$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: bKjsnbRASb+26OAkGUrKb+7fD/YDmNyrjGToe23XkqQ= Subject key identifier: 6E:43:1F:5C:16:10:6F:62:4C:24:83:E0:83:1A:45:F7:64:AF:7A:FA Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 0790 Signing time: Mon 16 Jun 2025 21:13:09 +0000 Manifest this update: Mon 16 Jun 2025 21:13:08 +0000 Manifest next update: Mon 23 Jun 2025 21:13:08 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: 9O2117UXUd0oEGcX9Y79vjXzcX1dwtgGf1628XuZ8XM=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Jun 16 21:13:08 2025 GMT Not After : Jun 23 21:13:08 2025 GMT Subject: CN=685088e4-c78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a6:8b:9a:69:33:32:14:12:79:ca:57:cf:6a: 44:6d:e1:10:25:18:f4:d5:77:22:e5:02:a0:2e:e0: a2:21:15:f6:ab:82:a5:50:ac:9a:1b:bd:2c:ea:ed: c2:c6:28:8f:b9:bd:4d:4a:9d:55:13:5d:a0:7c:ba: 4b:31:89:8e:f4:bc:de:0e:8c:84:44:f5:63:fa:e3: 18:57:2c:11:c9:6b:64:e4:ed:27:a2:95:9b:13:3b: 08:13:b5:54:3e:fd:f9:b0:08:7e:88:57:06:38:37: fa:e2:25:70:a1:e3:25:97:fc:3d:ef:f0:da:bc:f5: ed:a6:dc:a0:1e:c9:a7:33:d6:a7:55:7b:21:f2:42: 58:e0:b3:27:8a:05:81:73:71:0b:07:ea:54:aa:da: d8:b3:cd:df:e1:ab:11:9a:79:c2:e7:52:70:f4:4d: 08:ae:97:7d:09:76:12:54:e0:90:d2:d0:9d:25:06: f8:01:5f:6e:86:76:c5:43:2a:87:73:fb:07:a7:d0: 6c:db:5a:d1:bd:62:33:f1:90:37:70:f5:a9:1c:e8: a3:e9:29:96:fe:36:74:13:b6:7c:b0:a6:bd:72:f4: 3f:ac:d2:89:f8:cd:da:d1:36:0d:22:e0:1f:1d:3a: 21:1b:c4:78:ba:32:19:a8:1c:04:0d:20:05:09:25: 5a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:43:1F:5C:16:10:6F:62:4C:24:83:E0:83:1A:45:F7:64:AF:7A:FA X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ff:9b:f3:c6:63:b6:e9:6d:14:62:35:4b:2f:62:72:74:84: 5f:fa:90:1d:d1:3b:28:7e:38:0d:8e:7e:6c:99:e6:30:35:df: 2c:80:e5:ac:0d:e7:fd:76:2a:78:fa:d8:d2:da:ab:ff:65:43: f7:6d:9a:35:3c:63:7a:31:af:39:29:fc:77:58:0b:49:15:8b: 9b:52:da:a9:00:71:db:be:27:eb:a2:04:92:58:97:cb:08:74: b6:ce:b3:7a:b2:55:94:8c:ff:f5:07:b4:8f:1f:23:a6:3f:2c: 9a:50:f9:81:65:3a:3e:35:dc:90:e0:59:dd:b5:4d:87:3c:4c: 7f:ef:cd:ec:af:0c:a0:c9:58:19:a1:3c:66:c4:2b:b9:7d:a5: 2c:6f:75:b1:66:5f:38:2b:57:5b:a7:c9:60:b5:46:d9:7b:b6: 6c:13:12:2e:d1:6d:ef:27:ca:72:ec:06:a6:9a:a6:cc:79:12: 04:ad:f3:35:f6:1a:fe:1f:d7:a5:88:dc:c0:db:f1:65:ec:64: 4a:f6:4f:87:0b:9c:82:99:0e:c8:fe:b0:67:25:3d:8d:17:6d: b5:65:d0:4b:09:69:89:e9:2c:06:dc:99:cb:06:f0:94:86:b5: bb:fb:dd:16:2c:48:0e:d9:a9:47:14:c0:e0:1f:cc:df:90:81: 76:c3:74:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUwNjE2MjExMzA4WhcNMjUwNjIzMjExMzA4WjAYMRYwFAYD VQQDEw02ODUwODhlNC1jNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qaLmmkzMhQSecpXz2pEbeEQJRj01Xci5QKgLuCiIRX2q4KlUKyaG70s6u3C xiiPub1NSp1VE12gfLpLMYmO9LzeDoyERPVj+uMYVywRyWtk5O0nopWbEzsIE7VU Pv35sAh+iFcGODf64iVwoeMll/w97/DavPXtptygHsmnM9anVXsh8kJY4LMnigWB c3ELB+pUqtrYs83f4asRmnnC51Jw9E0Irpd9CXYSVOCQ0tCdJQb4AV9uhnbFQyqH c/sHp9Bs21rRvWIz8ZA3cPWpHOij6SmW/jZ0E7Z8sKa9cvQ/rNKJ+M3a0TYNIuAf HTohG8R4ujIZqBwEDSAFCSVaywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5DH1wW EG9iTCSD4IMaRfdkr3r6MB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw/5vzxmO26W0UYjVLL2JydIRf+pAd0TsofjgNjn5smeYwNd8sgOWs Def9dip4+tjS2qv/ZUP3bZo1PGN6Ma85Kfx3WAtJFYubUtqpAHHbvifrogSSWJfL CHS2zrN6slWUjP/1B7SPHyOmPyyaUPmBZTo+NdyQ4FndtU2HPEx/783srwygyVgZ oTxmxCu5faUsb3WxZl84K1dbp8lgtUbZe7ZsExIu0W3vJ8py7AammqbMeRIErfM1 9hr+H9eliNzA2/Fl7GRK9k+HC5yCmQ7I/rBnJT2NF221ZdBLCWmJ6SwG3JnLBvCU hrW7+90WLEgO2alHFMDgH8zfkIF2w3Sl -----END CERTIFICATE-----Generated at Wed Jun 18 06:40:14 2025 by rpki-client