$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft File: YU0eyLaT57tfMs-lJ7UCgyad_is.mft (raw, json) Hash identifier: MDPzwQhrM0FiZsUD2CKAg4wkPg617alG36EfoQU1Fsk= Subject key identifier: AF:76:0C:48:D8:09:FE:49:2A:A4:36:E4:C0:70:E0:04:C6:77:63:D6 Authority key identifier: 61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B Certificate issuer: /CN=A91FBD7B/serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft Manifest number: 5E Signing time: Sat 19 Jul 2025 07:22:50 +0000 Manifest this update: Sat 19 Jul 2025 07:22:49 +0000 Manifest next update: Sat 26 Jul 2025 07:22:49 +0000 Files and hashes: 1: YU0eyLaT57tfMs-lJ7UCgyad_is.crl (hash: mHHSmJqwfXxpUbx3Kafiqx7nyaOvOeeViTFH57NWKB0=) 2: EE380826D87211EFBAE0FC19C4F9AE02.roa (hash: Z/MKQEZHBao6uUjy3KntQF19ACE4AX6KONtzOcMde7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD7B, serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Validity Not Before: Jul 19 07:22:49 2025 GMT Not After : Jul 26 07:22:49 2025 GMT Subject: CN=687b47c9-ebac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7a:5f:8d:22:d3:3d:45:18:40:0c:bb:98:57: a3:88:46:6d:50:38:cb:72:5d:b2:ad:f7:0d:ef:0c: 09:be:f4:52:cf:01:b6:81:09:fe:86:45:7c:4b:24: 33:c7:a0:1f:d2:4b:84:b0:07:89:06:ab:8a:9d:0e: 8c:d7:dc:4d:08:bb:ac:e5:41:a8:ea:b9:88:9b:a1: 00:49:0d:20:88:e8:bd:59:46:29:f6:4b:fa:88:e0: 47:37:f3:b7:67:17:4e:68:bc:aa:7a:b7:5f:57:c5: a9:ed:1c:ed:f7:a7:5c:24:45:8d:1c:8b:11:4b:95: 25:06:4d:c8:b9:2b:40:11:55:25:1b:d5:df:38:cf: 8c:45:20:ba:15:90:a8:7d:9d:2e:e0:97:75:5c:c5: 9c:24:82:67:d5:f3:5a:f7:66:71:ac:ad:f2:f7:39: f1:c6:5b:4e:99:53:05:46:ec:0a:19:8d:2d:c3:00: fe:75:0c:25:14:c7:04:db:3c:8f:b5:5c:3e:25:1e: ce:c8:b6:a5:d4:2b:ed:5f:0e:5b:c4:af:ce:61:94: cf:26:33:32:ed:a4:a2:dc:e8:da:ce:b3:89:92:8c: 5e:7f:d2:38:08:fb:ab:63:34:5a:53:99:6f:50:2e: 9f:f7:ec:3c:46:ef:fc:a2:3a:a5:26:26:99:a8:4c: 7a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:76:0C:48:D8:09:FE:49:2A:A4:36:E4:C0:70:E0:04:C6:77:63:D6 X509v3 Authority Key Identifier: keyid:61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:68:4b:25:1c:d8:ef:40:e6:a1:89:b9:be:90:36:c8:f0:08: 9e:63:1e:1a:3b:c7:12:ed:0b:26:9e:60:1b:83:d7:a5:65:e9: 92:7a:bd:69:37:ac:51:74:56:47:e1:70:57:e8:87:b7:12:93: 25:22:33:34:00:94:c2:77:de:49:80:bd:46:14:52:c3:9d:27: 3a:bd:36:a2:72:65:f0:57:d5:42:b0:99:11:18:e0:17:36:e9: 71:1a:7d:32:87:11:6e:e8:b7:72:a1:ac:bc:00:82:8f:2f:3c: 3f:6a:e1:a9:a8:78:6e:b3:83:7c:33:7d:f7:9a:7c:a7:95:a1: 12:86:72:f8:82:c8:6a:05:9c:1c:46:4c:1d:e1:0e:c0:18:6c: 96:1e:c7:7f:c3:bc:6d:52:b1:35:1d:ad:10:2b:5c:52:0c:00: 24:b1:0b:59:9a:0f:e7:93:5d:a2:16:eb:ef:f2:28:9f:e5:c5: f0:f9:be:70:86:9e:38:6a:40:9e:51:81:b2:62:f9:f9:f7:99: d7:e0:39:67:7a:1d:d1:fc:1a:e6:da:ef:92:68:d7:ef:36:b0: 5e:bd:9c:c6:59:93:e3:9f:be:ae:55:2d:f3:0f:64:4d:1d:78: 35:35:55:1e:40:40:24:dc:13:85:4b:74:b5:5b:bb:12:51:80: ad:d8:4f:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkQ3QjExMC8GA1UEBRMoNjE0RDFFQzhCNjkzRTdCQjVGMzJDRkE1MjdCNTAyODMy NjlERkUyQjAeFw0yNTA3MTkwNzIyNDlaFw0yNTA3MjYwNzIyNDlaMBgxFjAUBgNV BAMTDTY4N2I0N2M5LWViYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLel+NItM9RRhADLuYV6OIRm1QOMtyXbKt9w3vDAm+9FLPAbaBCf6GRXxLJDPH oB/SS4SwB4kGq4qdDozX3E0Iu6zlQajquYiboQBJDSCI6L1ZRin2S/qI4Ec387dn F05ovKp6t19XxantHO33p1wkRY0cixFLlSUGTci5K0ARVSUb1d84z4xFILoVkKh9 nS7gl3VcxZwkgmfV81r3ZnGsrfL3OfHGW06ZUwVG7AoZjS3DAP51DCUUxwTbPI+1 XD4lHs7ItqXUK+1fDlvEr85hlM8mMzLtpKLc6NrOs4mSjF5/0jgI+6tjNFpTmW9Q Lp/37DxG7/yiOqUmJpmoTHr3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr3YMSNgJ /kkqpDbkwHDgBMZ3Y9YwHwYDVR0jBBgwFoAUYU0eyLaT57tfMs+lJ7UCgyad/isw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRDdCL0E3NEY1RURDRDg3 MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0Zk1zLWxKN1VDZ3lhZF9p cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVUwZXlMYVQ1N3RmTXMtbEo3VUNneWFkX2lzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RDdCL0E3NEY1RURDRDg3MjExRUZBMzFGODQxOUM0RjlBRTAyL1lVMGV5TGFUNTd0 Zk1zLWxKN1VDZ3lhZF9pcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABdoSyUc2O9A5qGJub6QNsjwCJ5jHho7xxLtCyaeYBuD16Vl6ZJ6vWk3 rFF0VkfhcFfoh7cSkyUiMzQAlMJ33kmAvUYUUsOdJzq9NqJyZfBX1UKwmREY4Bc2 6XEafTKHEW7ot3KhrLwAgo8vPD9q4amoeG6zg3wzffeafKeVoRKGcviCyGoFnBxG TB3hDsAYbJYex3/DvG1SsTUdrRArXFIMACSxC1maD+eTXaIW6+/yKJ/lxfD5vnCG njhqQJ5RgbJi+fn3mdfgOWd6HdH8Guba75Jo1+82sF69nMZZk+Ofvq5VLfMPZE0d eDU1VR5AQCTcE4VLdLVbuxJRgK3YT6s= -----END CERTIFICATE-----Generated at Mon Jul 21 06:57:42 2025 by rpki-client