$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: h6ID+ellT0KII1whnv8ybLezGR8oJqpcd/1Sdbey/zQ= Subject key identifier: 6A:77:C2:39:2B:D7:95:36:2A:0D:07:30:C0:20:90:A8:5F:9B:37:DE Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 07E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07BA Signing time: Sat 06 Sep 2025 21:37:08 +0000 Manifest this update: Sat 06 Sep 2025 21:37:08 +0000 Manifest next update: Sat 13 Sep 2025 21:37:08 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: eH71Fg2tk7Xd4J0xUBj4LmB7MLCeunRTj28h3/urtMY=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2018 (0x7e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Sep 6 21:37:08 2025 GMT Not After : Sep 13 21:37:08 2025 GMT Subject: CN=68bca984-65db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:63:45:11:fb:77:52:aa:06:74:98:7c:da:31: f7:03:f0:d3:c6:a2:21:11:12:2d:b5:19:82:f8:1d: 5f:ff:ff:60:bf:41:0e:c9:b1:ba:5e:f7:b7:b8:7d: 22:4f:50:37:62:8c:d1:90:24:18:dc:79:f8:45:61: 60:a8:44:f9:61:f6:33:6c:6e:5d:0e:c6:38:39:35: 88:9a:a8:ad:64:ea:f5:64:6a:88:a8:01:a4:50:48: ed:b3:14:19:8d:d8:7f:40:c2:03:b2:66:b8:a0:74: bb:fa:36:56:a1:04:ba:17:2d:31:58:a4:d6:01:fa: c4:5b:11:35:2d:0e:ab:69:47:e2:1c:22:dc:b2:5a: 04:a3:02:e6:a6:dd:aa:e6:a3:96:7b:1b:5e:18:c9: 90:b0:13:90:41:c8:18:32:ac:a8:1c:70:f3:58:e5: a8:fb:ea:5e:7d:a7:f9:bb:f9:1e:c2:8a:7d:64:fb: 92:50:81:27:89:4b:8c:d4:ba:d4:c9:c5:53:3b:3e: 85:8b:5a:20:e5:77:69:a8:d7:23:43:d6:17:dc:f5: d2:51:21:b9:a4:53:99:e5:97:28:71:52:50:75:2e: 5e:7e:ba:3f:0b:59:cf:33:f2:11:f6:1a:2f:4e:9d: 13:07:05:77:92:73:dc:b6:b8:f9:ce:6f:00:8c:74: db:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:77:C2:39:2B:D7:95:36:2A:0D:07:30:C0:20:90:A8:5F:9B:37:DE X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a1:4b:5b:98:38:ba:c5:e7:e2:56:5a:c4:69:83:db:85:ab: 07:62:3f:70:59:75:bf:40:f5:82:1b:6d:3e:5e:ff:f8:24:6e: ae:70:8d:c3:53:a7:da:03:44:15:82:6e:62:6f:ae:29:21:ee: 88:5a:f0:58:13:d2:31:7c:6b:94:7f:53:9c:05:dd:3a:a7:c0: 60:72:2c:7d:f2:b2:b0:58:cd:9a:b5:06:96:95:44:b9:96:a0: ec:ea:ba:f5:68:56:5d:2c:21:5f:86:16:5f:3f:2f:8b:07:55: be:0f:ca:b3:5d:37:f3:bb:6c:c2:98:ff:37:8c:0a:da:e0:74: b1:6c:c1:2c:47:9d:77:4d:74:20:ce:e9:57:7a:5b:9b:af:61: 4a:21:b7:60:de:d9:e8:91:00:85:af:b5:0f:4a:4f:0d:82:e0: 23:24:0f:be:ef:03:6d:92:b4:a0:c5:ce:14:e3:c2:52:d6:87: 5c:36:21:f0:f4:28:90:66:ee:37:0c:9c:2a:8e:e3:c3:71:61: f3:31:78:59:bb:9a:d1:a6:8a:9f:15:1a:78:e9:91:c4:6a:21: ef:9a:48:1c:dd:50:72:92:43:bf:25:6c:2b:48:ad:72:90:7e: 75:43:39:58:91:81:67:b1:08:7e:a1:c0:bd:9f:43:0f:48:5d: 41:a0:05:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUwOTA2MjEzNzA4WhcNMjUwOTEzMjEzNzA4WjAYMRYwFAYD VQQDEw02OGJjYTk4NC02NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2NFEft3UqoGdJh82jH3A/DTxqIhERIttRmC+B1f//9gv0EOybG6Xve3uH0i T1A3YozRkCQY3Hn4RWFgqET5YfYzbG5dDsY4OTWImqitZOr1ZGqIqAGkUEjtsxQZ jdh/QMIDsma4oHS7+jZWoQS6Fy0xWKTWAfrEWxE1LQ6raUfiHCLcsloEowLmpt2q 5qOWexteGMmQsBOQQcgYMqyoHHDzWOWo++pefaf5u/kewop9ZPuSUIEniUuM1LrU ycVTOz6Fi1og5XdpqNcjQ9YX3PXSUSG5pFOZ5ZcocVJQdS5efro/C1nPM/IR9hov Tp0TBwV3knPctrj5zm8AjHTbdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp3wjkr 15U2Kg0HMMAgkKhfmzfeMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAooUtbmDi6xefiVlrEaYPbhasHYj9wWXW/QPWCG20+Xv/4JG6ucI3D U6faA0QVgm5ib64pIe6IWvBYE9IxfGuUf1OcBd06p8Bgcix98rKwWM2atQaWlUS5 lqDs6rr1aFZdLCFfhhZfPy+LB1W+D8qzXTfzu2zCmP83jAra4HSxbMEsR513TXQg zulXelubr2FKIbdg3tnokQCFr7UPSk8NguAjJA++7wNtkrSgxc4U48JS1odcNiHw 9CiQZu43DJwqjuPDcWHzMXhZu5rRpoqfFRp46ZHEaiHvmkgc3VBykkO/JWwrSK1y kH51QzlYkYFnsQh+ocC9n0MPSF1BoAXf -----END CERTIFICATE-----Generated at Mon Sep 8 16:20:17 2025 by rpki-client