$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: bV7JBn6C10lJVTfRKU3F63So7iC5QBIfor3jId6fxFw= Subject key identifier: 1A:50:C3:D9:B9:1C:AA:81:5A:DD:C1:1E:3C:7A:DF:56:82:12:4F:DD Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: E3 Signing time: Tue 01 Jul 2025 05:58:22 +0000 Manifest this update: Tue 01 Jul 2025 05:58:22 +0000 Manifest next update: Tue 08 Jul 2025 05:58:22 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: xo3XIk5OOAi7XwOMBHi+FjLq716dKeB7knXguOMQe0Q=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Jul 1 05:58:22 2025 GMT Not After : Jul 8 05:58:22 2025 GMT Subject: CN=686378fe-6384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:29:e4:b0:73:16:35:5d:20:0e:71:2c:17:fe: 3b:e5:30:41:bb:6e:ab:46:09:bf:cb:88:f3:27:1b: d8:2f:b9:3a:df:27:4e:c0:3d:75:9a:91:e6:51:8a: a2:b5:72:5e:db:fc:c4:be:ef:7c:c0:56:3f:9a:55: fd:f4:1e:8e:ad:ad:39:95:bd:ed:b5:18:f2:18:e4: 44:d8:97:d5:04:28:82:eb:df:63:2e:1c:2a:2a:9e: b9:eb:3f:93:5a:18:a4:5b:a5:19:ff:5e:f5:ae:38: ed:8d:3b:16:fa:28:ee:96:a3:e8:31:ca:0b:69:0e: f7:bb:24:3c:6d:07:91:be:0d:22:c8:55:e1:1d:44: 7d:7f:8c:92:98:ef:c2:b0:4b:e3:9b:3c:f8:1e:37: 9b:45:bf:b6:b3:2b:c3:6e:28:2a:20:b6:47:78:6a: bc:b4:e0:67:8c:50:df:71:8d:ff:64:57:84:57:d2: 7a:bb:ec:c1:f5:61:71:b5:e2:85:af:5e:a2:7a:d4: 4e:ae:62:9c:40:78:cc:13:7e:99:ff:9b:87:36:05: d3:04:14:12:02:42:eb:bc:45:58:2b:f4:dc:da:01: b1:44:09:67:44:30:b3:71:6b:39:fc:26:66:bf:27: dc:62:09:56:04:af:36:2e:8c:b9:38:91:43:27:2e: b4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:50:C3:D9:B9:1C:AA:81:5A:DD:C1:1E:3C:7A:DF:56:82:12:4F:DD X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:70:8c:39:31:c1:ff:0c:f3:b3:58:b1:e4:09:b6:c6:60:35: 86:b3:e4:9e:68:43:5c:93:07:48:c9:83:0a:87:bb:cb:d7:d1: 84:fa:9d:f8:cf:a4:07:8e:93:b6:5a:58:9f:08:f2:c7:05:7b: ab:c3:43:29:8a:bf:45:af:c8:64:1d:75:f3:2d:7a:23:aa:42: 07:3e:5d:40:e2:58:7e:bf:72:71:d7:6a:18:cb:6a:4a:b4:2a: 46:1c:b7:c7:60:97:b1:c7:ab:b5:d0:a5:e4:4d:47:1d:05:62: f4:12:87:db:f4:31:15:3f:7b:bf:e1:27:06:30:1a:66:e3:19: ef:74:cb:84:49:10:da:46:3d:83:5b:eb:f5:52:f8:20:4c:c2: 21:69:cf:ca:e0:e3:a5:54:f6:85:eb:1f:8f:e6:2b:23:2f:9a: 79:af:8d:93:ba:84:ee:87:d6:52:57:56:58:0f:68:b2:01:92: 84:f8:e4:7d:1c:b4:cf:bd:59:40:77:45:56:bb:ae:f5:c7:2e: 09:f0:c1:be:c9:65:1d:d8:cc:85:7b:df:ba:54:5d:29:2f:e9: bf:a0:4a:df:68:e3:d4:e8:75:64:2a:85:76:ba:b2:0b:f4:b6: 56:b4:ab:8e:55:3a:48:43:30:8d:dc:92:34:b7:65:f2:a6:43: 33:37:d9:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUwNzAxMDU1ODIyWhcNMjUwNzA4MDU1ODIyWjAYMRYwFAYD VQQDEw02ODYzNzhmZS02Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnynksHMWNV0gDnEsF/475TBBu26rRgm/y4jzJxvYL7k63ydOwD11mpHmUYqi tXJe2/zEvu98wFY/mlX99B6Ora05lb3ttRjyGORE2JfVBCiC699jLhwqKp656z+T WhikW6UZ/171rjjtjTsW+ijulqPoMcoLaQ73uyQ8bQeRvg0iyFXhHUR9f4ySmO/C sEvjmzz4HjebRb+2syvDbigqILZHeGq8tOBnjFDfcY3/ZFeEV9J6u+zB9WFxteKF r16ietROrmKcQHjME36Z/5uHNgXTBBQSAkLrvEVYK/Tc2gGxRAlnRDCzcWs5/CZm vyfcYglWBK82Loy5OJFDJy60pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpQw9m5 HKqBWt3BHjx631aCEk/dMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpcIw5McH/DPOzWLHkCbbGYDWGs+SeaENckwdIyYMKh7vL19GE+p34 z6QHjpO2WlifCPLHBXurw0Mpir9Fr8hkHXXzLXojqkIHPl1A4lh+v3Jx12oYy2pK tCpGHLfHYJexx6u10KXkTUcdBWL0Eofb9DEVP3u/4ScGMBpm4xnvdMuESRDaRj2D W+v1UvggTMIhac/K4OOlVPaF6x+P5isjL5p5r42TuoTuh9ZSV1ZYD2iyAZKE+OR9 HLTPvVlAd0VWu671xy4J8MG+yWUd2MyFe9+6VF0pL+m/oErfaOPU6HVkKoV2urIL 9LZWtKuOVTpIQzCN3JI0t2XypkMzN9m6 -----END CERTIFICATE-----Generated at Tue Jul 1 10:44:47 2025 by rpki-client