$ rpki-client -vvf rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft File: yukPRsIh0AstoIB61MSwZQM3Q0Q.mft (raw, json) Hash identifier: llPheEX68b32/ZdhZuxlnsiofpiO3d8eOXjl3+JckGI= Subject key identifier: 42:D9:7A:01:EC:A5:08:EE:60:2F:D3:D2:CC:06:29:C7:5A:6B:65:5F Authority key identifier: CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 Certificate issuer: /CN=A9148526/serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft Manifest number: F1 Signing time: Fri 25 Apr 2025 04:20:45 +0000 Manifest this update: Fri 25 Apr 2025 04:20:45 +0000 Manifest next update: Fri 02 May 2025 04:20:45 +0000 Files and hashes: 1: yukPRsIh0AstoIB61MSwZQM3Q0Q.crl (hash: ErqOrwbb2uECqlMmLkBVkQtjZE//92PqS71hbToQNl8=) 2: 40F782C8B4AA11EEB330C137C4F9AE02.roa (hash: 6omCuuVUgdbnOuuOFxfXDIcF+rrSXl7KykbR3GM1b/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148526, serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Validity Not Before: Apr 25 04:20:45 2025 GMT Not After : May 2 04:20:45 2025 GMT Subject: CN=680b0d9d-8ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:b0:44:5f:b8:e0:4f:db:a6:56:2a:e1:26: bf:f8:72:fa:13:43:ac:1b:20:b9:1d:eb:0a:dc:16: 11:61:a7:81:49:a8:4b:be:86:5d:42:d7:4b:44:b3: 40:74:86:64:e8:d9:4f:bc:17:e6:bf:09:1c:99:95: 04:2d:d2:ea:c8:18:32:e8:e6:c0:18:03:18:76:35: 03:b9:88:10:4d:31:03:b5:73:67:d6:72:ea:55:4a: f7:33:4f:a0:54:49:0f:2f:99:09:3b:1e:7b:6a:4f: 8b:85:b6:13:ea:da:6e:89:53:fb:68:d2:50:47:de: e7:01:94:67:2d:c8:25:d0:11:3c:b4:15:bc:49:1d: 47:e6:40:44:2f:7f:ea:11:c7:df:9c:b0:3f:98:49: aa:14:2a:c9:ac:f6:fb:83:00:2e:8d:43:f4:fd:bf: 0b:c8:36:2b:c5:51:58:85:e3:25:c5:4a:18:27:4e: 9d:ad:43:be:4a:9a:e5:92:a0:84:43:cc:c3:f9:79: 69:b3:b5:8a:b0:05:7e:9d:88:80:92:e6:7a:e3:50: c6:2b:51:c8:c2:bb:1d:c3:64:30:5c:4a:1b:45:4f: 34:ac:5f:c6:b3:42:49:42:03:61:da:46:1f:c2:87: e7:24:35:77:46:c1:9d:c7:f9:ee:9f:c0:09:59:8b: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D9:7A:01:EC:A5:08:EE:60:2F:D3:D2:CC:06:29:C7:5A:6B:65:5F X509v3 Authority Key Identifier: keyid:CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:1a:f5:fb:93:25:47:24:d3:f9:39:3b:93:ae:ed:90:3d:48: d8:b2:16:b9:aa:02:78:3c:ec:f3:be:16:8c:49:70:9b:a8:cf: a9:25:04:0a:b8:7c:86:a3:8c:a8:51:b4:1c:d5:52:af:2b:c4: 8f:78:0c:95:9c:b0:3f:f8:ec:de:94:60:9f:0f:c0:46:1c:b9: 58:01:94:94:d3:9c:e6:85:7c:28:3b:5e:f6:25:99:95:e7:c1: 03:e9:33:a1:dd:7d:cb:f3:72:64:f3:23:6b:79:e4:2a:0e:bf: aa:51:6e:5d:c9:26:8d:18:17:0e:c9:33:9b:42:6d:74:8c:cf: dc:76:c9:cf:5a:a6:57:66:5f:07:0f:3b:23:82:ba:31:b6:0d: e3:7d:a0:0f:9f:13:85:fd:5f:d2:dc:e5:8e:fb:20:a6:c0:d3: 2e:d7:a6:b7:bb:9c:de:d4:eb:b0:52:35:fd:8f:ba:af:d9:fb: aa:6e:1f:36:8d:31:74:38:46:16:7d:82:b9:18:ac:75:9a:5c: 8d:2f:cf:df:97:10:2b:de:81:f6:d2:95:61:52:6c:b5:29:ca: d7:b4:32:78:29:11:7e:bb:54:e3:9e:81:ec:ef:e8:a9:76:15: 3d:93:ea:32:0b:38:0d:ec:fb:6b:7f:3c:f5:36:19:87:dc:b0: 49:aa:a5:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg1MjYxMTAvBgNVBAUTKENBRTkwRjQ2QzIyMUQwMEIyREEwODA3QUQ0QzRCMDY1 MDMzNzQzNDQwHhcNMjUwNDI1MDQyMDQ1WhcNMjUwNTAyMDQyMDQ1WjAYMRYwFAYD VQQDEw02ODBiMGQ5ZC04YWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub2wRF+44E/bplYq4Sa/+HL6E0OsGyC5HesK3BYRYaeBSahLvoZdQtdLRLNA dIZk6NlPvBfmvwkcmZUELdLqyBgy6ObAGAMYdjUDuYgQTTEDtXNn1nLqVUr3M0+g VEkPL5kJOx57ak+LhbYT6tpuiVP7aNJQR97nAZRnLcgl0BE8tBW8SR1H5kBEL3/q EcffnLA/mEmqFCrJrPb7gwAujUP0/b8LyDYrxVFYheMlxUoYJ06drUO+SprlkqCE Q8zD+Xlps7WKsAV+nYiAkuZ641DGK1HIwrsdw2QwXEobRU80rF/Gs0JJQgNh2kYf wofnJDV3RsGdx/nun8AJWYuvOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELZegHs pQjuYC/T0swGKcdaa2VfMB8GA1UdIwQYMBaAFMrpD0bCIdALLaCAetTEsGUDN0NE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODUyNi9DNEM2RDA0NkI0 NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBBc3RvSUI2MU1Td1pRTTNR MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1a1BSc0loMEFzdG9JQjYxTVN3WlFNM1EwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODUyNi9DNEM2RDA0NkI0NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBB c3RvSUI2MU1Td1pRTTNRMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGGvX7kyVHJNP5OTuTru2QPUjYsha5qgJ4POzzvhaMSXCbqM+pJQQK uHyGo4yoUbQc1VKvK8SPeAyVnLA/+OzelGCfD8BGHLlYAZSU05zmhXwoO172JZmV 58ED6TOh3X3L83Jk8yNreeQqDr+qUW5dySaNGBcOyTObQm10jM/cdsnPWqZXZl8H Dzsjgroxtg3jfaAPnxOF/V/S3OWO+yCmwNMu16a3u5ze1OuwUjX9j7qv2fuqbh82 jTF0OEYWfYK5GKx1mlyNL8/flxAr3oH20pVhUmy1KcrXtDJ4KRF+u1TjnoHs7+ip dhU9k+oyCzgN7Ptrfzz1NhmH3LBJqqU1 -----END CERTIFICATE-----Generated at Sat Apr 26 05:13:00 2025 by rpki-client