$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft (raw, json) Hash identifier: hzaHbWpsk6JOWG1B6HSXBTzDb75EFbIl6VG57wP9PL4= Subject key identifier: E0:AA:79:ED:1F:CB:EC:F4:78:A0:3F:D9:9F:5D:E4:E5:7D:A6:0D:C8 Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft Manifest number: 73 Signing time: Sat 23 Aug 2025 07:04:31 +0000 Manifest this update: Sat 23 Aug 2025 07:04:31 +0000 Manifest next update: Sat 30 Aug 2025 07:04:31 +0000 Files and hashes: 1: YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl (hash: 1goywqHVvFodDGkBJyFe5Qc3AsOxoqkTbS0XNGfUR5c=) 2: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (hash: RZ0QTKiTTNx8zLcCMyWL6kS10XE+JurXOmLszG1L2Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: Aug 23 07:04:31 2025 GMT Not After : Aug 30 07:04:31 2025 GMT Subject: CN=68a967ff-7e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a4:5c:cc:a3:f2:b3:98:85:31:6c:c4:bd:c8: ed:58:43:0c:92:9a:46:5e:95:99:41:59:96:85:a2: 95:c7:5d:a9:5d:69:7f:9a:c0:6a:c2:ea:2d:10:30: 71:b1:eb:27:13:c7:52:b3:ed:4c:a7:a1:70:26:e2: f7:e7:18:4d:69:26:a9:55:40:cf:65:22:67:09:a2: 51:4f:a8:44:e0:3f:a2:22:aa:bd:5f:ec:db:9b:30: 09:ce:c9:61:f7:37:28:70:80:77:62:76:1d:9c:1c: 17:8d:89:db:73:9e:ee:dc:bc:9b:e9:1b:3d:a8:84: 23:89:a5:ac:11:e5:af:d6:1a:ea:63:37:b7:05:56: b7:a4:6e:4b:bf:72:2d:64:85:18:b8:5e:d4:ca:0a: 30:01:a5:cd:8f:90:ec:be:71:48:11:fa:66:8d:a2: 05:44:69:85:32:f4:be:a6:ff:b2:43:57:9a:bf:d7: 21:bd:63:e3:8e:39:cc:21:63:50:93:df:aa:43:cc: b4:16:d7:0c:6c:c4:ae:3a:c5:21:69:fa:e7:4c:73: 6e:06:29:cb:5e:59:33:9e:c6:7c:45:25:ac:f5:da: 4c:77:e2:bc:f0:78:b6:bb:ee:36:16:e8:11:4b:62: 7d:12:1a:47:83:6d:98:05:2a:72:98:53:15:35:50: 02:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AA:79:ED:1F:CB:EC:F4:78:A0:3F:D9:9F:5D:E4:E5:7D:A6:0D:C8 X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ec:19:36:11:4c:c8:c4:33:48:67:d4:66:12:5b:ba:08:f5: e9:2c:3f:89:60:3b:ea:4b:32:70:3a:fc:ce:a9:56:85:1a:c0: 03:fe:fe:5b:6f:30:36:75:3f:cb:5b:d1:43:1e:44:43:79:35: 34:26:e5:6a:98:02:6f:ba:1a:12:d2:22:02:57:ac:f9:ef:21: 96:71:87:6f:43:1f:78:af:a9:0e:d2:fd:d8:c0:58:66:6e:95: 36:13:a2:34:73:10:c3:8f:66:56:15:76:43:00:15:eb:eb:d3: 6e:59:ba:d1:d0:3d:87:db:7e:80:5a:3f:10:bb:e5:10:48:b2: 81:91:19:e3:bd:99:c7:75:b3:9b:5c:4a:de:e1:25:a7:13:25: 45:64:67:9b:48:8d:86:07:ea:dc:7c:1b:d1:50:c1:a8:e2:17: b3:cb:54:67:65:09:24:a1:92:f5:25:1d:70:e9:38:32:4e:ff: cf:f4:e4:32:11:f4:6c:19:8f:30:62:99:db:71:c3:df:df:f3: 49:e6:62:b3:a9:9f:d7:42:b7:01:e0:e6:74:c5:6a:a6:c5:f0: 09:d7:b0:19:5f:44:f9:26:76:b4:5f:86:b7:21:79:c9:9f:24: ce:7b:ba:6d:af:49:78:11:1d:0b:cc:69:64:16:59:0b:0b:a9: 77:84:8d:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTgzMjExMC8GA1UEBRMoNjE0N0EyQTZGMTA2REM1NjAxM0RDM0JDRkJBMEI0Qjc1 M0VDRDFCQzAeFw0yNTA4MjMwNzA0MzFaFw0yNTA4MzAwNzA0MzFaMBgxFjAUBgNV BAMTDTY4YTk2N2ZmLTdlNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDipFzMo/KzmIUxbMS9yO1YQwySmkZelZlBWZaFopXHXaldaX+awGrC6i0QMHGx 6ycTx1Kz7UynoXAm4vfnGE1pJqlVQM9lImcJolFPqETgP6Iiqr1f7NubMAnOyWH3 NyhwgHdidh2cHBeNidtznu7cvJvpGz2ohCOJpawR5a/WGupjN7cFVrekbku/ci1k hRi4XtTKCjABpc2PkOy+cUgR+maNogVEaYUy9L6m/7JDV5q/1yG9Y+OOOcwhY1CT 36pDzLQW1wxsxK46xSFp+udMc24GKcteWTOexnxFJaz12kx34rzweLa77jYW6BFL Yn0SGkeDbZgFKnKYUxU1UAKTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4Kp57R/L 7PR4oD/Zn13k5X2mDcgwHwYDVR0jBBgwFoAUYUeipvEG3FYBPcO8+6C0t1Ps0bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1ODMyLzFFRDQ1MkFDRDBC QTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBi dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVVlaXB2RUczRllCUGNPOC02QzB0MVBzMGJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 ODMyLzFFRDQ1MkFDRDBCQTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZ QlBjTzgtNkMwdDFQczBidy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIPsGTYRTMjEM0hn1GYSW7oI9eksP4lgO+pLMnA6/M6pVoUawAP+/ltv MDZ1P8tb0UMeREN5NTQm5WqYAm+6GhLSIgJXrPnvIZZxh29DH3ivqQ7S/djAWGZu lTYTojRzEMOPZlYVdkMAFevr025ZutHQPYfbfoBaPxC75RBIsoGRGeO9mcd1s5tc St7hJacTJUVkZ5tIjYYH6tx8G9FQwajiF7PLVGdlCSShkvUlHXDpODJO/8/05DIR 9GwZjzBimdtxw9/f80nmYrOpn9dCtwHg5nTFaqbF8AnXsBlfRPkmdrRfhrchecmf JM57um2vSXgRHQvMaWQWWQsLqXeEjVg= -----END CERTIFICATE-----Generated at Sat Aug 23 10:28:20 2025 by rpki-client