$ rpki-client -vvf rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft File: yukPRsIh0AstoIB61MSwZQM3Q0Q.mft (raw, json) Hash identifier: pvwFQ8xG+mZOYDjZcHDrR2vR1LVsHjEKCOkq/zyB27k= Subject key identifier: 77:2B:2D:35:B0:4E:06:17:85:02:3A:BC:E2:99:60:5C:90:FF:10:56 Authority key identifier: CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 Certificate issuer: /CN=A9148526/serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft Manifest number: 0124 Signing time: Tue 05 Aug 2025 05:08:09 +0000 Manifest this update: Tue 05 Aug 2025 05:08:08 +0000 Manifest next update: Tue 12 Aug 2025 05:08:08 +0000 Files and hashes: 1: yukPRsIh0AstoIB61MSwZQM3Q0Q.crl (hash: lDxOjw3hUq02WRL+X9ALnMiFxHOkxjmCt0yb+JQ8054=) 2: 40F782C8B4AA11EEB330C137C4F9AE02.roa (hash: 6omCuuVUgdbnOuuOFxfXDIcF+rrSXl7KykbR3GM1b/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148526, serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Validity Not Before: Aug 5 05:08:08 2025 GMT Not After : Aug 12 05:08:08 2025 GMT Subject: CN=689191b8-b8a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:d0:ed:db:16:9d:31:6e:6f:d4:a1:d2:0f: 4f:b3:33:80:1e:1f:d9:1a:74:42:bd:1d:c3:1a:e0: 03:03:b9:ef:95:dc:89:c7:06:ec:9f:a4:b3:db:61: 57:68:ef:03:3d:f2:d9:0c:e8:8f:02:6f:7b:d2:28: 67:bb:db:f0:79:12:c4:55:d3:15:f2:50:de:b3:f2: 34:93:50:06:71:67:b9:ac:dc:38:7f:36:d0:32:c1: 9b:3c:dc:7a:df:81:f1:7d:60:79:39:a5:88:fa:23: ae:60:34:43:8b:e1:38:4b:db:ed:34:e8:57:9c:84: cc:e7:db:b9:6a:de:ac:97:8b:a4:e3:59:b6:4f:05: db:03:1f:71:4d:f5:78:b0:08:92:8c:31:86:88:02: 57:47:10:49:fe:13:75:70:86:2a:9c:b8:e2:cc:09: d0:64:70:7e:a9:46:ad:b8:7a:0c:7b:1a:4b:9d:86: 41:0f:3f:f8:d6:47:f0:b4:6c:fa:72:73:0a:0d:3a: 3a:83:c4:66:57:20:1e:77:8d:5f:84:89:3a:de:c5: 50:79:a1:b1:7b:1e:d6:bf:5f:59:a4:93:b5:c0:fe: 30:d0:ce:bc:73:e8:92:62:b5:54:bb:a6:33:1d:05: 4f:f8:a2:f3:e9:65:19:7c:ff:74:18:53:a7:f6:fc: 3b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2B:2D:35:B0:4E:06:17:85:02:3A:BC:E2:99:60:5C:90:FF:10:56 X509v3 Authority Key Identifier: keyid:CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e6:d2:2e:88:35:26:99:42:c4:b5:46:1a:03:20:44:81:92: 61:ea:61:f4:df:12:3f:63:98:86:e8:c6:51:fd:a4:a1:4b:72: 1e:03:df:27:7d:50:18:f1:84:26:55:21:83:ce:79:0e:a6:52: 12:37:f2:2f:16:b1:12:8e:00:53:1c:87:d6:cb:55:8f:38:59: 21:7a:8b:cb:95:1e:ff:0a:52:69:be:c8:d6:39:bd:02:ba:e4: ee:b5:67:6b:93:e7:7f:b8:6f:6a:60:81:39:0b:45:b4:cf:e8: 0c:18:89:bf:d0:37:7e:f7:0c:41:5f:af:5e:9c:11:07:d0:b9: 33:70:a3:69:3c:fc:5a:e3:34:d8:23:25:d6:09:aa:e1:bc:af: 5b:6a:73:6a:17:bf:31:19:71:4a:62:6c:93:8e:b6:53:c4:86: 0e:fc:f3:03:88:ca:0e:12:e6:ce:49:d3:72:3b:a9:79:8c:7b: dd:00:19:22:04:13:c6:57:34:9f:d8:71:8b:90:a8:b5:da:8f: 6c:5f:2e:87:df:8a:b6:86:fd:f1:ca:9d:08:0c:1f:33:86:82: 4b:07:ad:58:5f:47:af:3d:aa:10:e1:28:f4:53:bc:e4:b3:5f: 73:da:51:6c:97:96:5d:35:0b:47:16:23:be:f2:e4:e5:da:d8: 10:f4:d8:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg1MjYxMTAvBgNVBAUTKENBRTkwRjQ2QzIyMUQwMEIyREEwODA3QUQ0QzRCMDY1 MDMzNzQzNDQwHhcNMjUwODA1MDUwODA4WhcNMjUwODEyMDUwODA4WjAYMRYwFAYD VQQDEw02ODkxOTFiOC1iOGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubjQ7dsWnTFub9Sh0g9PszOAHh/ZGnRCvR3DGuADA7nvldyJxwbsn6Sz22FX aO8DPfLZDOiPAm970ihnu9vweRLEVdMV8lDes/I0k1AGcWe5rNw4fzbQMsGbPNx6 34HxfWB5OaWI+iOuYDRDi+E4S9vtNOhXnITM59u5at6sl4uk41m2TwXbAx9xTfV4 sAiSjDGGiAJXRxBJ/hN1cIYqnLjizAnQZHB+qUatuHoMexpLnYZBDz/41kfwtGz6 cnMKDTo6g8RmVyAed41fhIk63sVQeaGxex7Wv19ZpJO1wP4w0M68c+iSYrVUu6Yz HQVP+KLz6WUZfP90GFOn9vw7rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcrLTWw TgYXhQI6vOKZYFyQ/xBWMB8GA1UdIwQYMBaAFMrpD0bCIdALLaCAetTEsGUDN0NE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODUyNi9DNEM2RDA0NkI0 NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBBc3RvSUI2MU1Td1pRTTNR MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1a1BSc0loMEFzdG9JQjYxTVN3WlFNM1EwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODUyNi9DNEM2RDA0NkI0NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBB c3RvSUI2MU1Td1pRTTNRMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR5tIuiDUmmULEtUYaAyBEgZJh6mH03xI/Y5iG6MZR/aShS3IeA98n fVAY8YQmVSGDznkOplISN/IvFrESjgBTHIfWy1WPOFkheovLlR7/ClJpvsjWOb0C uuTutWdrk+d/uG9qYIE5C0W0z+gMGIm/0Dd+9wxBX69enBEH0LkzcKNpPPxa4zTY IyXWCarhvK9banNqF78xGXFKYmyTjrZTxIYO/PMDiMoOEubOSdNyO6l5jHvdABki BBPGVzSf2HGLkKi12o9sXy6H34q2hv3xyp0IDB8zhoJLB61YX0evPaoQ4Sj0U7zk s19z2lFsl5ZdNQtHFiO+8uTl2tgQ9NiD -----END CERTIFICATE-----Generated at Wed Aug 6 14:20:29 2025 by rpki-client