$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft File: YU0eyLaT57tfMs-lJ7UCgyad_is.mft (raw, json) Hash identifier: cUOE3TgpS/jVd5mo75nTTghXU8fgVnk+O0d0uou5y84= Subject key identifier: 0A:20:9B:B2:DD:C4:1F:3F:D6:23:00:28:CD:7D:A6:AC:D6:BC:07:95 Authority key identifier: 61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B Certificate issuer: /CN=A91FBD7B/serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft Manifest number: 69 Signing time: Sat 09 Aug 2025 07:29:38 +0000 Manifest this update: Sat 09 Aug 2025 07:29:38 +0000 Manifest next update: Sat 16 Aug 2025 07:29:38 +0000 Files and hashes: 1: YU0eyLaT57tfMs-lJ7UCgyad_is.crl (hash: 1C2K0np97eG5hmiKX9gcXpTKTXnaD1qAiRwaqq5HjKM=) 2: EE380826D87211EFBAE0FC19C4F9AE02.roa (hash: Z/MKQEZHBao6uUjy3KntQF19ACE4AX6KONtzOcMde7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD7B, serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Validity Not Before: Aug 9 07:29:38 2025 GMT Not After : Aug 16 07:29:38 2025 GMT Subject: CN=6896f8e2-5214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:59:3e:00:4e:2c:c4:5a:33:4d:a5:da:63: d8:ed:d1:8f:08:32:84:ab:bb:90:10:ce:d4:ec:db: c3:73:43:45:06:d2:47:93:2b:58:71:a6:a1:8d:00: ec:2c:e0:dc:c1:c8:bb:ec:2d:42:2b:f4:b1:da:91: 76:0b:7d:da:fe:57:fe:e2:ba:7d:f3:da:df:0c:cd: 90:42:de:32:c5:e8:bd:b2:f3:d0:74:e3:6c:c6:1d: 02:17:2d:10:7b:2f:5d:ac:13:0a:42:45:05:93:16: 03:86:43:f7:27:b8:2f:29:b2:8d:e7:d8:47:5f:0f: 7b:51:98:fa:93:59:08:b9:50:d8:c8:85:92:2e:7d: 1d:61:20:78:d4:41:42:27:14:13:11:50:31:22:b7: 75:77:4c:3b:e9:1d:14:21:5f:21:60:13:f8:ec:00: 8c:69:ba:de:5e:c1:d8:46:43:7e:a7:cd:8d:d8:0b: 0a:27:eb:6e:a7:ca:e3:05:01:28:6e:d7:99:2b:7f: 59:4b:37:a1:78:9a:31:1f:ca:2f:d1:b9:28:f4:4a: cd:26:26:e7:b5:34:cb:d0:79:af:cb:7a:b8:86:1c: cd:0b:ef:99:95:d8:c3:bc:f6:78:c9:ed:01:3e:7c: b3:74:d7:e9:49:a2:82:b0:cb:bc:14:69:c3:72:c6: 8f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:20:9B:B2:DD:C4:1F:3F:D6:23:00:28:CD:7D:A6:AC:D6:BC:07:95 X509v3 Authority Key Identifier: keyid:61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:92:cd:1b:91:18:45:1a:b1:92:a6:55:e1:6f:43:2a:75:cb: 98:ed:93:e5:64:41:1f:22:83:c0:15:fd:d5:4a:aa:d9:4b:4a: e4:49:e8:91:b3:cc:fb:f5:30:4b:66:f6:ba:91:4e:06:66:80: a3:1f:de:ff:43:e5:ea:63:6d:cc:f7:dd:88:7e:5f:47:f9:e5: b3:6b:64:64:c2:f9:66:f5:32:1d:27:a2:bd:0d:08:09:de:0a: ab:22:c8:b7:20:5f:61:31:11:c5:38:e9:67:33:3d:5f:7a:91: 8b:71:25:92:be:16:07:f4:0c:34:cd:e4:16:e1:08:90:5e:0c: 2b:4c:86:78:81:74:29:fa:70:e9:53:db:3a:d7:87:bc:b9:8a: 16:66:bc:db:32:67:ba:83:61:1b:74:5e:e4:59:52:23:dd:26: ca:91:56:56:75:88:7b:60:5c:22:a4:87:2c:f4:b3:d9:58:1a: b3:70:cf:4c:be:30:a4:36:40:98:d0:d3:a6:db:2f:c2:c4:1f: ca:d9:e0:b2:a6:1f:34:ce:ac:3c:fa:ed:bd:1b:d3:cd:04:43: d7:84:ce:3b:cb:1f:9a:15:a7:d7:b3:36:d6:5f:95:87:c2:da: 48:2d:db:2b:fe:b5:bd:da:2f:a0:79:54:41:f6:f0:c2:ef:0a: 1e:30:e8:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkQ3QjExMC8GA1UEBRMoNjE0RDFFQzhCNjkzRTdCQjVGMzJDRkE1MjdCNTAyODMy NjlERkUyQjAeFw0yNTA4MDkwNzI5MzhaFw0yNTA4MTYwNzI5MzhaMBgxFjAUBgNV BAMTDTY4OTZmOGUyLTUyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyslk+AE4sxFozTaXaY9jt0Y8IMoSru5AQztTs28NzQ0UG0keTK1hxpqGNAOws 4NzByLvsLUIr9LHakXYLfdr+V/7iun3z2t8MzZBC3jLF6L2y89B042zGHQIXLRB7 L12sEwpCRQWTFgOGQ/cnuC8pso3n2EdfD3tRmPqTWQi5UNjIhZIufR1hIHjUQUIn FBMRUDEit3V3TDvpHRQhXyFgE/jsAIxput5ewdhGQ36nzY3YCwon626nyuMFAShu 15krf1lLN6F4mjEfyi/RuSj0Ss0mJue1NMvQea/LeriGHM0L75mV2MO89njJ7QE+ fLN01+lJooKwy7wUacNyxo9bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCiCbst3E Hz/WIwAozX2mrNa8B5UwHwYDVR0jBBgwFoAUYU0eyLaT57tfMs+lJ7UCgyad/isw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRDdCL0E3NEY1RURDRDg3 MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0Zk1zLWxKN1VDZ3lhZF9p cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVUwZXlMYVQ1N3RmTXMtbEo3VUNneWFkX2lzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RDdCL0E3NEY1RURDRDg3MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0 Zk1zLWxKN1VDZ3lhZF9pcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA6SzRuRGEUasZKmVeFvQyp1y5jtk+VkQR8ig8AV/dVKqtlLSuRJ6JGz zPv1MEtm9rqRTgZmgKMf3v9D5epjbcz33Yh+X0f55bNrZGTC+Wb1Mh0nor0NCAne CqsiyLcgX2ExEcU46WczPV96kYtxJZK+Fgf0DDTN5BbhCJBeDCtMhniBdCn6cOlT 2zrXh7y5ihZmvNsyZ7qDYRt0XuRZUiPdJsqRVlZ1iHtgXCKkhyz0s9lYGrNwz0y+ MKQ2QJjQ06bbL8LEH8rZ4LKmHzTOrDz67b0b080EQ9eEzjvLH5oVp9ezNtZflYfC 2kgt2yv+tb3aL6B5VEH28MLvCh4w6PE= -----END CERTIFICATE-----Generated at Sun Aug 10 16:11:14 2025 by rpki-client