$ rpki-client -vvf rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft File: yukPRsIh0AstoIB61MSwZQM3Q0Q.mft (raw, json) Hash identifier: 97KiXkZxeyMoS4FCVTCs7nqWVeGSx5pNswBSmRF/WDc= Subject key identifier: FE:43:EC:83:0E:7E:A1:2C:1C:06:15:B8:B1:95:97:B3:C6:69:B7:C4 Authority key identifier: CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 Certificate issuer: /CN=A9148526/serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft Manifest number: 010A Signing time: Sun 15 Jun 2025 04:09:11 +0000 Manifest this update: Sun 15 Jun 2025 04:09:10 +0000 Manifest next update: Sun 22 Jun 2025 04:09:10 +0000 Files and hashes: 1: yukPRsIh0AstoIB61MSwZQM3Q0Q.crl (hash: 31MaOpJ6QzosmLW2MHHBKoBdNDuYcw9IwDqb0+/FbsI=) 2: 40F782C8B4AA11EEB330C137C4F9AE02.roa (hash: 6omCuuVUgdbnOuuOFxfXDIcF+rrSXl7KykbR3GM1b/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148526, serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Validity Not Before: Jun 15 04:09:10 2025 GMT Not After : Jun 22 04:09:10 2025 GMT Subject: CN=684e4766-4f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:47:bc:7c:03:8b:ff:2c:13:6d:90:59:05:9f: ec:e8:78:cc:15:df:19:25:75:9e:b0:67:32:e6:fc: 64:0c:60:23:7d:b7:df:1d:16:37:73:47:5c:13:fb: 18:50:12:d5:a5:c0:02:3a:d7:06:6f:7b:d1:5a:3b: b9:48:70:dd:bb:df:a7:2d:c8:d6:ed:dc:cd:bd:f8: c2:bc:ff:9b:44:04:0c:94:0b:c9:97:cc:d3:3a:b4: ed:20:d2:37:fb:3b:27:02:6c:a0:fd:55:4a:23:ca: e8:f3:25:c6:9c:12:8e:f9:7c:b5:92:3e:a1:aa:33: 73:63:dc:70:39:dc:f0:a6:8c:04:d3:0b:43:5d:2d: a6:78:81:9f:67:98:8e:9e:a3:33:9c:96:7c:db:88: 8c:01:09:96:90:a9:e5:0f:57:2f:12:91:0c:9a:0e: 7a:06:5a:ac:94:75:07:64:f6:77:9f:cb:e7:16:09: b5:e8:4f:b4:dc:83:86:3c:d0:69:cb:f4:75:3d:a7: f6:f1:d4:44:a7:b6:b9:cb:21:b7:08:f0:2a:25:92: 93:2b:a2:da:17:2f:94:20:0a:23:54:32:86:23:dc: c3:0c:b4:46:e3:7a:00:1d:c9:31:e0:ba:de:8b:d4: f8:bb:9c:71:dd:f4:84:c8:0c:7d:62:25:ea:85:04: e1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:43:EC:83:0E:7E:A1:2C:1C:06:15:B8:B1:95:97:B3:C6:69:B7:C4 X509v3 Authority Key Identifier: keyid:CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:be:0c:1e:d6:a4:4a:ab:17:55:de:f4:06:6c:d7:94:c8:a2: 41:4a:85:84:4a:6e:dc:17:7d:9d:5c:27:3f:b8:2c:43:0f:24: 69:25:43:68:78:9d:a7:6c:dd:7f:b7:fd:00:c1:98:b6:57:b6: b4:22:c3:ae:a5:78:e0:f3:28:7a:3c:18:d7:50:96:f6:b4:e1: a0:12:b0:1c:ab:ae:b7:d1:32:f2:39:df:62:b3:ec:86:1d:50: fb:d5:26:d9:33:59:1a:16:9d:18:44:fe:1e:f6:ff:ee:33:dd: d1:61:0a:eb:27:1d:ff:fc:85:5b:90:e9:6d:c7:05:29:21:7c: e4:eb:65:6f:21:29:bb:76:d3:de:ec:a0:7d:ff:ec:75:12:4e: a8:65:3e:d6:cb:26:28:7f:b5:1b:95:88:19:e4:4a:87:ff:a1: 5a:26:34:6d:02:3b:4c:40:ae:34:4e:a2:f1:52:3c:c5:ec:fe: 54:06:cb:69:88:34:5e:5d:90:f5:c9:3a:43:a2:6d:46:17:c4: f9:99:84:18:cd:36:2a:b3:f4:e3:fb:d3:5c:f5:ab:bc:e3:e4: 0e:a9:80:3b:62:85:7d:0f:3b:0f:94:84:61:a1:c6:e4:5e:4f: 54:75:fe:3a:77:21:5b:4c:90:af:85:03:8f:62:e1:b2:6b:9e: 1f:29:b3:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg1MjYxMTAvBgNVBAUTKENBRTkwRjQ2QzIyMUQwMEIyREEwODA3QUQ0QzRCMDY1 MDMzNzQzNDQwHhcNMjUwNjE1MDQwOTEwWhcNMjUwNjIyMDQwOTEwWjAYMRYwFAYD VQQDEw02ODRlNDc2Ni00ZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzke8fAOL/ywTbZBZBZ/s6HjMFd8ZJXWesGcy5vxkDGAjfbffHRY3c0dcE/sY UBLVpcACOtcGb3vRWju5SHDdu9+nLcjW7dzNvfjCvP+bRAQMlAvJl8zTOrTtINI3 +zsnAmyg/VVKI8ro8yXGnBKO+Xy1kj6hqjNzY9xwOdzwpowE0wtDXS2meIGfZ5iO nqMznJZ824iMAQmWkKnlD1cvEpEMmg56BlqslHUHZPZ3n8vnFgm16E+03IOGPNBp y/R1Paf28dREp7a5yyG3CPAqJZKTK6LaFy+UIAojVDKGI9zDDLRG43oAHckx4Lre i9T4u5xx3fSEyAx9YiXqhQThLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5D7IMO fqEsHAYVuLGVl7PGabfEMB8GA1UdIwQYMBaAFMrpD0bCIdALLaCAetTEsGUDN0NE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODUyNi9DNEM2RDA0NkI0 NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBBc3RvSUI2MU1Td1pRTTNR MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1a1BSc0loMEFzdG9JQjYxTVN3WlFNM1EwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODUyNi9DNEM2RDA0NkI0NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBB c3RvSUI2MU1Td1pRTTNRMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMvgwe1qRKqxdV3vQGbNeUyKJBSoWESm7cF32dXCc/uCxDDyRpJUNo eJ2nbN1/t/0AwZi2V7a0IsOupXjg8yh6PBjXUJb2tOGgErAcq6630TLyOd9is+yG HVD71SbZM1kaFp0YRP4e9v/uM93RYQrrJx3//IVbkOltxwUpIXzk62VvISm7dtPe 7KB9/+x1Ek6oZT7WyyYof7UblYgZ5EqH/6FaJjRtAjtMQK40TqLxUjzF7P5UBstp iDReXZD1yTpDom1GF8T5mYQYzTYqs/Tj+9Nc9au84+QOqYA7YoV9DzsPlIRhocbk Xk9Udf46dyFbTJCvhQOPYuGya54fKbOO -----END CERTIFICATE-----Generated at Mon Jun 16 15:59:27 2025 by rpki-client