$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: ieJRygAG92/Qzu14VKWLV5YdJg0UJIPTvX4zch36lUI= Subject key identifier: 21:1A:75:FD:1E:A2:9A:A9:89:CF:CB:DA:96:B2:EB:31:8F:0D:01:BD Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: EC Signing time: Sat 19 Jul 2025 05:32:24 +0000 Manifest this update: Sat 19 Jul 2025 05:32:24 +0000 Manifest next update: Sat 26 Jul 2025 05:32:24 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: R6UgNHArvS2HefEbyachDu2ibDILFiXjxgcqZOExII0=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Jul 19 05:32:24 2025 GMT Not After : Jul 26 05:32:24 2025 GMT Subject: CN=687b2de8-f65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:69:b5:59:58:96:fd:9d:5d:59:67:e0:ea: d7:5a:50:a5:49:31:b1:8c:78:45:0f:58:ca:cf:67: b2:b0:8c:44:7e:05:3d:46:a7:9f:b4:81:60:b4:ff: fc:21:9a:da:99:bf:fc:59:f0:0c:8c:46:52:f1:76: 08:07:50:95:ed:80:e5:8c:10:58:c1:ea:ca:b4:32: c9:66:ed:68:de:17:09:cd:f3:50:19:26:1f:d5:80: 3b:30:63:63:06:55:18:42:dd:14:89:73:3f:45:5b: 44:cf:6c:e2:71:e1:0b:dc:c2:10:05:60:d3:6a:05: d0:85:7a:a3:c0:1e:4c:67:fc:a7:26:5b:db:99:ca: cc:6c:48:ca:ee:22:e7:4d:77:cd:0b:35:d9:4b:6a: 2f:ad:40:a5:1d:4d:40:43:a5:8b:a6:a2:a4:04:a4: 46:0a:cc:6a:30:6b:a4:e8:0d:a8:dc:55:03:49:62: d0:f1:f4:ae:b5:06:30:ca:bd:36:4e:f5:9a:ea:1f: 0a:12:da:d3:ed:94:80:47:d1:a3:fe:25:94:fc:e8: fd:2e:91:e0:ea:01:08:7e:7e:61:77:9c:0e:0b:b9: 93:d7:bc:63:9c:bb:87:39:31:b9:e4:da:a2:85:7a: c1:d1:5c:c9:cf:f8:42:2d:72:8d:b1:13:1c:10:a8: 53:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1A:75:FD:1E:A2:9A:A9:89:CF:CB:DA:96:B2:EB:31:8F:0D:01:BD X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:3d:30:d7:91:a4:ba:76:27:53:6e:4e:0c:83:53:f8:d2:de: 17:f6:c8:ab:30:76:05:83:24:84:5d:6a:84:8c:e5:9e:15:a5: 31:c6:d2:6d:c2:fc:44:cb:1e:46:d1:19:da:f1:69:cb:c3:8b: 27:04:a0:29:45:c5:5e:60:2b:cf:a9:f3:3c:f9:2b:22:b0:3d: cd:ee:5c:7f:9f:07:a8:56:fe:ed:ea:2f:5f:da:6e:57:8b:f3: 9f:47:be:1a:79:0c:e5:7a:e3:03:2a:96:7e:27:b0:cd:3d:cf: e1:0d:40:10:2c:31:03:bf:88:9f:44:42:d7:c1:83:ba:44:8f: 4f:19:b3:e4:3c:64:c2:82:aa:7e:6f:b4:11:78:73:cc:74:5a: ab:c2:56:d6:d3:36:97:a0:78:8b:18:1a:7c:2b:af:9c:50:8b: 0f:9e:14:29:a6:2d:6a:b3:d7:97:e2:c6:68:8c:00:84:54:18: 31:67:ed:fd:5d:94:00:61:8e:d0:e4:df:6f:44:52:b6:f6:99: 7b:c2:1d:e8:d5:5d:32:b1:ac:d6:f7:07:29:90:fc:9e:9f:30: 3f:7e:9e:6f:e2:45:8d:fd:70:b7:c8:87:5e:14:9c:e6:68:8e: 11:f0:89:bb:3c:dd:d4:46:a9:fa:34:d6:56:c4:70:65:9b:7e: f7:80:df:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUwNzE5MDUzMjI0WhcNMjUwNzI2MDUzMjI0WjAYMRYwFAYD VQQDEw02ODdiMmRlOC1mNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5NptVlYlv2dXVln4OrXWlClSTGxjHhFD1jKz2eysIxEfgU9RqeftIFgtP/8 IZramb/8WfAMjEZS8XYIB1CV7YDljBBYwerKtDLJZu1o3hcJzfNQGSYf1YA7MGNj BlUYQt0UiXM/RVtEz2ziceEL3MIQBWDTagXQhXqjwB5MZ/ynJlvbmcrMbEjK7iLn TXfNCzXZS2ovrUClHU1AQ6WLpqKkBKRGCsxqMGuk6A2o3FUDSWLQ8fSutQYwyr02 TvWa6h8KEtrT7ZSAR9Gj/iWU/Oj9LpHg6gEIfn5hd5wOC7mT17xjnLuHOTG55Nqi hXrB0VzJz/hCLXKNsRMcEKhTmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEadf0e opqpic/L2pay6zGPDQG9MB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASPTDXkaS6didTbk4Mg1P40t4X9sirMHYFgySEXWqEjOWeFaUxxtJt wvxEyx5G0Rna8WnLw4snBKApRcVeYCvPqfM8+SsisD3N7lx/nweoVv7t6i9f2m5X i/OfR74aeQzleuMDKpZ+J7DNPc/hDUAQLDEDv4ifRELXwYO6RI9PGbPkPGTCgqp+ b7QReHPMdFqrwlbW0zaXoHiLGBp8K6+cUIsPnhQppi1qs9eX4sZojACEVBgxZ+39 XZQAYY7Q5N9vRFK29pl7wh3o1V0ysazW9wcpkPyenzA/fp5v4kWN/XC3yIdeFJzm aI4R8Im7PN3URqn6NNZWxHBlm373gN8l -----END CERTIFICATE-----Generated at Sat Jul 19 17:44:26 2025 by rpki-client