$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft File: YiiraKJGC9xWaItuVYkXkN2ASxA.mft (raw, json) Hash identifier: LLRx103PAaeCYnqzsRTlIJGYKGgntLAhNkYfo0iTv3w= Subject key identifier: D8:82:50:12:7B:12:A9:1E:51:54:26:94:6E:E6:C6:58:F3:35:C6:80 Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft Manifest number: 01CF Signing time: Sat 23 Aug 2025 02:56:13 +0000 Manifest this update: Sat 23 Aug 2025 02:56:12 +0000 Manifest next update: Sat 30 Aug 2025 02:56:12 +0000 Files and hashes: 1: YiiraKJGC9xWaItuVYkXkN2ASxA.crl (hash: Q4cUERUS5FRhO3hHmJMrOZTMnLLhkBRYWvEbgLJlVV0=) 2: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (hash: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285, serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Validity Not Before: Aug 23 02:56:12 2025 GMT Not After : Aug 30 02:56:12 2025 GMT Subject: CN=68a92dcd-c3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:3b:7c:3b:07:9a:1f:ff:11:bf:fa:58:3b: 35:4c:8a:98:b2:13:85:9e:00:a3:4e:cd:6b:16:20: 90:82:69:3e:b0:25:8a:db:1b:1e:31:83:52:cc:56: b0:6f:67:6b:ec:82:c5:66:44:bc:03:da:85:4f:b2: 48:6a:88:29:1b:7f:b2:7b:b7:ae:c2:29:26:62:c6: 75:ae:67:04:31:05:f9:cb:12:34:76:d4:4c:64:7e: 19:d2:c5:45:b2:d5:16:80:88:b9:a4:f3:34:08:45: e6:68:a2:07:d8:1e:99:88:4d:63:68:44:f9:05:54: ba:13:e4:44:97:aa:6d:78:47:a5:48:87:77:d4:e8: 78:0e:87:f4:37:ac:df:24:68:e1:db:b4:5c:79:90: 3c:6f:b4:9d:ea:37:da:14:26:fc:17:bf:31:1c:19: 1b:bd:fa:3b:7c:79:43:82:84:ce:b9:00:4a:be:f2: a4:a8:9a:59:60:3b:b8:53:d5:81:fd:9d:4d:ba:08: 81:25:95:6e:f6:4c:24:0f:23:ea:c1:d0:b7:5d:50: 87:45:fb:59:98:5e:9c:41:79:85:e0:6a:ff:cc:89: 41:1b:4a:ac:0e:da:f2:c0:63:2d:b2:76:c9:ad:6b: 0c:b9:14:67:e7:25:f7:74:d3:87:fa:06:e9:b9:3b: 3e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:82:50:12:7B:12:A9:1E:51:54:26:94:6E:E6:C6:58:F3:35:C6:80 X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b9:53:09:88:eb:0a:e0:49:ea:a0:9b:03:b2:81:da:91:3e: 6c:7f:22:b6:8d:ff:ea:b5:30:6a:b8:da:3b:fd:28:02:13:7e: 7a:4f:ec:cf:9a:82:64:b4:70:88:3a:f1:50:fa:cf:e5:18:89: 08:c1:a9:b7:80:99:94:f4:9d:7c:1d:32:c9:15:13:53:fe:94: ab:90:be:b8:5d:3c:01:a9:51:b6:f2:02:61:ab:a3:94:f4:96: 72:c5:c8:73:9f:95:1d:6e:d3:eb:25:a3:1e:77:92:81:a6:c8: 6d:78:2d:df:04:ed:f0:46:83:69:61:bc:b7:9a:a7:d8:45:dc: dc:22:c0:fd:22:24:fa:3e:78:e3:7a:b2:76:72:8d:00:4c:06: b4:17:6a:1a:7c:7d:68:21:28:8e:82:98:21:8e:20:89:6c:51: e8:9b:b5:35:64:df:5b:51:d3:54:46:2f:16:10:ca:9f:3b:2a: b5:c1:db:6e:e5:ea:fd:ee:5d:7f:a2:18:0c:b8:5e:3b:ec:12: c0:65:5f:13:11:f6:c5:f8:c0:38:e9:bf:74:3c:4b:cc:6c:40: e4:43:41:ef:a7:a2:6d:c4:dd:d2:8c:1c:d6:ea:b2:69:b8:6d: 9c:a2:fa:85:ce:a3:ef:5b:b1:f4:fe:b5:ab:e1:6e:7f:46:90: b3:18:0b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEyODUxMTAvBgNVBAUTKDYyMjhBQjY4QTI0NjBCREM1NjY4OEI2RTU1ODkxNzkw REQ4MDRCMTAwHhcNMjUwODIzMDI1NjEyWhcNMjUwODMwMDI1NjEyWjAYMRYwFAYD VQQDEw02OGE5MmRjZC1jM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj47fDsHmh//Eb/6WDs1TIqYshOFngCjTs1rFiCQgmk+sCWK2xseMYNSzFaw b2dr7ILFZkS8A9qFT7JIaogpG3+ye7euwikmYsZ1rmcEMQX5yxI0dtRMZH4Z0sVF stUWgIi5pPM0CEXmaKIH2B6ZiE1jaET5BVS6E+REl6pteEelSId31Oh4Dof0N6zf JGjh27RceZA8b7Sd6jfaFCb8F78xHBkbvfo7fHlDgoTOuQBKvvKkqJpZYDu4U9WB /Z1NugiBJZVu9kwkDyPqwdC3XVCHRftZmF6cQXmF4Gr/zIlBG0qsDtrywGMtsnbJ rWsMuRRn5yX3dNOH+gbpuTs+NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiCUBJ7 EqkeUVQmlG7mxljzNcaAMB8GA1UdIwQYMBaAFGIoq2iiRgvcVmiLblWJF5DdgEsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTI4NS9FODE5MjAzOEI5 N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5eFdhSXR1VllrWGtOMkFT eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTI4NS9FODE5MjAzOEI5N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5 eFdhSXR1VllrWGtOMkFTeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVuVMJiOsK4EnqoJsDsoHakT5sfyK2jf/qtTBquNo7/SgCE356T+zP moJktHCIOvFQ+s/lGIkIwam3gJmU9J18HTLJFRNT/pSrkL64XTwBqVG28gJhq6OU 9JZyxchzn5UdbtPrJaMed5KBpshteC3fBO3wRoNpYby3mqfYRdzcIsD9IiT6Pnjj erJ2co0ATAa0F2oafH1oISiOgpghjiCJbFHom7U1ZN9bUdNURi8WEMqfOyq1wdtu 5er97l1/ohgMuF477BLAZV8TEfbF+MA46b90PEvMbEDkQ0Hvp6JtxN3SjBzW6rJp uG2covqFzqPvW7H0/rWr4W5/RpCzGAsq -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:27 2025 by rpki-client