$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft File: YiiraKJGC9xWaItuVYkXkN2ASxA.mft (raw, json) Hash identifier: 0TyHRKEWBBUlSvEq/MI7tKMqMINmdP6b17VoKRIVGHA= Subject key identifier: AC:19:6C:F2:6E:F1:FA:D5:98:A3:C2:B2:A6:08:2F:C9:3C:92:2B:F5 Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft Manifest number: 0171 Signing time: Mon 17 Feb 2025 04:24:31 +0000 Manifest this update: Mon 17 Feb 2025 04:24:31 +0000 Manifest next update: Mon 24 Feb 2025 04:24:31 +0000 Files and hashes: 1: YiiraKJGC9xWaItuVYkXkN2ASxA.crl (hash: CmF1ccYPYISpvgNlImAw3V471AYEH/8Spa8HMDd5w1M=) 2: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (hash: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285 Validity Not Before: Feb 17 04:24:31 2025 GMT Not After : Feb 24 04:24:31 2025 GMT Subject: CN=67b2b9ff-2371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:17:a5:e2:64:1e:89:c7:a0:51:89:ab:c8: 67:13:33:de:46:ad:f6:9d:0d:91:58:22:1d:a7:c1: 6e:e4:93:10:0e:92:19:21:29:5f:b7:cd:89:ee:d8: 9c:7a:a8:c4:39:d8:f5:36:5c:17:85:78:0f:22:9b: bd:80:2c:40:3b:92:bb:8f:63:06:3d:be:d2:48:b2: 09:b3:cb:17:03:9e:f0:24:cc:14:b2:7e:75:b9:59: 75:0f:89:2b:f9:b8:2a:69:50:76:cc:dd:6e:95:b0: 99:90:f1:1e:da:d4:d2:54:f3:06:96:6a:fc:36:a6: a5:1f:56:4b:85:9e:13:70:99:7a:03:ee:38:34:85: 85:3a:c8:0f:9d:bd:3b:33:c5:24:5d:fc:04:b6:2d: e4:4f:c2:a9:ee:16:05:52:71:8d:40:cb:49:ea:c2: 13:53:2a:8f:a7:1b:4f:32:b8:31:3a:35:20:76:3f: 41:90:15:9b:25:4a:55:c7:67:48:55:b4:19:8c:eb: ac:58:4c:e4:54:bc:9e:f7:d7:0e:6f:64:10:ec:28: 8b:73:75:e2:17:53:a1:5a:34:fd:2e:d3:b3:70:c4: 1a:fa:e4:e4:76:53:fb:89:99:fe:a5:11:33:21:c6: c8:c9:67:e9:06:94:64:ce:c5:9d:03:19:f2:86:7f: ca:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:19:6C:F2:6E:F1:FA:D5:98:A3:C2:B2:A6:08:2F:C9:3C:92:2B:F5 X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:09:b8:70:03:b5:ee:2c:77:56:19:9d:1b:2b:15:43:65:51: 69:2c:9c:62:0d:3c:8e:b9:bc:75:28:ea:c4:18:cc:7c:67:25: 23:f8:2b:77:50:d2:30:4a:a9:36:ff:76:f2:0a:22:42:06:dc: 51:50:b2:f8:57:42:41:0e:b2:c8:bd:99:53:c7:e4:09:6f:d6: f7:91:68:c9:37:87:e9:bc:e0:fb:50:9e:73:ed:ee:e8:3b:43: 90:1c:e3:a1:8c:65:33:d1:e2:90:3f:c5:09:b2:94:a5:40:2f: 84:2c:16:d3:6e:0a:d4:9e:40:4e:00:02:ca:48:5e:0d:e0:82: e0:f1:f6:7f:ef:af:4f:36:f5:b6:4e:61:6c:cc:a3:16:92:61: 6e:ea:b5:59:fa:6c:6a:dc:75:cc:b7:28:4e:1e:ff:43:39:a8: 73:90:98:16:32:3b:99:48:10:0d:87:c1:7e:d7:3a:eb:a4:0c: 5e:55:58:84:2c:40:c8:21:16:20:7e:35:79:00:e0:f5:2c:64: a7:96:f0:2b:db:7d:9f:ba:b3:53:27:ba:70:aa:22:a0:4f:b6: 56:a8:59:9c:24:e2:89:e6:82:f7:93:6e:81:4e:3a:0c:05:a6: 44:05:42:d8:a5:e4:30:c6:e9:b9:0e:b0:45:79:d1:fa:d4:65: 5d:b9:e2:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEyODUxMTAvBgNVBAUTKDYyMjhBQjY4QTI0NjBCREM1NjY4OEI2RTU1ODkxNzkw REQ4MDRCMTAwHhcNMjUwMjE3MDQyNDMxWhcNMjUwMjI0MDQyNDMxWjAYMRYwFAYD VQQDEw02N2IyYjlmZi0yMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG8XpeJkHonHoFGJq8hnEzPeRq32nQ2RWCIdp8Fu5JMQDpIZISlft82J7tic eqjEOdj1NlwXhXgPIpu9gCxAO5K7j2MGPb7SSLIJs8sXA57wJMwUsn51uVl1D4kr +bgqaVB2zN1ulbCZkPEe2tTSVPMGlmr8NqalH1ZLhZ4TcJl6A+44NIWFOsgPnb07 M8UkXfwEti3kT8Kp7hYFUnGNQMtJ6sITUyqPpxtPMrgxOjUgdj9BkBWbJUpVx2dI VbQZjOusWEzkVLye99cOb2QQ7CiLc3XiF1OhWjT9LtOzcMQa+uTkdlP7iZn+pREz IcbIyWfpBpRkzsWdAxnyhn/K7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwZbPJu 8frVmKPCsqYIL8k8kiv1MB8GA1UdIwQYMBaAFGIoq2iiRgvcVmiLblWJF5DdgEsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTI4NS9FODE5MjAzOEI5 N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5eFdhSXR1VllrWGtOMkFT eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTI4NS9FODE5MjAzOEI5N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5 eFdhSXR1VllrWGtOMkFTeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSCbhwA7XuLHdWGZ0bKxVDZVFpLJxiDTyOubx1KOrEGMx8ZyUj+Ct3 UNIwSqk2/3byCiJCBtxRULL4V0JBDrLIvZlTx+QJb9b3kWjJN4fpvOD7UJ5z7e7o O0OQHOOhjGUz0eKQP8UJspSlQC+ELBbTbgrUnkBOAALKSF4N4ILg8fZ/769PNvW2 TmFszKMWkmFu6rVZ+mxq3HXMtyhOHv9DOahzkJgWMjuZSBANh8F+1zrrpAxeVViE LEDIIRYgfjV5AOD1LGSnlvAr232furNTJ7pwqiKgT7ZWqFmcJOKJ5oL3k26BTjoM BaZEBULYpeQwxum5DrBFedH61GVdueLJ -----END CERTIFICATE-----Generated at Mon Feb 17 07:41:02 2025 by rpki-client