$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: dHI5addOu6jCLxaztPoumd/2zLEgGE/8jgPvnoGlnfc= Subject key identifier: 30:EA:F0:94:29:3C:5A:BA:8E:3D:FC:A2:2F:88:2D:DE:19:08:41:06 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25A0 Signing time: Thu 24 Jul 2025 15:49:13 +0000 Manifest this update: Thu 24 Jul 2025 15:49:12 +0000 Manifest next update: Thu 31 Jul 2025 15:49:12 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: hCheV4wwjmaSnzzOYCLoIV+G975QFAreNnj6TxtU2qU=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 15:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9651 (0x25b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Jul 24 15:49:12 2025 GMT Not After : Jul 31 15:49:12 2025 GMT Subject: CN=688255f8-8f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0a:8f:c8:a5:98:30:89:47:13:57:b1:35:02: 8c:9a:e3:ec:1d:1b:a2:fa:c7:08:f1:45:b3:20:af: 4e:96:0a:ac:14:76:79:84:0a:25:4b:ec:4a:c3:33: 8d:a2:4b:e7:14:76:f2:5b:fb:3d:9e:0d:91:4d:92: 10:01:81:2b:75:a4:b7:ba:2d:33:7d:8f:ba:a2:1c: 2e:97:d1:7f:1f:fa:8f:83:2e:6a:a0:a6:6a:58:93: bd:fd:6e:f7:37:85:01:1e:43:1a:03:d1:d0:08:5d: d1:f2:e0:54:d9:48:aa:27:76:a1:f8:62:28:12:84: 00:00:ff:dd:a7:18:01:4b:f5:06:f2:b2:e7:bf:c2: 89:35:be:0c:6a:7e:92:1c:64:15:f4:c1:e8:8f:e0: 23:c3:ef:d7:f7:8c:3c:09:3f:92:dc:c9:21:7e:0f: 0c:d4:4d:20:f7:f2:d5:32:ca:b2:15:27:b7:6a:71: 70:40:a4:a1:ac:fd:d3:92:c0:b8:fe:40:af:4c:e5: 14:1b:41:14:9e:31:68:7a:2e:dc:71:3c:13:86:eb: 5e:79:67:3b:02:e1:22:9f:95:38:c2:54:2a:21:54: 42:cc:16:02:f4:f6:e6:01:27:73:35:06:89:97:2d: 68:8f:b4:7b:7a:11:78:88:c1:75:fa:59:6b:55:9b: 18:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:EA:F0:94:29:3C:5A:BA:8E:3D:FC:A2:2F:88:2D:DE:19:08:41:06 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e5:2e:09:ec:2b:4e:65:30:e3:22:61:ea:ac:ff:d3:91:9f: a9:3b:60:d4:f2:91:73:ad:86:61:d7:25:8a:c0:19:cb:c6:88: ac:6d:cb:ee:e8:aa:71:60:7c:85:06:74:35:4b:cc:44:fd:c2: b8:09:8e:37:b7:71:fb:0e:37:0e:fd:f0:51:f1:ce:b2:65:be: 8d:34:c0:11:c7:26:71:37:13:33:75:1d:f5:bc:96:15:f4:e7: c3:2e:72:6b:18:ab:4c:c8:68:94:f3:5a:1c:e8:07:02:7b:8d: 51:51:87:26:65:b9:ab:19:24:9b:dd:b6:36:8c:a5:e2:d5:fc: a1:85:4a:8b:2f:bc:b6:11:8a:c5:45:31:b0:b2:5f:3e:0e:ee: e1:14:87:4e:86:eb:f7:22:74:94:68:3c:e2:45:48:96:8f:bd: 75:44:a3:30:4d:fc:9b:46:06:cb:d9:13:07:b0:e5:8c:60:bd: 63:d4:e1:65:08:8d:8c:38:82:1b:ea:c5:bc:37:c3:ed:94:6b: 9f:46:2e:94:89:4f:e0:69:3a:b6:3a:28:cf:5e:e7:21:a9:d3: 2c:78:f7:4e:65:1c:31:39:58:e5:3f:95:da:ab:e2:d4:c9:e2: b0:1c:06:7e:bf:8e:3b:dc:6e:5b:8d:b1:e3:c5:fe:ac:c3:d6: 8d:07:ea:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNzI0MTU0OTEyWhcNMjUwNzMxMTU0OTEyWjAYMRYwFAYD VQQDEw02ODgyNTVmOC04ZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQqPyKWYMIlHE1exNQKMmuPsHRui+scI8UWzIK9OlgqsFHZ5hAolS+xKwzON okvnFHbyW/s9ng2RTZIQAYErdaS3ui0zfY+6ohwul9F/H/qPgy5qoKZqWJO9/W73 N4UBHkMaA9HQCF3R8uBU2UiqJ3ah+GIoEoQAAP/dpxgBS/UG8rLnv8KJNb4Man6S HGQV9MHoj+Ajw+/X94w8CT+S3Mkhfg8M1E0g9/LVMsqyFSe3anFwQKShrP3TksC4 /kCvTOUUG0EUnjFoei7ccTwThuteeWc7AuEin5U4wlQqIVRCzBYC9PbmASdzNQaJ ly1oj7R7ehF4iMF1+llrVZsYWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDq8JQp PFq6jj38oi+ILd4ZCEEGMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz5S4J7CtOZTDjImHqrP/TkZ+pO2DU8pFzrYZh1yWKwBnLxoisbcvu 6KpxYHyFBnQ1S8xE/cK4CY43t3H7DjcO/fBR8c6yZb6NNMARxyZxNxMzdR31vJYV 9OfDLnJrGKtMyGiU81oc6AcCe41RUYcmZbmrGSSb3bY2jKXi1fyhhUqLL7y2EYrF RTGwsl8+Du7hFIdOhuv3InSUaDziRUiWj711RKMwTfybRgbL2RMHsOWMYL1j1OFl CI2MOIIb6sW8N8PtlGufRi6UiU/gaTq2OijPXuchqdMsePdOZRwxOVjlP5Xaq+LU yeKwHAZ+v4473G5bjbHjxf6sw9aNB+qY -----END CERTIFICATE-----Generated at Fri Jul 25 17:26:19 2025 by rpki-client