$ rpki-client -vvf rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft File: YRQatT_Urx2yqGr-fsj-yX1eodU.mft (raw, json) Hash identifier: YBwoKuUHwBfUpOz4KKivzT+iqBrRyhcXjYlkAtzoJvw= Subject key identifier: 69:42:8B:38:96:F9:26:C9:06:81:A7:DD:58:6F:C4:72:7D:93:58:BB Authority key identifier: 61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 Certificate issuer: /CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft Manifest number: 018D Signing time: Mon 21 Jul 2025 03:36:42 +0000 Manifest this update: Mon 21 Jul 2025 03:36:42 +0000 Manifest next update: Mon 28 Jul 2025 03:36:42 +0000 Files and hashes: 1: YRQatT_Urx2yqGr-fsj-yX1eodU.crl (hash: l5YlhIGQKYr7r8m3qhNdFk9rXg+9gnx6pM2IW89x09g=) 2: 7F4ED0A0B83011EFA5108619C4F9AE02.roa (hash: fc1mmSSRqzCuGE7h3o2YcW/Wc0vCR2x5Y/Ca8guGROk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DEF0, serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Validity Not Before: Jul 21 03:36:42 2025 GMT Not After : Jul 28 03:36:42 2025 GMT Subject: CN=687db5ca-d471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:49:06:e5:a6:0c:7e:d7:e2:84:d6:99:3b:66: fd:6c:ac:ca:2b:d5:f1:91:50:ae:e3:19:55:61:d7: 61:b8:e1:a7:f4:14:f9:69:fb:79:cd:6a:62:30:6c: d0:f1:71:ef:ed:e6:b3:4e:e7:4a:8f:bf:9a:c0:ef: 08:df:5e:52:3b:42:87:82:99:f6:64:94:6f:72:31: c4:34:0f:ac:f0:97:1d:36:61:96:b1:6d:0b:d2:f1: c3:44:85:1a:2b:4f:de:e2:47:3d:db:38:9f:c7:aa: 4a:cb:92:f2:b5:c6:ee:fb:38:82:99:0d:f3:4a:a9: 60:d4:36:e8:97:d2:d5:a7:78:9a:a2:5c:5d:fe:5e: 7d:a6:64:db:07:f4:64:3e:0c:d8:b5:6e:d1:b6:7f: 58:45:45:89:ef:b7:30:a6:f3:9b:70:f8:15:c7:dd: 6d:aa:73:69:44:b6:70:1a:67:25:2d:6c:8a:36:bf: df:e6:be:8c:0f:7b:3f:1a:d3:bf:7d:fd:17:79:f9: 1e:15:f9:d4:63:db:e1:a4:81:d5:4c:5c:67:f8:cb: ae:08:13:87:5a:ca:66:f0:d1:67:a1:0f:80:21:69: 2c:32:75:67:07:2e:c4:55:ce:a4:18:76:ee:e0:49: 50:b3:ee:b8:94:2b:87:01:7d:5c:b6:63:49:8d:4d: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:42:8B:38:96:F9:26:C9:06:81:A7:DD:58:6F:C4:72:7D:93:58:BB X509v3 Authority Key Identifier: keyid:61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:02:af:f1:47:fe:01:69:d6:55:9d:22:a9:c5:ed:9a:2a:17: f5:12:af:5b:b6:49:e4:f4:c8:24:08:8b:23:1d:ca:d7:16:63: 32:ac:e4:63:75:56:8f:fb:20:39:f7:39:d9:07:07:46:37:44: af:0d:48:2f:bd:3a:86:58:47:25:af:19:e6:6e:ba:80:41:78: 31:b2:b3:28:89:35:45:ff:ee:57:f5:4c:fb:0b:4e:71:50:87: ee:b3:3d:e6:2d:13:9c:b5:a9:98:56:1c:09:eb:92:89:f8:5d: 1d:64:de:2f:3f:46:e1:cf:0c:c1:02:22:e5:5e:e4:70:50:4a: e5:3e:fe:11:95:2c:85:7a:53:5f:63:fb:0f:61:d8:19:db:7e: 08:0a:c0:df:fa:6a:25:2e:57:b2:a9:73:59:13:c8:6a:39:5b: 96:70:2a:ac:34:a4:3e:2c:33:28:78:82:1d:e4:43:1f:6b:83: e8:0d:fe:04:58:f2:a7:f2:7c:40:86:b2:56:e9:69:9b:69:31: 6a:bc:6d:05:03:c4:70:ab:26:2d:b4:87:af:18:70:16:3c:28: e1:b8:4f:b3:66:ac:36:b9:18:98:e7:4d:8f:f8:b5:2e:8b:87: 69:90:b4:6f:ae:25:69:34:f1:24:17:1c:55:72:f6:14:98:54: c9:e3:a2:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERFRjAxMTAvBgNVBAUTKDYxMTQxQUI1M0ZENEFGMURCMkE4NkFGRTdFQzhGRUM5 N0Q1RUExRDUwHhcNMjUwNzIxMDMzNjQyWhcNMjUwNzI4MDMzNjQyWjAYMRYwFAYD VQQDEw02ODdkYjVjYS1kNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8EkG5aYMftfihNaZO2b9bKzKK9XxkVCu4xlVYddhuOGn9BT5aft5zWpiMGzQ 8XHv7eazTudKj7+awO8I315SO0KHgpn2ZJRvcjHENA+s8JcdNmGWsW0L0vHDRIUa K0/e4kc92zifx6pKy5Lytcbu+ziCmQ3zSqlg1Dbol9LVp3iaolxd/l59pmTbB/Rk PgzYtW7Rtn9YRUWJ77cwpvObcPgVx91tqnNpRLZwGmclLWyKNr/f5r6MD3s/GtO/ ff0XefkeFfnUY9vhpIHVTFxn+MuuCBOHWspm8NFnoQ+AIWksMnVnBy7EVc6kGHbu 4ElQs+64lCuHAX1ctmNJjU1MAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlCiziW +SbJBoGn3VhvxHJ9k1i7MB8GA1UdIwQYMBaAFGEUGrU/1K8dsqhq/n7I/sl9XqHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REVGMC84MjAzMDlDMjBB NUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4MnlxR3ItZnNqLXlYMWVv ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSUWF0VF9VcngyeXFHci1mc2oteVgxZW9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REVGMC84MjAzMDlDMjBBNUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4 MnlxR3ItZnNqLXlYMWVvZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALAq/xR/4BadZVnSKpxe2aKhf1Eq9btknk9MgkCIsjHcrXFmMyrORj dVaP+yA59znZBwdGN0SvDUgvvTqGWEclrxnmbrqAQXgxsrMoiTVF/+5X9Uz7C05x UIfusz3mLROctamYVhwJ65KJ+F0dZN4vP0bhzwzBAiLlXuRwUErlPv4RlSyFelNf Y/sPYdgZ234ICsDf+molLleyqXNZE8hqOVuWcCqsNKQ+LDMoeIId5EMfa4PoDf4E WPKn8nxAhrJW6WmbaTFqvG0FA8RwqyYttIevGHAWPCjhuE+zZqw2uRiY502P+LUu i4dpkLRvriVpNPEkFxxVcvYUmFTJ46Kz -----END CERTIFICATE-----Generated at Mon Jul 21 07:22:34 2025 by rpki-client