$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.mft File: ylc_CQC_ZCyx4Do7bEXGlp53I9g.mft (raw, json) Hash identifier: nPF7Pwrkvo5SjfsPSNc8oJjbrYwvxPn46AeFu2IZwYI= Subject key identifier: 34:77:13:12:54:8F:38:B0:4C:EB:3B:CE:EE:8F:D6:84:5A:B6:9C:DD Authority key identifier: CA:57:3F:09:00:BF:64:2C:B1:E0:3A:3B:6C:45:C6:96:9E:77:23:D8 Certificate issuer: /CN=A912BD8E/serialNumber=CA573F0900BF642CB1E03A3B6C45C6969E7723D8 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylc_CQC_ZCyx4Do7bEXGlp53I9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.mft Manifest number: 39 Signing time: Sun 27 Apr 2025 06:21:38 +0000 Manifest this update: Sun 27 Apr 2025 06:21:37 +0000 Manifest next update: Sun 04 May 2025 06:21:37 +0000 Files and hashes: 1: ylc_CQC_ZCyx4Do7bEXGlp53I9g.crl (hash: FT2Csd+wcI20aRuovLSLzcUCJOE4ovIqIDkOOWb7cX4=) 2: 095AF45ECE8911EFBEC5D618C4F9AE02.roa (hash: iL/PBiyd9MkCdvYQaI6UeCRqtACDsGFoCR1Zc+51I4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.crl rsync://rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylc_CQC_ZCyx4Do7bEXGlp53I9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD8E, serialNumber=CA573F0900BF642CB1E03A3B6C45C6969E7723D8 Validity Not Before: Apr 27 06:21:37 2025 GMT Not After : May 4 06:21:37 2025 GMT Subject: CN=680dccf2-3de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:67:8f:91:c2:b1:e7:de:17:07:6d:f4:c6: b4:04:84:3c:43:ce:96:66:ad:9f:aa:a1:25:d7:38: c5:d3:5a:cb:47:9d:91:65:92:a7:a5:a6:99:b6:61: f9:fb:cb:c2:cf:44:be:23:5f:2b:35:f7:d6:fe:93: ad:8b:0d:37:3d:31:72:85:02:43:09:09:e7:d6:52: 1f:23:1b:78:92:7f:7d:0b:0e:77:e4:04:34:cd:40: e9:7d:de:c0:89:29:a5:73:a0:d9:d1:ff:63:b5:e0: f2:c6:d3:92:d1:ba:16:fc:42:7d:f3:3f:0b:8d:fe: 45:73:b0:04:de:26:e0:f7:d7:01:53:9b:ec:df:48: b4:c8:d4:bf:36:b7:63:f6:9b:aa:59:7b:46:42:7b: db:1a:4a:eb:2d:1a:af:fa:5d:a1:ce:61:ef:2e:01: e3:a9:b7:f5:34:b7:09:cc:93:4f:ec:25:3e:b1:53: 1e:77:b2:fc:8e:0f:4b:a9:2d:cf:f7:ef:ff:c5:1b: f0:bb:70:b8:d5:1b:45:ac:75:7c:26:22:03:c2:b3: 98:22:35:fb:b6:e2:3d:a7:51:2c:2b:9b:6e:8f:7b: 63:3b:f7:a4:ed:8c:6f:f3:54:6c:99:0e:5c:2f:14: a2:b1:cb:65:67:cd:33:10:0c:69:1a:18:87:3c:53: 25:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:77:13:12:54:8F:38:B0:4C:EB:3B:CE:EE:8F:D6:84:5A:B6:9C:DD X509v3 Authority Key Identifier: keyid:CA:57:3F:09:00:BF:64:2C:B1:E0:3A:3B:6C:45:C6:96:9E:77:23:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ylc_CQC_ZCyx4Do7bEXGlp53I9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD8E/43D9197CCE8811EF87C07117C4F9AE02/ylc_CQC_ZCyx4Do7bEXGlp53I9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ca:cd:21:ae:84:89:1d:21:3e:1d:77:65:56:0d:d6:8d:67: bc:06:85:1e:72:bc:3c:21:69:e7:03:17:fd:c8:d2:19:8b:69: 2d:de:67:53:a0:5a:19:94:07:38:0b:77:0e:4f:88:46:b8:d1: d5:d9:54:7d:94:ff:1c:bb:b2:93:53:8a:3a:19:87:d7:5a:db: 7e:55:c7:c1:22:42:39:a0:25:c0:d8:63:81:a6:de:d6:97:bf: 15:5f:c8:0b:3e:47:07:0f:12:b4:12:6a:85:7e:24:83:22:89: 79:db:72:d6:f8:b0:a0:72:be:53:e2:4c:a7:aa:3d:62:bf:22: 2b:c6:12:f2:59:2a:2b:14:51:c7:b0:25:2f:09:50:62:ad:92: d3:7a:b0:c8:ef:9d:54:10:89:f0:c0:0d:d2:ae:22:36:43:0f: 5e:d7:2d:24:45:d6:c8:78:97:06:e0:8a:aa:c4:ad:c4:83:44: c0:45:c6:0e:66:7c:54:3d:c8:b7:8c:51:32:62:13:e9:39:02: 69:ef:da:ef:62:30:46:0f:af:08:24:3a:f4:2e:79:16:7f:3a: a8:41:61:a3:5f:cc:46:20:d4:f7:cc:b8:a0:60:17:83:b9:9e: b8:0e:02:b6:06:b9:d7:cc:96:45:1d:a3:15:fa:48:9d:5c:4c: 9e:48:b9:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QkQ4RTExMC8GA1UEBRMoQ0E1NzNGMDkwMEJGNjQyQ0IxRTAzQTNCNkM0NUM2OTY5 RTc3MjNEODAeFw0yNTA0MjcwNjIxMzdaFw0yNTA1MDQwNjIxMzdaMBgxFjAUBgNV BAMTDTY4MGRjY2YyLTNkZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFAmePkcKx594XB230xrQEhDxDzpZmrZ+qoSXXOMXTWstHnZFlkqelppm2Yfn7 y8LPRL4jXys199b+k62LDTc9MXKFAkMJCefWUh8jG3iSf30LDnfkBDTNQOl93sCJ KaVzoNnR/2O14PLG05LRuhb8Qn3zPwuN/kVzsATeJuD31wFTm+zfSLTI1L82t2P2 m6pZe0ZCe9saSustGq/6XaHOYe8uAeOpt/U0twnMk0/sJT6xUx53svyOD0upLc/3 7//FG/C7cLjVG0WsdXwmIgPCs5giNfu24j2nUSwrm26Pe2M796TtjG/zVGyZDlwv FKKxy2VnzTMQDGkaGIc8UyUtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNHcTElSP OLBM6zvO7o/WhFq2nN0wHwYDVR0jBBgwFoAUylc/CQC/ZCyx4Do7bEXGlp53I9gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCRDhFLzQzRDkxOTdDQ0U4 ODExRUY4N0MwNzExN0M0RjlBRTAyL3lsY19DUUNfWkN5eDREbzdiRVhHbHA1M0k5 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveWxjX0NRQ19aQ3l4NERvN2JFWEdscDUzSTlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC RDhFLzQzRDkxOTdDQ0U4ODExRUY4N0MwNzExN0M0RjlBRTAyL3lsY19DUUNfWkN5 eDREbzdiRVhHbHA1M0k5Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGzKzSGuhIkdIT4dd2VWDdaNZ7wGhR5yvDwhaecDF/3I0hmLaS3eZ1Og WhmUBzgLdw5PiEa40dXZVH2U/xy7spNTijoZh9da235Vx8EiQjmgJcDYY4Gm3taX vxVfyAs+RwcPErQSaoV+JIMiiXnbctb4sKByvlPiTKeqPWK/IivGEvJZKisUUcew JS8JUGKtktN6sMjvnVQQifDADdKuIjZDD17XLSRF1sh4lwbgiqrErcSDRMBFxg5m fFQ9yLeMUTJiE+k5Amnv2u9iMEYPrwgkOvQueRZ/OqhBYaNfzEYg1PfMuKBgF4O5 nrgOArYGudfMlkUdoxX6SJ1cTJ5IuWQ= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net