$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: tkPTMEHooUm3y9pVfeIOiLxoeOQiFaRPaRrFYrKBwL4= Subject key identifier: 66:2B:B8:B6:AF:6D:6D:81:94:10:03:8C:01:69:1F:3C:DA:F0:23:FE Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 0776 Signing time: Thu 24 Apr 2025 21:22:14 +0000 Manifest this update: Thu 24 Apr 2025 21:22:13 +0000 Manifest next update: Thu 01 May 2025 21:22:13 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: uIrfyX/ePEDgYNbeiSHpWc+AwnUdcEbKqibc9U4FCE8=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Apr 24 21:22:13 2025 GMT Not After : May 1 21:22:13 2025 GMT Subject: CN=680aab85-f9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0a:30:ee:1b:70:ee:6f:1b:8e:9b:03:55:78: ba:6e:8d:dd:35:04:5b:26:b9:c9:77:ab:9f:b1:33: 0c:ee:2a:a6:07:7e:8c:aa:dd:3c:0d:79:ff:d7:79: 25:c2:b0:d6:be:87:4c:00:06:93:98:53:29:78:58: 21:ea:65:47:96:21:ee:fb:65:b6:38:54:b1:76:cf: 5f:55:97:8e:e5:11:ce:4c:af:cb:74:fd:db:6e:44: 26:07:d8:91:e9:5c:b0:9c:56:fd:00:9c:64:68:b0: ad:76:9c:76:6e:e9:f5:cc:39:e4:0a:01:f8:07:f4: 26:a4:6a:03:46:81:8b:70:af:eb:80:eb:6f:a2:73: dc:e2:31:73:a5:d1:73:af:3c:80:5d:f1:89:b2:86: e3:2f:a6:df:b2:fe:ec:f5:c6:f4:1e:ba:1b:81:47: be:7c:12:74:c1:09:bd:aa:72:ec:b8:95:54:cb:aa: 73:4b:05:c4:62:7f:0c:b7:61:3a:dc:e5:e1:05:58: 00:d3:02:4b:ea:89:a6:21:16:1d:cd:5d:2f:56:f9: 8c:e2:6a:97:1a:3a:9d:18:45:97:da:61:f5:d4:a3: cf:e0:07:34:9c:e6:4c:8b:aa:23:9c:43:b3:48:94: c2:bb:8e:15:13:d5:31:4a:cc:24:50:92:73:b3:91: 1a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2B:B8:B6:AF:6D:6D:81:94:10:03:8C:01:69:1F:3C:DA:F0:23:FE X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b9:1b:fd:41:e6:67:3b:3d:e1:67:39:51:b0:dc:7c:47:5c: 8f:3e:cc:b9:21:48:b5:51:f2:70:dd:01:fa:2f:85:8c:74:11: 71:63:4f:4a:b3:fc:7f:c4:a1:82:f1:e4:c1:5d:cd:6f:c3:60: 3b:ab:b1:f9:cd:6e:c7:b4:f1:18:eb:1c:d7:ab:f0:e2:74:a0: ef:14:e5:c1:73:35:e7:4c:d5:49:55:7a:f9:df:a6:24:76:58: f5:12:4d:6d:77:31:0e:39:d5:74:1e:8a:f4:8b:b9:5c:d5:6f: 94:34:cd:1c:f2:6f:b2:f0:5b:ff:d0:1a:8a:3a:b3:49:72:44: cf:90:87:d1:d1:8e:2c:4d:8a:ef:49:c0:d2:8f:12:3e:f4:9f: 2c:00:fe:79:43:33:79:5f:c4:2e:64:e2:e6:13:60:68:3f:b5: 7a:bc:d0:1b:29:fa:6c:a7:44:0f:a6:9b:e1:e7:59:4b:67:e0: d3:3c:2d:63:c8:92:21:bb:88:fd:15:67:87:74:22:79:9c:ef: e7:4f:85:4d:39:d5:b7:f8:51:4b:15:7c:60:1b:37:6e:0d:6a: 32:8c:da:72:27:65:4a:90:27:65:b4:e0:32:6b:d8:9c:ce:75: 7a:3e:60:14:d7:bb:c9:88:33:f4:9e:26:d3:50:d7:b2:82:68: 86:13:d2:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUwNDI0MjEyMjEzWhcNMjUwNTAxMjEyMjEzWjAYMRYwFAYD VQQDEw02ODBhYWI4NS1mOWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQow7htw7m8bjpsDVXi6bo3dNQRbJrnJd6ufsTMM7iqmB36Mqt08DXn/13kl wrDWvodMAAaTmFMpeFgh6mVHliHu+2W2OFSxds9fVZeO5RHOTK/LdP3bbkQmB9iR 6VywnFb9AJxkaLCtdpx2bun1zDnkCgH4B/QmpGoDRoGLcK/rgOtvonPc4jFzpdFz rzyAXfGJsobjL6bfsv7s9cb0HrobgUe+fBJ0wQm9qnLsuJVUy6pzSwXEYn8Mt2E6 3OXhBVgA0wJL6ommIRYdzV0vVvmM4mqXGjqdGEWX2mH11KPP4Ac0nOZMi6ojnEOz SJTCu44VE9UxSswkUJJzs5EaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYruLav bW2BlBADjAFpHzza8CP+MB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAuRv9QeZnOz3hZzlRsNx8R1yPPsy5IUi1UfJw3QH6L4WMdBFxY09K s/x/xKGC8eTBXc1vw2A7q7H5zW7HtPEY6xzXq/DidKDvFOXBczXnTNVJVXr536Yk dlj1Ek1tdzEOOdV0Hor0i7lc1W+UNM0c8m+y8Fv/0BqKOrNJckTPkIfR0Y4sTYrv ScDSjxI+9J8sAP55QzN5X8QuZOLmE2BoP7V6vNAbKfpsp0QPppvh51lLZ+DTPC1j yJIhu4j9FWeHdCJ5nO/nT4VNOdW3+FFLFXxgGzduDWoyjNpyJ2VKkCdltOAya9ic znV6PmAU17vJiDP0nibTUNeygmiGE9II -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:59 2025 by rpki-client