60:30:57:35:08:54:2e:b0: 25:0b:69:4e:f3:bd:9a:50:08:3f:30:f4:bf:b1:95: 50:e4:ae:05:7a:0c:d6:67:c8:21:2c:2b:cd:2d:df: 2c:13:5a:da:22:be:5f:8c:01:7b:10:39:16:81:f0: 56:70:dd:26:ac:25:b1:2a:84:94:15:73:60:41:5b: 41:33:16:08:04:22:a8:95:cb:cf:9a:f0:0a:81:f2: 18:cb:a4:8b:2a:6d:b1:b8:42:90:c8:f2:ff:66:1f: 98:59:54:ad:5f:11:4d:bd:89:7d:6e:6d:4d:fb:30: ae:bf:35:df:bd:c3:98:05:dc:73:d7:bc:bf:a2:2f: 88:65:3a:f7:c0:35:0b:19:dd:e4:96:35:a6:97:8b: a3:30:14:a4:fc:a5:d9:f2:f8:67:4f:61:29:e7:1f: 66:cf:8a:be:b9:a6:7f:a5:f4:62:57:23:86:22:e7: 51:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:59:AE:8D:E0:1F:07:3C:F9:DA:DB:2F:94:FA:C6:D7:47:58:22:3B X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a4:9f:7e:ef:5d:cb:d3:da:65:8c:fd:ef:6d:18:84:02:cf: c8:b1:8c:2f:f9:7f:da:55:ea:9d:c9:7d:62:e6:f2:8d:f9:1b: 0b:ba:c0:b2:1c:ce:6c:a6:34:41:52:72:13:0a:42:dd:ef:11: 5d:48:ab:1c:af:e1:9c:f7:7c:2d:d8:72:a9:3a:26:aa:1c:d4: 45:8d:ca:76:98:e6:eb:a6:7e:80:ec:64:e7:d9:56:a2:b9:fb: 7d:41:c3:79:08:f8:be:18:67:58:ff:ca:16:9b:fb:43:cf:7e: 14:40:40:a4:a1:bd:de:b0:c9:82:18:5e:d9:a4:d7:8a:72:67: 45:74:05:98:84:e9:8a:d1:e1:3d:6a:fa:61:64:f5:f9:c0:08: 99:28:25:7f:c9:01:ab:36:b8:7d:13:12:68:fb:6a:fd:6d:fc: e6:7a:65:51:4a:ea:1e:59:a5:cf:3c:0e:e0:a7:d2:bb:9a:cb: cc:7c:0a:94:b9:f3:b4:64:aa:fe:5c:ea:23:95:fe:7a:18:f4: be:25:a9:ee:4b:e8:13:ab:ac:de:97:af:68:f0:8e:00:7d:9d: ee:24:e9:c7:e7:a5:41:d3:cc:25:f9:58:f2:cc:d4:84:e9:7e: 10:33:92:be:d0:c4:0a:43:0c:66:14:a7:fe:0d:18:6d:bf:87: eb:87:dd:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUwODA5MDUxNjI1WhcNMjUwODE2MDUxNjI1WjAYMRYwFAYD VQQDEw02ODk2ZDlhYS1iMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FoXNH2zpSDaNJ8JU4SZXlx2XEGZcBQ62/wrD5z/NspB2Bn4rppD5Oc9AtV2 490eiSdrL6tC1aS2Z1ODf/IPpZu/STOOrHuTCvQvprToQTiaYDBXNQhULrAlC2lO 872aUAg/MPS/sZVQ5K4FegzWZ8ghLCvNLd8sE1raIr5fjAF7EDkWgfBWcN0mrCWx KoSUFXNgQVtBMxYIBCKolcvPmvAKgfIYy6SLKm2xuEKQyPL/Zh+YWVStXxFNvYl9 bm1N+zCuvzXfvcOYBdxz17y/oi+IZTr3wDULGd3kljWml4ujMBSk/KXZ8vhnT2Ep 5x9mz4q+uaZ/pfRiVyOGIudRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtZro3g Hwc8+drbL5T6xtdHWCI7MB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQpJ9+713L09pljP3vbRiEAs/IsYwv+X/aVeqdyX1i5vKN+RsLusCy HM5spjRBUnITCkLd7xFdSKscr+Gc93wt2HKpOiaqHNRFjcp2mObrpn6A7GTn2Vai uft9QcN5CPi+GGdY/8oWm/tDz34UQECkob3esMmCGF7ZpNeKcmdFdAWYhOmK0eE9 avphZPX5wAiZKCV/yQGrNrh9ExJo+2r9bfzmemVRSuoeWaXPPA7gp9K7msvMfAqU ufO0ZKr+XOojlf56GPS+JanuS+gTq6zel69o8I4AfZ3uJOnH56VB08wl+VjyzNSE 6X4QM5K+0MQKQwxmFKf+DRhtv4frh92t -----END CERTIFICATE-----Generated at Sun Aug 10 10:35:43 2025 by rpki-client