$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft (raw, json) Hash identifier: XhjKKW9elQDB+6XXNE73Lc4j+zTLeizx1ClNXxcONoo= Subject key identifier: 2F:4B:BA:49:83:85:6E:1E:E0:03:00:4F:F1:CD:F6:A7:AD:F1:D5:75 Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft Manifest number: 59 Signing time: Thu 03 Jul 2025 07:23:31 +0000 Manifest this update: Thu 03 Jul 2025 07:23:31 +0000 Manifest next update: Thu 10 Jul 2025 07:23:31 +0000 Files and hashes: 1: YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl (hash: mAthMQQX+JwVjOB0uuSQdfzbBichrD/m2es/cy1TDZA=) 2: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (hash: RZ0QTKiTTNx8zLcCMyWL6kS10XE+JurXOmLszG1L2Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: Jul 3 07:23:31 2025 GMT Not After : Jul 10 07:23:31 2025 GMT Subject: CN=68662ff3-2cc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:73:f6:57:a5:7a:1a:20:74:c1:dc:24:ef:1d: ac:6b:1b:aa:e3:68:47:39:51:45:f8:e7:38:70:31: ac:6f:42:9d:00:c8:e1:1f:1a:a7:b2:83:1c:93:75: 7b:36:4f:e4:c0:08:78:f5:6b:57:19:5a:88:da:01: 06:ff:c8:82:c5:43:5b:54:36:19:60:84:98:20:21: 5c:c9:d8:e7:75:76:08:cd:e0:96:54:32:7b:96:0e: 53:2d:c2:c3:04:ca:a7:1f:94:fc:0a:00:12:d7:c3: e6:53:22:69:c9:7c:94:88:77:03:43:37:bb:6a:9d: 2a:4c:7c:4f:f6:ef:58:62:90:3f:9b:b0:de:fe:41: 71:19:99:cc:b9:40:0f:23:0c:92:61:76:6b:5b:a3: 72:5a:1e:91:48:dd:b2:37:54:25:d5:ef:bc:a2:df: c3:86:f4:57:2c:8d:99:a9:9d:8a:b0:c6:0c:b2:c0: 46:7d:96:85:67:fb:de:90:f7:6d:75:4a:6f:c9:a6: a1:1e:ca:fa:76:06:61:2d:29:b0:ad:04:36:2f:ca: 60:99:c1:de:1e:c2:21:cc:b6:f9:9b:c6:8e:0e:5c: 12:0c:de:17:e2:1c:de:94:d0:58:a7:50:f4:2b:1e: 68:80:cf:9a:f1:60:87:9f:a0:a0:a9:a9:71:f5:a4: 84:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4B:BA:49:83:85:6E:1E:E0:03:00:4F:F1:CD:F6:A7:AD:F1:D5:75 X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:21:5f:6a:97:86:af:a9:ed:c0:4e:77:a4:d7:58:78:36:81: f0:c0:67:71:65:d6:01:47:cb:ed:19:cd:f4:a7:8c:31:8c:eb: 7a:5b:e6:36:1d:90:eb:fa:67:7b:ad:ef:52:40:d6:a6:1e:e4: 98:df:a1:f4:35:28:c4:74:46:e6:0b:87:a3:b5:79:5b:56:46: 17:d2:00:fa:bc:1b:1c:e1:7d:d3:9d:44:38:58:eb:2a:5f:b1: 6a:31:41:53:cf:89:d0:23:bf:e4:0d:a0:16:b7:dd:59:a1:31: 34:50:8f:33:84:7a:9c:e5:b9:cd:8a:80:14:f7:91:2e:b1:be: 12:18:de:8c:b9:99:18:e3:d0:8b:9f:83:23:9e:cc:a3:8a:08: c2:97:6f:7e:46:f2:3a:dc:18:af:85:5c:0f:59:32:c6:42:e5: ac:a7:9b:01:da:a1:6e:70:18:38:6d:4a:48:e3:42:82:ba:f2: f2:ee:20:b4:a0:c2:a4:60:a9:ea:6f:f1:ba:a7:0e:96:07:2c: c8:cb:30:21:43:69:58:ab:96:1c:a0:9f:be:85:8a:af:80:aa: fd:95:ac:b0:75:6d:85:ba:80:30:b6:82:c7:32:9e:ec:ed:0f: 90:cb:1c:d7:ce:fc:47:fc:dd:82:31:a9:72:52:dc:53:5e:fc: c3:7a:45:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTgzMjExMC8GA1UEBRMoNjE0N0EyQTZGMTA2REM1NjAxM0RDM0JDRkJBMEI0Qjc1 M0VDRDFCQzAeFw0yNTA3MDMwNzIzMzFaFw0yNTA3MTAwNzIzMzFaMBgxFjAUBgNV BAMTDTY4NjYyZmYzLTJjYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUc/ZXpXoaIHTB3CTvHaxrG6rjaEc5UUX45zhwMaxvQp0AyOEfGqeygxyTdXs2 T+TACHj1a1cZWojaAQb/yILFQ1tUNhlghJggIVzJ2Od1dgjN4JZUMnuWDlMtwsME yqcflPwKABLXw+ZTImnJfJSIdwNDN7tqnSpMfE/271hikD+bsN7+QXEZmcy5QA8j DJJhdmtbo3JaHpFI3bI3VCXV77yi38OG9FcsjZmpnYqwxgyywEZ9loVn+96Q9211 Sm/JpqEeyvp2BmEtKbCtBDYvymCZwd4ewiHMtvmbxo4OXBIM3hfiHN6U0FinUPQr HmiAz5rxYIefoKCpqXH1pIRfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUL0u6SYOF bh7gAwBP8c32p63x1XUwHwYDVR0jBBgwFoAUYUeipvEG3FYBPcO8+6C0t1Ps0bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1ODMyLzFFRDQ1MkFDRDBC QTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBi dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVVlaXB2RUczRllCUGNPOC02QzB0MVBzMGJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 ODMyLzFFRDQ1MkFDRDBCQTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZ QlBjTzgtNkMwdDFQczBidy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAMhX2qXhq+p7cBOd6TXWHg2gfDAZ3Fl1gFHy+0ZzfSnjDGM63pb5jYd kOv6Z3ut71JA1qYe5JjfofQ1KMR0RuYLh6O1eVtWRhfSAPq8GxzhfdOdRDhY6ypf sWoxQVPPidAjv+QNoBa33VmhMTRQjzOEepzluc2KgBT3kS6xvhIY3oy5mRjj0Iuf gyOezKOKCMKXb35G8jrcGK+FXA9ZMsZC5aynmwHaoW5wGDhtSkjjQoK68vLuILSg wqRgqepv8bqnDpYHLMjLMCFDaVirlhygn76Fiq+Aqv2VrLB1bYW6gDC2gscynuzt D5DLHNfO/Ef83YIxqXJS3FNe/MN6RU0= -----END CERTIFICATE-----Generated at Thu Jul 3 23:11:05 2025 by rpki-client