$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft (raw, json) Hash identifier: nosAlHQaj0A+NNodIo51meA/aJaaT866fdJYhM8kQ10= Subject key identifier: E8:D8:21:A7:57:87:03:DC:A5:90:D0:7B:17:F7:95:9F:12:FA:A3:93 Authority key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Certificate issuer: /CN=A91E5832/serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft Manifest number: 37 Signing time: Fri 25 Apr 2025 06:33:54 +0000 Manifest this update: Fri 25 Apr 2025 06:33:54 +0000 Manifest next update: Fri 02 May 2025 06:33:54 +0000 Files and hashes: 1: YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl (hash: zvKCjw9+8OVEdUj8vicVzYuDEcvjwjPHLTIgIPuufrg=) 2: A947EC6ED0BA11EFB7A6B027C4F9AE02.roa (hash: RZ0QTKiTTNx8zLcCMyWL6kS10XE+JurXOmLszG1L2Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Validity Not Before: Apr 25 06:33:54 2025 GMT Not After : May 2 06:33:54 2025 GMT Subject: CN=680b2cd2-483c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:57:8d:2e:53:ff:fd:f7:8e:03:95:1f:38: e9:cc:cd:4e:e5:cd:1d:c7:95:af:cf:c2:59:90:8f: 9c:bc:8f:f3:ba:e8:bf:2c:7b:19:1d:da:27:45:d2: f7:19:14:43:ae:fe:22:83:84:32:d2:e6:0f:91:5c: e4:07:ec:87:af:af:f1:27:a9:69:47:43:26:2d:66: 85:95:93:60:07:fa:d9:c8:45:aa:c6:b9:bb:62:69: 46:1b:1e:6a:c7:df:18:6b:3d:a9:9c:14:7e:05:f1: 52:43:dc:68:39:38:58:90:87:a8:ea:ed:88:cb:d3: c8:59:3a:76:ff:fa:22:af:15:4f:3c:61:dd:c6:cd: ce:d0:eb:70:d9:9b:96:b1:9b:f9:2c:75:00:cb:23: ac:1d:2d:e3:06:1c:b3:41:08:82:49:5e:ca:93:95: 6e:33:1a:46:ae:77:15:dd:64:89:d4:56:ec:2e:91: e3:5e:ee:74:cf:96:f6:09:c0:16:ef:19:36:2d:46: 8a:dc:a4:1e:fb:b5:16:1c:28:5c:46:ad:d0:a3:87: 4c:89:aa:ed:43:6e:01:ba:82:c4:2e:bb:1f:19:d5: cb:76:f5:64:0a:60:8e:b1:4e:f1:d3:0b:c7:ef:d5: 17:88:4e:3b:81:c3:b9:81:43:25:57:c0:a6:60:a6: ca:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D8:21:A7:57:87:03:DC:A5:90:D0:7B:17:F7:95:9F:12:FA:A3:93 X509v3 Authority Key Identifier: keyid:61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:11:dd:7e:c1:43:05:54:44:c0:b7:78:ff:f2:ba:7d:88:2b: cd:ec:dd:6b:7e:7a:6c:80:78:d5:74:b8:b9:8b:72:15:56:6c: 4b:40:70:2d:19:b9:74:6c:c3:84:2d:08:d1:e9:3a:06:93:10: 6a:da:ff:6a:63:f8:be:47:5d:1b:56:a4:1e:c7:be:05:84:9e: a0:13:d2:b9:d6:d4:5b:b1:7c:f3:f5:41:5c:68:b7:1c:fc:68: 96:a7:87:9d:33:4c:d5:33:bf:b6:07:aa:69:5f:cb:57:83:68: 20:39:78:6e:06:f8:da:6a:84:c1:9b:c6:42:3d:c7:7d:62:85: ea:fd:99:2c:be:8f:14:7d:14:8a:98:e9:c6:74:8e:f2:0f:f2: 84:2a:de:b4:59:47:45:8f:de:85:bb:4d:b5:11:ee:9c:cc:81: c6:17:5a:52:2a:9c:f5:89:a4:0c:63:ec:9a:61:99:50:86:10: cf:ab:e2:6e:07:d9:56:8b:20:81:49:52:69:15:05:66:e7:19: 0c:43:20:d4:4a:3e:5e:15:18:a9:2f:fd:cb:be:fb:a0:e6:f9: 71:33:7c:fc:35:c9:65:7a:34:4b:f2:7e:b4:ff:4e:12:06:33: fa:44:fc:ef:78:bf:c9:95:b9:44:b6:92:52:66:4b:c3:06:1f: 11:9a:c4:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTgzMjExMC8GA1UEBRMoNjE0N0EyQTZGMTA2REM1NjAxM0RDM0JDRkJBMEI0Qjc1 M0VDRDFCQzAeFw0yNTA0MjUwNjMzNTRaFw0yNTA1MDIwNjMzNTRaMBgxFjAUBgNV BAMTDTY4MGIyY2QyLTQ4M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3K1eNLlP//feOA5UfOOnMzU7lzR3Hla/PwlmQj5y8j/O66L8sexkd2idF0vcZ FEOu/iKDhDLS5g+RXOQH7Ievr/EnqWlHQyYtZoWVk2AH+tnIRarGubtiaUYbHmrH 3xhrPamcFH4F8VJD3Gg5OFiQh6jq7YjL08hZOnb/+iKvFU88Yd3Gzc7Q63DZm5ax m/ksdQDLI6wdLeMGHLNBCIJJXsqTlW4zGkaudxXdZInUVuwukeNe7nTPlvYJwBbv GTYtRorcpB77tRYcKFxGrdCjh0yJqu1DbgG6gsQuux8Z1ct29WQKYI6xTvHTC8fv 1ReITjuBw7mBQyVXwKZgpsqvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Nghp1eH A9ylkNB7F/eVnxL6o5MwHwYDVR0jBBgwFoAUYUeipvEG3FYBPcO8+6C0t1Ps0bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1ODMyLzFFRDQ1MkFDRDBC QTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZQlBjTzgtNkMwdDFQczBi dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWVVlaXB2RUczRllCUGNPOC02QzB0MVBzMGJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 ODMyLzFFRDQ1MkFDRDBCQTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVHM0ZZ QlBjTzgtNkMwdDFQczBidy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABgR3X7BQwVURMC3eP/yun2IK83s3Wt+emyAeNV0uLmLchVWbEtAcC0Z uXRsw4QtCNHpOgaTEGra/2pj+L5HXRtWpB7HvgWEnqAT0rnW1FuxfPP1QVxotxz8 aJanh50zTNUzv7YHqmlfy1eDaCA5eG4G+NpqhMGbxkI9x31iher9mSy+jxR9FIqY 6cZ0jvIP8oQq3rRZR0WP3oW7TbUR7pzMgcYXWlIqnPWJpAxj7JphmVCGEM+r4m4H 2VaLIIFJUmkVBWbnGQxDINRKPl4VGKkv/cu++6Dm+XEzfPw1yWV6NEvyfrT/ThIG M/pE/O94v8mVuUS2klJmS8MGHxGaxDY= -----END CERTIFICATE-----Generated at Sat Apr 26 23:07:38 2025 by rpki-client