$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft File: YiiraKJGC9xWaItuVYkXkN2ASxA.mft (raw, json) Hash identifier: HNRBqIoGgX28PnIOAY4YuZoCrBjxfWxj9VKdAkDiwG8= Subject key identifier: 1A:EC:4E:CA:25:34:E5:CB:35:D7:05:87:6A:09:8E:4B:91:27:57:5B Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft Manifest number: 01AA Signing time: Wed 11 Jun 2025 02:39:49 +0000 Manifest this update: Wed 11 Jun 2025 02:39:48 +0000 Manifest next update: Wed 18 Jun 2025 02:39:48 +0000 Files and hashes: 1: YiiraKJGC9xWaItuVYkXkN2ASxA.crl (hash: dSiDdS8qNZsX3M4jyT4ldRT0et8byQIxcaSWhbOJB98=) 2: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (hash: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 02:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285, serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Validity Not Before: Jun 11 02:39:48 2025 GMT Not After : Jun 18 02:39:48 2025 GMT Subject: CN=6848ec75-4091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:3b:09:fb:d0:9b:8a:ac:b6:4f:31:2a:57: 8f:fc:3b:ab:60:b7:b8:71:89:b6:c5:42:50:9e:e6: 3f:13:2e:3c:4e:e9:60:77:bd:77:30:ad:d2:f3:3f: 64:34:3e:6c:34:37:26:90:b9:32:c8:2f:fb:54:f6: 8f:ef:ae:0b:4d:6a:71:25:a4:9f:cf:33:fe:8a:11: b2:a7:3c:89:e3:cf:95:2a:e5:b7:7d:78:8e:7f:72: 98:c4:ba:d8:dc:d0:3d:72:35:46:49:6b:f7:16:6a: ef:71:fa:26:bc:d7:c3:d8:38:66:89:f0:01:9e:fb: 28:a4:59:78:d0:5d:c8:3c:11:44:84:9d:06:da:ae: 25:79:56:74:55:78:ba:54:05:bd:04:1a:be:68:20: 33:ec:50:6b:6a:fe:cc:39:b3:80:c3:c3:a9:25:85: ac:09:46:49:c6:c8:6b:f5:db:12:20:46:4b:1b:ee: ce:6d:2b:67:b0:18:aa:f2:04:80:26:65:21:7c:5f: 9b:d7:1e:4b:e8:9a:c8:87:76:a4:cb:42:0c:73:d4: 28:ca:d5:7b:94:df:ec:36:84:4d:3f:a4:dc:e3:93: bb:ea:7d:a7:83:43:d1:ed:b0:13:bf:3e:50:3f:0c: 2c:8b:fd:05:11:73:a7:e1:13:be:7c:c1:f7:18:05: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:EC:4E:CA:25:34:E5:CB:35:D7:05:87:6A:09:8E:4B:91:27:57:5B X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:5b:50:99:c4:b9:26:38:30:fb:ba:be:85:99:f9:0d:d1:70: 66:55:c6:54:8f:73:9c:73:aa:12:97:77:d8:0c:5a:e5:11:fd: a4:e6:f1:25:ba:41:fc:71:3f:4f:e5:85:2b:83:85:bc:93:4d: 1d:9d:d9:09:92:59:57:ea:4d:a7:e5:3b:14:23:e3:e9:cd:3d: 82:24:06:7e:6e:fe:2a:d9:d4:03:a0:6e:49:13:a3:a1:39:05: 48:0c:98:4d:60:20:3b:e3:6e:ed:24:be:08:f9:56:e1:46:b5: e7:d8:2c:62:a6:f4:4b:12:e7:b6:6a:1b:fa:2f:6e:42:15:5d: ee:25:19:a1:27:ae:9e:59:36:ec:c8:f9:88:03:a1:9a:6a:39: ea:11:28:26:a6:c9:44:14:45:8b:65:a5:b8:89:ff:f8:6e:1c: 23:fd:72:ad:06:d7:78:1f:67:48:68:80:da:69:0f:21:a3:ee: 49:40:69:3d:56:26:38:c9:85:68:aa:ae:6f:b1:8a:c4:60:73: 94:d8:fd:f8:17:ec:6b:59:84:69:b3:2f:20:d3:47:0c:88:bf: d0:34:22:00:f8:8d:3e:b4:15:3b:74:8d:82:d7:b7:a6:9b:5d: 46:64:f4:28:3a:06:ba:21:93:5c:f2:e9:90:4b:01:08:67:45: 97:d4:a7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEyODUxMTAvBgNVBAUTKDYyMjhBQjY4QTI0NjBCREM1NjY4OEI2RTU1ODkxNzkw REQ4MDRCMTAwHhcNMjUwNjExMDIzOTQ4WhcNMjUwNjE4MDIzOTQ4WjAYMRYwFAYD VQQDEw02ODQ4ZWM3NS00MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgo7CfvQm4qstk8xKleP/DurYLe4cYm2xUJQnuY/Ey48Tulgd713MK3S8z9k ND5sNDcmkLkyyC/7VPaP764LTWpxJaSfzzP+ihGypzyJ48+VKuW3fXiOf3KYxLrY 3NA9cjVGSWv3FmrvcfomvNfD2DhmifABnvsopFl40F3IPBFEhJ0G2q4leVZ0VXi6 VAW9BBq+aCAz7FBrav7MObOAw8OpJYWsCUZJxshr9dsSIEZLG+7ObStnsBiq8gSA JmUhfF+b1x5L6JrIh3aky0IMc9QoytV7lN/sNoRNP6Tc45O76n2ng0PR7bATvz5Q Pwwsi/0FEXOn4RO+fMH3GAWMrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrsTsol NOXLNdcFh2oJjkuRJ1dbMB8GA1UdIwQYMBaAFGIoq2iiRgvcVmiLblWJF5DdgEsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTI4NS9FODE5MjAzOEI5 N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5eFdhSXR1VllrWGtOMkFT eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTI4NS9FODE5MjAzOEI5N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5 eFdhSXR1VllrWGtOMkFTeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0W1CZxLkmODD7ur6FmfkN0XBmVcZUj3Occ6oSl3fYDFrlEf2k5vEl ukH8cT9P5YUrg4W8k00dndkJkllX6k2n5TsUI+PpzT2CJAZ+bv4q2dQDoG5JE6Oh OQVIDJhNYCA7427tJL4I+VbhRrXn2CxipvRLEue2ahv6L25CFV3uJRmhJ66eWTbs yPmIA6GaajnqESgmpslEFEWLZaW4if/4bhwj/XKtBtd4H2dIaIDaaQ8ho+5JQGk9 ViY4yYVoqq5vsYrEYHOU2P34F+xrWYRpsy8g00cMiL/QNCIA+I0+tBU7dI2C17em m11GZPQoOga6IZNc8umQSwEIZ0WX1Kdc -----END CERTIFICATE-----Generated at Thu Jun 12 02:35:22 2025 by rpki-client