$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft (raw, json) Hash identifier: Ms+Azupx5kKYRvIVjAsN0TpvxC7+liwjguRA7KDomwU= Subject key identifier: 72:5B:15:AD:FC:A4:26:67:CF:C1:59:FE:6E:6E:4F:0C:9D:BE:B1:0A Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft Manifest number: 90 Signing time: Sun 19 Oct 2025 09:44:35 +0000 Manifest this update: Sun 19 Oct 2025 09:44:34 +0000 Manifest next update: Sun 26 Oct 2025 09:44:34 +0000 Files and hashes: 1: YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl (hash: sgdYfJo+lI0wZ1VTBo+dwX/FpbMNxOFEOPo6R33VXIE=) 2: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (hash: RZ0QTKiTTNx8zLcCMyWL6kS10XE+JurXOmLszG1L2Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: Oct 19 09:44:34 2025 GMT Not After : Oct 26 09:44:34 2025 GMT Subject: CN=68f4b302-8600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:1a:fc:a6:c2:da:f8:c3:d2:b1:31:b5:0e: 39:9f:e6:de:f1:96:1c:8a:89:29:c0:43:2f:8c:c7: dd:0b:6d:75:d9:de:d4:a5:0d:36:bb:75:8b:b2:47: 03:99:79:76:50:3a:59:1e:b3:19:bc:a4:a1:72:a3: 86:92:ee:32:8b:70:10:21:fa:18:4e:00:1a:c6:57: 26:ac:f6:31:da:18:62:21:d9:05:21:d4:75:aa:c5: e2:64:00:69:3c:9b:04:24:67:4b:72:e9:1a:09:2c: 45:8d:b5:69:ac:ce:9d:56:09:a3:b9:4a:38:e3:7f: d3:f5:d7:dd:aa:8c:b9:92:c8:9c:c5:b3:3f:91:f9: 93:99:c6:bc:06:95:e6:93:f6:41:2a:4a:db:be:2e: af:44:f6:9e:a2:51:75:bc:af:25:d6:10:89:8a:07: 2e:ce:1c:ef:71:5c:c7:f0:d1:d0:5e:80:e4:cf:aa: 68:c4:d0:22:74:77:af:6d:f0:50:c3:18:8c:79:54: d5:ef:4c:01:cb:04:4c:22:8c:81:f6:95:72:cd:fe: 0d:f8:87:11:e0:36:65:af:fe:3c:aa:3f:79:d8:ec: 5d:45:9c:1d:73:6c:cc:54:16:d9:30:94:61:9c:59: 14:d9:5e:b7:fb:a6:18:25:75:56:ef:a6:42:96:b9: aa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5B:15:AD:FC:A4:26:67:CF:C1:59:FE:6E:6E:4F:0C:9D:BE:B1:0A X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:95:f1:3f:05:07:99:1c:5e:d8:16:c1:5e:d6:89:f3:fd:fe: 78:a4:29:fe:d5:f4:81:ec:40:02:91:6b:92:a6:bc:52:f8:d4: e9:b0:2c:4b:77:4f:a1:fb:76:ed:e1:54:0e:29:ac:5e:d1:1b: 53:63:ba:2b:8a:7d:c4:61:ef:a9:da:f9:18:5e:bc:d6:1b:82: f8:8f:38:61:bc:a7:79:59:0d:34:fb:35:d6:46:99:97:43:32: ec:31:1a:5d:4c:bd:23:9e:a6:94:b8:d1:1e:bd:30:aa:a9:39: 79:3a:cd:01:c8:79:3a:cc:ad:4e:db:38:21:aa:33:9c:9b:db: e4:83:d6:20:ab:00:d3:80:84:ce:2f:ac:a6:33:be:82:06:3e: 7d:4f:f8:25:98:0e:1f:e8:e9:d7:7f:69:6f:ee:d3:4e:48:85: 8b:3c:85:c3:2d:89:b8:33:af:54:98:9f:b3:29:8a:eb:3d:2f: d9:65:60:58:c7:57:85:d5:37:dd:d9:97:8e:68:45:b3:60:0d: ad:98:05:b1:b7:16:87:76:90:50:74:97:25:b3:9c:06:c0:7a: a8:35:e6:bf:92:f9:f9:3c:dc:04:2d:42:b8:3b:c4:ab:0a:23: ef:ba:14:5e:fc:5f:ff:6f:85:98:02:88:b3:9f:72:8b:22:1e: b7:ab:2f:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU4MzIxMTAvBgNVBAUTKDYxNDdBMkE2RjEwNkRDNTYwMTNEQzNCQ0ZCQTBCNEI3 NTNFQ0QxQkMwHhcNMjUxMDE5MDk0NDM0WhcNMjUxMDI2MDk0NDM0WjAYMRYwFAYD VQQDEw02OGY0YjMwMi04NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMsa/KbC2vjD0rExtQ45n+be8ZYciokpwEMvjMfdC2112d7UpQ02u3WLskcD mXl2UDpZHrMZvKShcqOGku4yi3AQIfoYTgAaxlcmrPYx2hhiIdkFIdR1qsXiZABp PJsEJGdLcukaCSxFjbVprM6dVgmjuUo443/T9dfdqoy5ksicxbM/kfmTmca8BpXm k/ZBKkrbvi6vRPaeolF1vK8l1hCJigcuzhzvcVzH8NHQXoDkz6poxNAidHevbfBQ wxiMeVTV70wBywRMIoyB9pVyzf4N+IcR4DZlr/48qj952OxdRZwdc2zMVBbZMJRh nFkU2V63+6YYJXVW76ZClrmquwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJbFa38 pCZnz8FZ/m5uTwydvrEKMB8GA1UdIwQYMBaAFGFHoqbxBtxWAT3DvPugtLdT7NG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTgzMi8xRUQ0NTJBQ0Qw QkExMUVGODk2Q0QwMjZDNEY5QUUwMi9ZVWVpcHZFRzNGWUJQY084LTZDMHQxUHMw YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTgzMi8xRUQ0NTJBQ0QwQkExMUVGODk2Q0QwMjZDNEY5QUUwMi9ZVWVpcHZFRzNG WUJQY084LTZDMHQxUHMwYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBalfE/BQeZHF7YFsFe1onz/f54pCn+1fSB7EACkWuSprxS+NTpsCxL d0+h+3bt4VQOKaxe0RtTY7orin3EYe+p2vkYXrzWG4L4jzhhvKd5WQ00+zXWRpmX QzLsMRpdTL0jnqaUuNEevTCqqTl5Os0ByHk6zK1O2zghqjOcm9vkg9YgqwDTgITO L6ymM76CBj59T/glmA4f6OnXf2lv7tNOSIWLPIXDLYm4M69UmJ+zKYrrPS/ZZWBY x1eF1Tfd2ZeOaEWzYA2tmAWxtxaHdpBQdJcls5wGwHqoNea/kvn5PNwELUK4O8Sr CiPvuhRe/F//b4WYAoizn3KLIh63qy/S -----END CERTIFICATE-----Generated at Mon Oct 20 18:38:15 2025 by rpki-client