$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: tdLS6LoSMuFChhEHkk3bY2cst5ShisHABCBM/9s7cp4= Subject key identifier: 83:C4:D5:B7:40:E9:88:10:1B:94:1C:96:82:DB:90:09:B4:0A:9A:0C Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 010C Signing time: Sat 23 Aug 2025 05:06:53 +0000 Manifest this update: Sat 23 Aug 2025 05:06:53 +0000 Manifest next update: Sat 30 Aug 2025 05:06:53 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: c8SYcm5v7OujCBBhvkS7ytJkNrB4s34FDazQV+ZYYws=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Aug 23 05:06:53 2025 GMT Not After : Aug 30 05:06:53 2025 GMT Subject: CN=68a94c6d-9582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:7f:dc:1b:85:cb:a2:2d:7c:42:d1:0d:44:9b: 77:e9:c2:59:7a:bd:85:9a:47:cc:eb:03:35:d9:61: 2b:a3:de:90:e0:9e:64:fe:97:f8:ba:cf:77:16:fd: 8d:77:97:bf:45:75:13:28:c4:c4:04:21:80:ca:2e: ff:92:b2:6f:ea:09:40:3f:7c:fa:64:34:23:2e:50: 08:26:ff:fb:cd:63:8b:01:da:12:7e:f2:b5:cf:53: 57:79:5b:2f:0d:46:a1:69:6f:cc:1b:5c:c1:e8:d0: 1b:d0:d0:8b:f0:c0:3c:4b:a9:12:1c:70:6a:6e:cf: f5:5f:89:08:e1:4e:c4:fa:f5:50:d8:c0:ff:fd:18: 95:a2:ec:55:be:18:01:64:75:50:dd:db:c7:c5:e1: 1e:18:4d:6a:26:4d:8e:f3:4d:56:8e:fe:de:ac:74: 7c:41:d1:cc:bc:e4:ff:03:8e:ad:54:8f:af:31:f5: ca:00:22:22:1c:51:84:84:e0:6d:af:7b:04:4a:d6: 82:cd:d3:1b:2f:3b:6e:cb:86:a5:99:7e:9e:67:4e: f0:68:c4:a5:a0:1b:cc:3f:a1:b1:8d:13:e5:bc:c8: 8c:09:9e:33:90:e4:2b:4d:b7:23:bb:20:82:2c:64: 36:f5:4e:5f:49:fe:04:b3:b4:ab:23:f9:c3:97:c4: ca:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C4:D5:B7:40:E9:88:10:1B:94:1C:96:82:DB:90:09:B4:0A:9A:0C X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d6:18:c3:a7:4c:48:ec:e2:7c:25:85:77:da:b5:ed:db:29: 1e:b1:7c:9e:9f:7e:cb:01:25:4c:e0:5f:ac:4f:1e:39:ad:b4: 14:8e:04:4c:6d:b0:00:9d:dc:25:e3:29:13:ed:9c:8c:91:8d: 12:70:9b:5b:2f:e7:e7:91:9b:ce:8f:5f:21:c6:dd:70:02:8b: dc:f3:e7:4b:bb:48:f1:21:c4:ee:f6:31:dd:a5:43:4b:84:df: 56:38:aa:2c:38:0f:3d:ce:29:f6:2e:15:15:de:08:0a:c1:00: a6:34:e4:05:73:ba:d2:61:95:1c:85:2c:d7:75:75:54:ab:9f: 05:d2:ff:ef:b2:54:a7:a8:c9:04:2b:e7:47:74:e8:7b:11:7d: 88:62:75:61:a3:a6:fc:4a:0c:e3:28:c5:51:da:2a:86:49:f9: b6:ca:8e:25:d9:c8:59:09:6a:b3:2f:65:5a:16:5e:60:51:de: 0f:74:0e:c4:15:44:a9:81:8b:e6:ca:62:59:9d:9d:b4:0b:37: 54:23:8c:62:08:5c:7f:ba:96:d7:46:b0:0b:98:89:22:f6:5b: 7f:e6:81:9d:1e:49:51:95:80:2a:33:83:f7:96:ad:1a:3b:87: 3d:1b:e0:94:11:2a:f9:d2:48:90:cc:2f:df:d3:69:54:6b:ab: dd:30:e7:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUwODIzMDUwNjUzWhcNMjUwODMwMDUwNjUzWjAYMRYwFAYD VQQDEw02OGE5NGM2ZC05NTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3/cG4XLoi18QtENRJt36cJZer2FmkfM6wM12WEro96Q4J5k/pf4us93Fv2N d5e/RXUTKMTEBCGAyi7/krJv6glAP3z6ZDQjLlAIJv/7zWOLAdoSfvK1z1NXeVsv DUahaW/MG1zB6NAb0NCL8MA8S6kSHHBqbs/1X4kI4U7E+vVQ2MD//RiVouxVvhgB ZHVQ3dvHxeEeGE1qJk2O801Wjv7erHR8QdHMvOT/A46tVI+vMfXKACIiHFGEhOBt r3sEStaCzdMbLztuy4almX6eZ07waMSloBvMP6GxjRPlvMiMCZ4zkOQrTbcjuyCC LGQ29U5fSf4Es7SrI/nDl8TKdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPE1bdA 6YgQG5QcloLbkAm0CpoMMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/1hjDp0xI7OJ8JYV32rXt2ykesXyen37LASVM4F+sTx45rbQUjgRM bbAAndwl4ykT7ZyMkY0ScJtbL+fnkZvOj18hxt1wAovc8+dLu0jxIcTu9jHdpUNL hN9WOKosOA89zin2LhUV3ggKwQCmNOQFc7rSYZUchSzXdXVUq58F0v/vslSnqMkE K+dHdOh7EX2IYnVho6b8SgzjKMVR2iqGSfm2yo4l2chZCWqzL2VaFl5gUd4PdA7E FUSpgYvmymJZnZ20CzdUI4xiCFx/upbXRrALmIki9lt/5oGdHklRlYAqM4P3lq0a O4c9G+CUESr50kiQzC/f02lUa6vdMOdC -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:33 2025 by rpki-client