$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: zByo+XNK89GaYEtvOPtaUV7BXQObA0woBpo6g40ee4k= Subject key identifier: 8F:CC:45:A0:B1:2E:E2:A5:C5:C4:C7:E7:4B:D2:EB:AB:29:BC:06:FF Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: FE Signing time: Sat 23 Aug 2025 05:16:18 +0000 Manifest this update: Sat 23 Aug 2025 05:16:17 +0000 Manifest next update: Sat 30 Aug 2025 05:16:17 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: OqmaLN4eWgNYxojWzFrGzgAvxtrVh4qiPOd0dZDjJ8o=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Aug 23 05:16:17 2025 GMT Not After : Aug 30 05:16:17 2025 GMT Subject: CN=68a94ea1-a507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:cc:0b:b7:59:d5:14:a4:d6:8b:46:43:de: 9d:38:3e:e4:1d:f5:09:88:d0:3b:ad:3d:9a:52:90: 00:0d:2f:49:4c:66:4a:eb:e8:aa:72:bb:49:6b:91: 3b:b4:01:da:08:67:45:82:46:e3:5b:85:4b:01:53: 75:9e:ac:11:0b:09:82:13:0d:20:3a:fe:48:ad:6d: 3f:cf:ce:52:79:8f:ea:fa:5c:5c:53:b8:06:9a:4e: 47:d3:a1:05:8c:59:f5:df:6b:c4:96:a1:21:6c:64: 12:85:fb:23:a7:bc:92:e2:02:47:53:6a:fd:be:d9: 5b:cf:f3:b3:37:f0:84:52:7a:cb:0d:c0:72:c4:74: 1d:5f:2b:b4:38:79:28:9b:d4:3b:55:3e:f0:7d:ed: 31:67:02:0b:35:86:e1:00:f6:67:52:ba:c2:5e:20: 87:d7:82:24:de:5c:49:d2:ab:a1:bf:69:47:62:e1: 14:5d:ba:1c:6d:a3:d6:3b:90:ef:0c:37:54:79:55: 3a:d3:c3:77:b1:b0:f9:4c:57:3f:d3:87:27:bf:06: 74:20:13:86:f9:94:04:33:57:f1:0f:3d:32:64:16: f6:54:28:ea:c2:12:b3:d5:17:81:bb:b2:c5:7d:c1: c3:24:81:99:54:52:e1:39:ec:01:70:d1:47:5f:8e: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CC:45:A0:B1:2E:E2:A5:C5:C4:C7:E7:4B:D2:EB:AB:29:BC:06:FF X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:fe:cc:94:c7:3f:23:1a:71:f8:cd:2a:99:f1:14:41:0f:83: 06:1e:08:77:21:e5:af:4d:2d:34:14:e6:0d:83:1f:a0:f2:46: 5b:09:02:47:1f:d3:44:23:ac:43:f8:32:02:96:a4:ff:57:cc: 6e:37:82:59:89:6d:61:02:cd:8b:11:a8:e8:d8:7d:a1:00:3c: ac:e8:9d:43:f9:ac:a8:98:d1:1e:94:3e:77:7a:da:3d:e6:d1: 71:60:ae:42:31:40:48:f4:a7:5a:42:66:34:eb:c4:e7:35:1d: 63:cc:31:8d:de:b6:9e:d9:ea:ca:6d:43:c5:2a:6e:6a:c8:19: 60:49:11:17:11:ac:58:a3:ff:25:cc:dc:9c:50:56:85:a6:6d: df:3c:71:41:92:a4:b0:ed:b9:79:a9:8d:2c:da:44:f0:3f:6f: 84:45:f7:8e:24:61:de:95:56:c7:d3:b9:4c:15:52:36:c3:b0: 30:c7:ca:6e:08:d3:bf:42:7d:08:a0:3b:45:f9:f3:f9:5c:ba: 5f:cd:80:f4:41:ad:02:11:e3:6a:97:93:fb:51:90:07:79:43: 5c:87:28:22:cc:8f:9b:7a:20:93:57:d5:72:b6:e9:1a:8a:b7: 0e:d9:6a:e3:de:3e:2b:48:64:8d:c4:f0:4a:65:5f:b7:38:75: c6:70:98:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUwODIzMDUxNjE3WhcNMjUwODMwMDUxNjE3WjAYMRYwFAYD VQQDEw02OGE5NGVhMS1hNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqXMC7dZ1RSk1otGQ96dOD7kHfUJiNA7rT2aUpAADS9JTGZK6+iqcrtJa5E7 tAHaCGdFgkbjW4VLAVN1nqwRCwmCEw0gOv5IrW0/z85SeY/q+lxcU7gGmk5H06EF jFn132vElqEhbGQShfsjp7yS4gJHU2r9vtlbz/OzN/CEUnrLDcByxHQdXyu0OHko m9Q7VT7wfe0xZwILNYbhAPZnUrrCXiCH14Ik3lxJ0quhv2lHYuEUXbocbaPWO5Dv DDdUeVU608N3sbD5TFc/04cnvwZ0IBOG+ZQEM1fxDz0yZBb2VCjqwhKz1ReBu7LF fcHDJIGZVFLhOewBcNFHX44hPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/MRaCx LuKlxcTH50vS66spvAb/MB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5/syUxz8jGnH4zSqZ8RRBD4MGHgh3IeWvTS00FOYNgx+g8kZbCQJH H9NEI6xD+DIClqT/V8xuN4JZiW1hAs2LEajo2H2hADys6J1D+ayomNEelD53eto9 5tFxYK5CMUBI9KdaQmY068TnNR1jzDGN3rae2erKbUPFKm5qyBlgSREXEaxYo/8l zNycUFaFpm3fPHFBkqSw7bl5qY0s2kTwP2+ERfeOJGHelVbH07lMFVI2w7Awx8pu CNO/Qn0IoDtF+fP5XLpfzYD0Qa0CEeNql5P7UZAHeUNchygizI+beiCTV9Vytuka ircO2Wrj3j4rSGSNxPBKZV+3OHXGcJg5 -----END CERTIFICATE-----Generated at Sat Aug 23 16:33:26 2025 by rpki-client