$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft File: Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft (raw, json) Hash identifier: 6h+l5Een0Ojo+8dCqyAxxhQXYVcsUONtR1ZlFqa9ysE= Subject key identifier: 82:51:C3:23:FB:D9:73:7C:CE:9D:31:2D:73:98:DE:AE:3B:EA:96:77 Authority key identifier: 63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E Certificate issuer: /CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Certificate serial: 0B86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft Manifest number: 140B Signing time: Sun 24 Aug 2025 19:01:33 +0000 Manifest this update: Sun 24 Aug 2025 19:01:33 +0000 Manifest next update: Sun 31 Aug 2025 19:01:33 +0000 Files and hashes: 1: Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl (hash: CB3eaWPsBVcdtOq2bnpILMvcfq47z+gCk39Ys9QvKro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Validity Not Before: Aug 24 19:01:33 2025 GMT Not After : Aug 31 19:01:33 2025 GMT Subject: CN=68ab618d-b61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:5e:8c:6d:00:37:eb:6f:ee:51:96:d9:3c: e5:34:27:2b:a4:b3:f8:51:71:1b:d0:3e:93:11:01: d9:e3:01:ed:a2:89:ab:e4:aa:3e:d5:ce:8f:d3:be: 9a:d0:ca:87:a0:27:b5:95:bc:c0:a4:91:59:f5:37: e0:ce:6d:c9:ed:70:75:e2:ca:92:d0:f7:ea:d5:ee: 39:38:03:b7:90:21:c8:d6:4b:da:10:14:15:59:5f: f0:7b:76:91:54:e5:a3:db:ba:7f:65:ca:b1:69:24: 9c:b7:1e:56:9c:29:91:79:cf:19:0c:0d:36:0b:2d: 19:75:84:5c:74:2e:9d:f6:e3:50:38:05:19:da:6f: 97:0e:90:48:2f:61:09:48:fe:44:e4:68:a9:68:2d: 43:20:0b:0e:8d:c5:9e:78:3c:1e:bd:aa:a4:62:38: 93:88:cb:98:62:1c:95:98:7d:0a:8a:9d:02:bc:c4: 42:f4:e8:f0:eb:61:83:8a:da:86:d0:f8:30:57:59: d5:aa:c5:74:a6:95:2a:cf:51:9d:ad:e6:4a:94:25: 7c:68:06:45:a6:16:1f:f6:5f:36:ca:36:7f:ad:ce: be:bf:e9:23:55:12:e5:a9:4b:94:af:f6:c9:89:5a: 25:4a:f8:6e:cf:31:96:95:9f:e4:4b:ec:39:db:d2: c0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:51:C3:23:FB:D9:73:7C:CE:9D:31:2D:73:98:DE:AE:3B:EA:96:77 X509v3 Authority Key Identifier: keyid:63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:99:3f:12:0e:46:bb:a7:44:d4:f5:e8:42:86:38:97:74:78: 52:4e:4c:d1:6c:de:97:4b:1b:68:31:e8:58:57:3c:a6:26:70: 05:f2:0f:f8:39:a4:78:eb:9c:81:ae:fb:5e:ba:6c:0c:74:e9: e4:83:98:b0:aa:10:48:19:e6:e2:4e:0c:77:8b:42:01:30:c4: 41:02:bf:a7:55:21:68:f9:9a:26:4b:e9:39:3d:64:10:aa:33: 30:2d:da:4f:6e:ea:d6:34:bf:ce:3e:3e:23:c7:47:94:d0:d7: 2a:19:0b:31:d4:cf:91:c5:4d:59:80:68:91:cd:89:cc:28:3c: ef:3b:8c:b6:0e:a5:ce:5b:d2:2d:fa:e7:a0:72:19:b3:bc:d2: 19:54:a5:b2:12:b0:06:da:07:bc:12:f5:67:2e:75:b6:34:9c: 30:53:89:4a:0c:6c:d3:b5:d9:1c:39:d8:23:8d:89:14:9f:05: 0a:8b:21:d8:22:4e:37:73:db:c0:c5:58:c2:ff:21:3a:ea:92: 06:99:38:28:d3:58:6b:ae:5a:6f:87:64:66:96:74:08:c7:60: 3b:cd:31:f1:e9:c8:2f:18:9c:97:db:27:cc:e8:2e:e6:4b:56: 8c:5f:37:14:58:ee:8a:f8:12:47:58:4d:40:6f:7d:c8:af:d8: 50:68:f9:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKDYzRUJBNDg1MDI1MTEzNDBCODI1MjYxRDVFQzIwQTkx MjdBRjI5NUUwHhcNMjUwODI0MTkwMTMzWhcNMjUwODMxMTkwMTMzWjAYMRYwFAYD VQQDEw02OGFiNjE4ZC1iNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA1ejG0AN+tv7lGW2TzlNCcrpLP4UXEb0D6TEQHZ4wHtoomr5Ko+1c6P076a 0MqHoCe1lbzApJFZ9Tfgzm3J7XB14sqS0Pfq1e45OAO3kCHI1kvaEBQVWV/we3aR VOWj27p/ZcqxaSSctx5WnCmRec8ZDA02Cy0ZdYRcdC6d9uNQOAUZ2m+XDpBIL2EJ SP5E5GipaC1DIAsOjcWeeDwevaqkYjiTiMuYYhyVmH0Kip0CvMRC9Ojw62GDitqG 0PgwV1nVqsV0ppUqz1GdreZKlCV8aAZFphYf9l82yjZ/rc6+v+kjVRLlqUuUr/bJ iVolSvhuzzGWlZ/kS+w529LAlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJRwyP7 2XN8zp0xLXOY3q476pZ3MB8GA1UdIwQYMBaAFGPrpIUCURNAuCUmHV7CCpEnryle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUwQzRKU1lkWHNJS2tTZXZL VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktdWtoUUpSRTBDNEpTWWRYc0lLa1NldktWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUw QzRKU1lkWHNJS2tTZXZLVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXmT8SDka7p0TU9ehChjiXdHhSTkzRbN6XSxtoMehYVzymJnAF8g/4 OaR465yBrvteumwMdOnkg5iwqhBIGebiTgx3i0IBMMRBAr+nVSFo+ZomS+k5PWQQ qjMwLdpPburWNL/OPj4jx0eU0NcqGQsx1M+RxU1ZgGiRzYnMKDzvO4y2DqXOW9It +uegchmzvNIZVKWyErAG2ge8EvVnLnW2NJwwU4lKDGzTtdkcOdgjjYkUnwUKiyHY Ik43c9vAxVjC/yE66pIGmTgo01hrrlpvh2RmlnQIx2A7zTHx6cgvGJyX2yfM6C7m S1aMXzcUWO6K+BJHWE1Ab33Ir9hQaPn1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:29 2025 by rpki-client