$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft File: YC_0-oCgAKxh5tSrL3L72Wph-II.mft (raw, json) Hash identifier: mHOYfRRfJ5SrbOxqw06s83fH+nwloxBRjIvX2iQv3Rc= Subject key identifier: 61:FE:B5:7F:84:CF:C3:36:44:3D:25:19:8E:AE:0F:91:E2:BB:A7:7F Authority key identifier: 60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 Certificate issuer: /CN=A91B9293/serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft Manifest number: 0270 Signing time: Tue 17 Jun 2025 01:18:14 +0000 Manifest this update: Tue 17 Jun 2025 01:18:14 +0000 Manifest next update: Tue 24 Jun 2025 01:18:14 +0000 Files and hashes: 1: YC_0-oCgAKxh5tSrL3L72Wph-II.crl (hash: fdkArugMiNBy085hWLKAFNHxkEao7mkCAy+BERMvkU0=) 2: 008C0876148311ED856EF438C4F9AE02.roa (hash: TaT1WGLobUSkn2V8H3yXdWE7g83qq/C9PlZR3+C38jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9293, serialNumber=602FF4FA80A000AC61E6D4AB2F72FBD96A61F882 Validity Not Before: Jun 17 01:18:14 2025 GMT Not After : Jun 24 01:18:14 2025 GMT Subject: CN=6850c256-9c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cf:0e:b3:82:41:ec:ea:2b:16:6f:68:b2:2d: 1b:7a:9e:12:e7:d7:3c:0e:cd:e3:39:95:72:5d:a2: 80:b1:47:81:12:13:b3:9c:47:45:3f:3e:d4:a4:de: 1d:8a:12:18:d6:9c:80:ea:a8:ba:08:35:fb:73:f4: 83:e9:55:75:a6:59:d5:8a:b9:1a:47:dc:c2:7d:e1: 61:f6:d9:c4:0c:98:88:6f:08:34:69:cb:0e:f4:d9: 48:e8:1b:e3:05:21:ef:79:4f:53:06:7b:6c:b8:37: 17:f8:bb:7e:ea:2a:df:05:4e:78:09:62:4b:a1:d3: 3c:a0:71:92:03:fc:80:fd:1c:80:e2:46:f9:69:e1: 44:35:b0:c9:45:16:56:f2:a2:a9:19:c7:17:ab:71: 86:70:1b:b4:f4:08:f8:d7:55:0f:30:ff:80:43:2a: 0f:3a:92:b9:93:07:05:9c:32:ff:8e:ec:af:c4:05: 39:e8:3d:62:4a:51:91:ca:1b:47:a8:e6:77:4a:49: cf:93:3f:94:00:f3:51:89:9b:1e:48:3e:bb:72:90: d9:83:97:61:a4:eb:73:2d:85:cc:35:7e:52:15:00: 9c:f7:a4:14:14:2a:b1:dc:5f:e8:4a:72:1f:a2:b1: b1:f6:e2:44:42:62:76:d0:df:59:34:9a:e7:4f:ce: 1f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FE:B5:7F:84:CF:C3:36:44:3D:25:19:8E:AE:0F:91:E2:BB:A7:7F X509v3 Authority Key Identifier: keyid:60:2F:F4:FA:80:A0:00:AC:61:E6:D4:AB:2F:72:FB:D9:6A:61:F8:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YC_0-oCgAKxh5tSrL3L72Wph-II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9293/A9A38BBE147E11EDA02FDB19C4F9AE02/YC_0-oCgAKxh5tSrL3L72Wph-II.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:25:8a:67:62:bb:38:ad:cb:b2:3f:9d:4a:64:5b:7f:81:91: 1b:47:29:c5:66:32:f3:47:e8:ad:70:4b:61:9d:72:66:11:67: 65:8c:a7:7e:0b:bf:52:81:0f:c4:3b:d3:4c:a8:3d:a3:85:a8: 38:1b:76:37:18:4c:43:24:4d:e2:13:87:3e:cd:44:a6:44:4d: 11:9d:40:99:0b:a5:0d:71:87:87:aa:1c:cc:a2:ec:cd:09:e5: 5e:9c:83:b4:53:57:55:ea:83:df:88:7c:c0:70:04:6d:2d:90: a2:00:34:7a:96:46:08:03:f3:03:63:f7:b5:8a:d2:23:52:5d: aa:35:81:a2:ef:2c:32:0c:b3:86:b1:3b:be:d6:90:30:6e:79: c0:90:05:18:47:e8:86:58:ac:f9:07:b0:f3:ce:82:c8:5c:a4: de:f7:14:53:68:8d:fd:c7:90:13:43:f1:90:e3:17:aa:d3:3e: 2f:a1:96:1e:79:7c:b5:49:a0:d4:fb:97:7c:9b:8c:6c:71:06: 51:14:a4:df:3e:30:f1:12:84:9f:5c:ae:93:d2:0c:e5:ad:40: b3:d4:7c:0b:92:c6:11:7c:1a:6e:32:27:cb:a0:e3:ed:40:3a: fa:bc:24:80:59:13:5b:f5:31:0f:1a:34:00:68:32:84:89:02: 85:15:e2:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOTMxMTAvBgNVBAUTKDYwMkZGNEZBODBBMDAwQUM2MUU2RDRBQjJGNzJGQkQ5 NkE2MUY4ODIwHhcNMjUwNjE3MDExODE0WhcNMjUwNjI0MDExODE0WjAYMRYwFAYD VQQDEw02ODUwYzI1Ni05YzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApc8Os4JB7OorFm9osi0bep4S59c8Ds3jOZVyXaKAsUeBEhOznEdFPz7UpN4d ihIY1pyA6qi6CDX7c/SD6VV1plnVirkaR9zCfeFh9tnEDJiIbwg0acsO9NlI6Bvj BSHveU9TBntsuDcX+Lt+6irfBU54CWJLodM8oHGSA/yA/RyA4kb5aeFENbDJRRZW 8qKpGccXq3GGcBu09Aj411UPMP+AQyoPOpK5kwcFnDL/juyvxAU56D1iSlGRyhtH qOZ3SknPkz+UAPNRiZseSD67cpDZg5dhpOtzLYXMNX5SFQCc96QUFCqx3F/oSnIf orGx9uJEQmJ20N9ZNJrnT84fQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGH+tX+E z8M2RD0lGY6uD5Hiu6d/MB8GA1UdIwQYMBaAFGAv9PqAoACsYebUqy9y+9lqYfiC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5My9BOUEzOEJCRTE0 N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FLeGg1dFNyTDNMNzJXcGgt SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDXzAtb0NnQUt4aDV0U3JMM0w3MldwaC1JSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5My9BOUEzOEJCRTE0N0UxMUVEQTAyRkRCMTlDNEY5QUUwMi9ZQ18wLW9DZ0FL eGg1dFNyTDNMNzJXcGgtSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHJYpnYrs4rcuyP51KZFt/gZEbRynFZjLzR+itcEthnXJmEWdljKd+ C79SgQ/EO9NMqD2jhag4G3Y3GExDJE3iE4c+zUSmRE0RnUCZC6UNcYeHqhzMouzN CeVenIO0U1dV6oPfiHzAcARtLZCiADR6lkYIA/MDY/e1itIjUl2qNYGi7ywyDLOG sTu+1pAwbnnAkAUYR+iGWKz5B7DzzoLIXKTe9xRTaI39x5ATQ/GQ4xeq0z4voZYe eXy1SaDU+5d8m4xscQZRFKTfPjDxEoSfXK6T0gzlrUCz1HwLksYRfBpuMifLoOPt QDr6vCSAWRNb9TEPGjQAaDKEiQKFFeIx -----END CERTIFICATE-----Generated at Wed Jun 18 05:08:35 2025 by rpki-client