$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: 2kNDnqI+Q6BrfZjeThfvv6p5nWcynKXtiUQbLNBnmP0= Subject key identifier: CC:D4:A0:F4:CF:01:FF:36:59:D3:81:D5:B5:F2:12:F4:DB:71:7A:52 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 0166 Signing time: Tue 01 Jul 2025 04:28:48 +0000 Manifest this update: Tue 01 Jul 2025 04:28:48 +0000 Manifest next update: Tue 08 Jul 2025 04:28:48 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: xIJHHayA1VNt+/spGIYIfCjTERVMd0JVFXe5Cs2zh+M=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: g09v6jk8fn3awL6foCEfKGlvvvO5I0PHpOGz6LziEuA=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: rhIhi3I6SpyrkjjQ3cL8Mw2vXOogWSjfaZP+3P/2bFk=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: qvUP6d81IdrzZbKdEjVG1snn+Y2Byr8jMGRCFKnK8TM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Jul 1 04:28:48 2025 GMT Not After : Jul 8 04:28:48 2025 GMT Subject: CN=68636400-03d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:82:70:46:8a:f5:6d:89:de:0e:1d:7c:ef:9e: 25:5c:9a:5b:86:d6:72:b3:01:a5:e5:9e:51:22:5d: 80:33:b7:cc:00:3c:45:1a:35:9f:27:12:96:20:c0: a3:8e:d7:80:e3:cb:c1:15:7a:dc:0f:c7:23:05:9f: cd:ca:ab:5a:c3:b3:72:b4:52:50:c2:24:17:d8:30: 5d:44:25:f0:6f:d6:da:22:96:3d:87:5d:9f:6b:58: 2f:92:21:9c:a4:e5:6e:cd:23:61:1a:49:6e:d3:c2: 44:dd:27:18:fa:f0:89:82:15:d2:f1:23:47:8a:cf: 4b:c0:47:ac:43:4b:47:b1:1d:f2:4a:61:64:e1:d8: d3:14:cc:1f:9c:ba:4f:4a:73:2a:96:05:97:13:9b: e2:8c:30:7c:9f:47:8e:54:2f:5b:46:fc:d6:df:57: 54:e5:c2:7b:de:43:6c:b6:8b:6b:64:4c:d9:11:35: 85:a1:bc:62:81:c8:b9:53:84:24:87:20:8c:56:37: 87:16:aa:ca:1f:cf:25:d6:02:18:b6:19:ec:95:1e: d4:b0:7f:00:02:70:01:d2:94:af:73:98:3f:3b:f5: 3d:3a:4b:64:6a:d9:82:04:11:e1:03:fd:05:f7:27: 47:80:b9:b5:2c:50:8e:ac:8e:a2:ef:29:a7:f2:a3: 2f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D4:A0:F4:CF:01:FF:36:59:D3:81:D5:B5:F2:12:F4:DB:71:7A:52 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2b:a9:90:a3:9e:06:66:2c:4f:6d:4b:f2:0d:93:5c:5c:80: ae:22:8a:30:1a:5d:14:70:18:1e:26:b8:f3:9c:18:46:7c:9e: ea:3b:f4:c3:e8:31:79:b8:41:86:36:37:d0:20:cc:9c:58:ba: eb:b0:8d:ae:d4:fa:e7:89:58:dd:43:37:78:6a:e0:c2:83:69: 82:e6:2f:5d:02:64:74:e8:23:63:19:92:26:3c:07:48:c3:05: 89:b6:ff:c6:74:77:70:9c:5e:ab:4c:01:51:7f:0f:9f:8e:37: fc:82:31:f1:1e:4a:25:1f:55:67:9d:26:21:d8:b1:20:9b:a3: e9:a1:e5:1f:5e:f3:10:24:d7:02:80:31:89:15:d3:dc:cb:27: 45:f9:a5:50:72:00:0c:63:f5:d2:62:e8:c1:13:f0:c5:7f:14: 6b:9c:59:40:a4:3b:7d:66:e3:42:62:4d:8a:60:48:23:fa:71: 15:71:e8:30:46:96:5a:d6:2b:44:ad:9d:a2:fc:74:c2:cf:fc: cb:7e:a6:47:6e:17:99:1f:37:f6:bd:fb:10:08:95:a8:d2:92: e9:8a:ac:a7:11:81:70:09:2c:62:49:5c:e5:60:57:fe:3f:bc: c4:c4:d4:4d:b1:c3:85:be:6f:f8:33:d1:2b:66:e8:cd:54:c6: 70:b5:5d:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUwNzAxMDQyODQ4WhcNMjUwNzA4MDQyODQ4WjAYMRYwFAYD VQQDEw02ODYzNjQwMC0wM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoJwRor1bYneDh18754lXJpbhtZyswGl5Z5RIl2AM7fMADxFGjWfJxKWIMCj jteA48vBFXrcD8cjBZ/Nyqtaw7NytFJQwiQX2DBdRCXwb9baIpY9h12fa1gvkiGc pOVuzSNhGklu08JE3ScY+vCJghXS8SNHis9LwEesQ0tHsR3ySmFk4djTFMwfnLpP SnMqlgWXE5vijDB8n0eOVC9bRvzW31dU5cJ73kNstotrZEzZETWFobxigci5U4Qk hyCMVjeHFqrKH88l1gIYthnslR7UsH8AAnAB0pSvc5g/O/U9OktkatmCBBHhA/0F 9ydHgLm1LFCOrI6i7ymn8qMv3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzUoPTP Af82WdOB1bXyEvTbcXpSMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvK6mQo54GZixPbUvyDZNcXICuIoowGl0UcBgeJrjznBhGfJ7qO/TD 6DF5uEGGNjfQIMycWLrrsI2u1PrniVjdQzd4auDCg2mC5i9dAmR06CNjGZImPAdI wwWJtv/GdHdwnF6rTAFRfw+fjjf8gjHxHkolH1VnnSYh2LEgm6PpoeUfXvMQJNcC gDGJFdPcyydF+aVQcgAMY/XSYujBE/DFfxRrnFlApDt9ZuNCYk2KYEgj+nEVcegw RpZa1itErZ2i/HTCz/zLfqZHbheZHzf2vfsQCJWo0pLpiqynEYFwCSxiSVzlYFf+ P7zExNRNscOFvm/4M9ErZujNVMZwtV0J -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:58 2025 by rpki-client