$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft (raw, json) Hash identifier: P+VR5f9CI/yjmPaJGZJ5q9mXkZ7ARpRFBnQXX4wFsOA= Subject key identifier: E6:25:2B:79:4E:D8:7E:B4:EE:B5:B8:AD:E1:77:42:E9:84:6F:A6:76 Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft Manifest number: 3F Signing time: Sun 11 May 2025 06:12:56 +0000 Manifest this update: Sun 11 May 2025 06:12:56 +0000 Manifest next update: Sun 18 May 2025 06:12:56 +0000 Files and hashes: 1: YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl (hash: XkTjZeDjnKhxDPR9QQP5y18Bor7qtVKjBB65jE6OpRE=) 2: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (hash: RZ0QTKiTTNx8zLcCMyWL6kS10XE+JurXOmLszG1L2Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: May 11 06:12:56 2025 GMT Not After : May 18 06:12:56 2025 GMT Subject: CN=68203fe8-4ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:53:ec:45:78:79:1a:2f:1d:1c:72:73:99:e8: 20:85:7d:d7:0d:7d:9c:a9:cd:e5:d8:08:22:63:cd: 54:f6:83:d5:c8:e6:c8:af:d2:de:5a:27:c5:7d:13: 0e:6e:a1:58:4d:fd:3c:e5:33:0b:db:ee:02:70:bc: 9c:9f:0f:f5:4c:6a:e1:85:ae:91:5b:03:26:16:b6: 31:8b:53:65:bd:c6:f5:c1:0c:04:95:2c:e9:97:62: 31:04:75:30:70:53:d5:77:89:fd:f8:ca:12:23:4c: d0:14:17:53:f6:a2:5e:2e:8b:c1:bf:0d:ae:97:fd: 04:b7:6c:a6:3f:00:26:e3:be:ea:c9:a7:e6:ec:cf: 74:95:72:61:04:68:08:74:8a:bf:52:43:8e:52:ca: ab:45:88:53:37:71:9b:cb:8c:b1:89:1d:f1:f2:71: f8:bc:b6:cb:29:c4:4c:2b:00:41:67:8a:a2:65:29: 30:5d:7e:66:3d:8a:ef:83:53:9f:0a:5d:91:c3:a5: b6:b0:cd:52:9f:0f:96:2f:e4:86:77:dc:87:05:99: 81:b9:76:c9:ad:3c:52:7d:7f:53:8e:fb:cd:c6:b1: b8:19:94:d7:b2:b8:85:0d:81:a7:cf:27:67:b1:03: b1:5a:08:69:9e:73:7e:f7:b4:f9:eb:ab:17:19:63: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:25:2B:79:4E:D8:7E:B4:EE:B5:B8:AD:E1:77:42:E9:84:6F:A6:76 X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:a2:0e:ff:64:0f:fb:95:a0:18:ec:bb:84:81:80:5b:b9:72: b1:4d:41:d0:87:be:e2:9e:2f:19:a9:86:c6:5b:e4:14:25:a4: f5:e5:7d:96:b9:7c:74:0d:24:01:95:e9:b9:ec:1a:26:07:57: 5f:ad:60:9d:3d:65:20:39:c8:8a:c4:08:eb:cc:3d:c3:af:68: d3:74:78:c5:ab:ff:31:84:4c:77:ce:7b:4e:24:a7:82:be:c1: de:37:f1:7c:bb:15:e5:8f:18:eb:a8:ff:fa:c8:5f:28:25:85: 8e:f7:82:4f:1d:76:33:7f:54:b4:1d:eb:28:c2:6c:d4:c8:56: fa:f0:b3:52:fc:df:ac:ce:6e:31:9b:67:01:d0:21:82:a3:4d: 17:6b:45:4d:19:d2:22:0b:70:45:27:94:23:7d:ac:ac:36:15: 77:d4:68:40:e2:e0:35:da:80:85:a5:16:dd:67:6d:15:9f:02: 9c:eb:94:e9:f7:80:c3:92:78:68:0d:2f:42:f6:98:c8:3d:58: 07:f0:40:f5:de:c4:ab:0d:34:06:e7:35:ec:94:1d:e5:58:61: d0:a5:55:52:8b:9d:75:dd:66:e3:e1:5c:27:73:a9:aa:71:75: ec:1b:0b:01:3c:a0:f4:02:41:1c:ee:6b:5c:00:49:6e:5b:99: 03:6a:f0:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTgzMjExMC8GA1UEBRMoNjE0N0EyQTZGMTA2REM1NjAxM0RDM0JDRkJBMEI0Qjc1 M0VDRDFCQzAeFw0yNTA1MTEwNjEyNTZaFw0yNTA1MTgwNjEyNTZaMBgxFjAUBgNV BAMTDTY4MjAzZmU4LTRhZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSU+xFeHkaLx0ccnOZ6CCFfdcNfZypzeXYCCJjzVT2g9XI5siv0t5aJ8V9Ew5u oVhN/TzlMwvb7gJwvJyfD/VMauGFrpFbAyYWtjGLU2W9xvXBDASVLOmXYjEEdTBw U9V3if34yhIjTNAUF1P2ol4ui8G/Da6X/QS3bKY/ACbjvurJp+bsz3SVcmEEaAh0 ir9SQ45SyqtFiFM3cZvLjLGJHfHycfi8tsspxEwrAEFniqJlKTBdfmY9iu+DU58K XZHDpbawzVKfD5Yv5IZ33IcFmYG5dsmtPFJ9f1OO+83GsbgZlNeyuIUNgafPJ2ex A7FaCGmec373tPnrqxcZYxC3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5iUreU7Y frTutbit4XdC6YRvpnYwHwYDVR0jBBgwFoAUYUeipvEG3FYBPcO8+6C0t1Ps0bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1ODMyLzFFRDQ1MkFDRDBC QTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBi dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVVlaXB2RUczRllCUGNPOC02QzB0MVBzMGJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 ODMyLzFFRDQ1MkFDRDBCQTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZ QlBjTzgtNkMwdDFQczBidy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKCiDv9kD/uVoBjsu4SBgFu5crFNQdCHvuKeLxmphsZb5BQlpPXlfZa5 fHQNJAGV6bnsGiYHV1+tYJ09ZSA5yIrECOvMPcOvaNN0eMWr/zGETHfOe04kp4K+ wd438Xy7FeWPGOuo//rIXyglhY73gk8ddjN/VLQd6yjCbNTIVvrws1L836zObjGb ZwHQIYKjTRdrRU0Z0iILcEUnlCN9rKw2FXfUaEDi4DXagIWlFt1nbRWfApzrlOn3 gMOSeGgNL0L2mMg9WAfwQPXexKsNNAbnNeyUHeVYYdClVVKLnXXdZuPhXCdzqapx dewbCwE8oPQCQRzua1wASW5bmQNq8A4= -----END CERTIFICATE-----Generated at Sun May 11 15:44:37 2025 by rpki-client