$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: m6SRPpMcjCz6uCJnvaAUHn/R75t/BaqmquIUg3Qmpuw= Subject key identifier: D1:2A:36:48:36:D6:CF:CF:B5:7B:5E:EA:68:AF:78:5D:FC:51:DA:69 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07A0 Signing time: Fri 18 Jul 2025 21:41:51 +0000 Manifest this update: Fri 18 Jul 2025 21:41:50 +0000 Manifest next update: Fri 25 Jul 2025 21:41:50 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: RkwYDChknRTHFgmRxrRn0RGlbdZ1pnQbOAoiVto/mrQ=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Jul 18 21:41:50 2025 GMT Not After : Jul 25 21:41:50 2025 GMT Subject: CN=687abf9e-70c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:98:25:3a:a4:03:c5:ed:2b:ca:ed:f9:9c:f8: 94:43:c7:be:91:c8:80:48:eb:df:2f:8f:d4:df:ba: 30:bb:f4:0b:ae:23:a2:4e:29:59:c6:3d:c8:d7:f1: 22:af:06:65:39:6d:09:87:68:6a:03:a7:ab:00:b5: e8:37:5d:a1:86:c9:91:c2:13:e8:c4:35:12:0d:b2: ce:38:10:ff:5d:e6:52:cd:ea:eb:ae:36:4e:a8:dd: 01:2d:1b:b5:29:54:e0:02:8e:ce:fa:1e:26:6e:2e: 0c:10:03:62:d2:fb:49:09:c2:58:10:7f:13:dc:fe: bd:ce:a9:4a:85:84:33:4b:f0:bd:c6:aa:52:d9:42: bf:5b:5a:50:e7:2d:92:1b:85:ea:7a:e4:44:93:78: f1:d9:f8:93:1e:47:bf:f5:6a:4c:e0:2a:aa:69:16: d5:98:8a:b2:ea:f2:45:c4:16:9f:87:6f:35:7a:ff: f6:df:92:79:e4:7c:0a:b4:ef:2f:aa:1a:27:ce:c3: 2a:4e:70:61:e6:f2:db:54:97:17:79:46:97:08:de: 65:6c:85:79:b0:d9:17:0e:e0:36:f4:6d:5c:bd:c8: 33:d2:87:44:3c:95:b0:a3:3b:a1:d1:c9:94:b3:14: f1:79:2e:cc:d0:f7:3d:53:fe:67:f6:3a:53:af:db: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2A:36:48:36:D6:CF:CF:B5:7B:5E:EA:68:AF:78:5D:FC:51:DA:69 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8c:85:04:f0:ff:1f:3e:b9:e4:0f:d8:41:a7:ae:60:c1:b5: 87:1d:41:c9:11:4b:72:39:69:e4:84:2d:65:ff:de:f8:11:13: c0:ea:47:7c:15:5d:ce:2e:05:92:7c:6b:7c:a5:f5:37:ad:cf: 5c:ae:fa:a3:7f:4a:52:76:a8:1c:ef:6a:d3:11:63:a2:92:d4: 79:33:4a:a4:18:f1:95:5a:6c:b0:3b:93:a5:da:bf:46:b5:09: 73:26:a1:9f:d0:37:bd:1d:7e:34:01:b9:ab:50:ec:20:6d:df: 18:cf:f0:8a:14:30:6a:f4:19:5d:9b:d2:c2:94:fe:4f:1a:d6: 2c:a4:0e:4d:f4:5f:f0:70:81:2b:8e:af:5d:74:68:c9:47:07: 57:a4:cc:7e:3c:d3:58:8a:93:b6:be:eb:b6:bc:63:0b:d7:78: 74:33:ee:dd:7e:28:cf:9b:ce:a8:5c:f0:0d:f4:72:86:c6:6f: 0b:af:b6:a8:2d:13:15:14:c0:78:3f:23:0f:c5:4e:8b:04:3c: f6:37:ee:40:27:0e:20:a0:1c:74:8a:8b:f5:71:1f:bd:75:2e: 4d:29:c6:22:f7:1d:5e:34:ae:b8:4d:69:7e:c5:4a:72:1b:a1: d3:a7:a5:88:da:0e:47:76:d0:d3:39:ee:32:0d:03:33:0a:50: d6:71:0c:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUwNzE4MjE0MTUwWhcNMjUwNzI1MjE0MTUwWjAYMRYwFAYD VQQDEw02ODdhYmY5ZS03MGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJglOqQDxe0ryu35nPiUQ8e+kciASOvfL4/U37owu/QLriOiTilZxj3I1/Ei rwZlOW0Jh2hqA6erALXoN12hhsmRwhPoxDUSDbLOOBD/XeZSzerrrjZOqN0BLRu1 KVTgAo7O+h4mbi4MEANi0vtJCcJYEH8T3P69zqlKhYQzS/C9xqpS2UK/W1pQ5y2S G4XqeuREk3jx2fiTHke/9WpM4CqqaRbVmIqy6vJFxBafh281ev/235J55HwKtO8v qhonzsMqTnBh5vLbVJcXeUaXCN5lbIV5sNkXDuA29G1cvcgz0odEPJWwozuh0cmU sxTxeS7M0Pc9U/5n9jpTr9uuOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEqNkg2 1s/PtXte6miveF38UdppMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrjIUE8P8fPrnkD9hBp65gwbWHHUHJEUtyOWnkhC1l/974ERPA6kd8 FV3OLgWSfGt8pfU3rc9crvqjf0pSdqgc72rTEWOiktR5M0qkGPGVWmywO5Ol2r9G tQlzJqGf0De9HX40AbmrUOwgbd8Yz/CKFDBq9Bldm9LClP5PGtYspA5N9F/wcIEr jq9ddGjJRwdXpMx+PNNYipO2vuu2vGML13h0M+7dfijPm86oXPAN9HKGxm8Lr7ao LRMVFMB4PyMPxU6LBDz2N+5AJw4goBx0iov1cR+9dS5NKcYi9x1eNK64TWl+xUpy G6HTp6WI2g5HdtDTOe4yDQMzClDWcQzw -----END CERTIFICATE-----Generated at Sun Jul 20 07:36:29 2025 by rpki-client