$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: QA6kT+4i+btrGMIRCpyoyo9IOxOQaCzqLZ/Doht32Po= Subject key identifier: 81:1A:B9:F0:30:CD:05:AF:47:0A:98:E7:3C:9F:BA:3E:49:2D:56:A3 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25B8 Signing time: Mon 08 Sep 2025 15:43:18 +0000 Manifest this update: Mon 08 Sep 2025 15:43:17 +0000 Manifest next update: Mon 15 Sep 2025 15:43:17 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: gdqiVjEJwOFel5cBHA2k1/oohaYFbZFbX2jKSwZxRLk=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9675 (0x25cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Sep 8 15:43:17 2025 GMT Not After : Sep 15 15:43:17 2025 GMT Subject: CN=68bef995-10b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0f:03:98:6d:80:25:b0:87:35:87:49:1a:84: 91:70:aa:d3:35:60:7a:24:f2:f7:cd:6d:04:c1:bd: 4f:5a:86:1c:27:2a:17:e2:69:03:47:22:47:4e:28: 57:f8:b2:f6:40:f5:97:5e:68:2e:c5:16:57:b3:f8: ac:46:60:f6:6d:19:24:ac:f1:16:82:20:1a:34:db: 26:c9:97:13:87:6a:2b:55:85:a4:76:e3:2e:c4:30: 96:7a:1f:26:7d:e6:27:80:39:de:7c:95:bf:54:23: 42:c3:1b:57:be:9e:db:e0:14:9d:c4:a9:83:fc:9d: 7c:df:ce:9a:7b:b8:2d:5f:d7:ad:b3:f4:f6:af:b9: a8:13:93:ee:c8:40:55:d6:96:91:16:fa:2f:12:cd: 04:84:33:6b:82:30:5a:9c:54:db:d8:c0:10:1c:f7: 48:15:16:50:34:9e:1b:2b:4a:bd:34:89:18:e7:62: 68:95:45:c8:7b:f0:54:e7:e8:f5:2e:83:34:a2:70: 3d:8f:fb:dc:1f:63:45:45:c1:83:57:32:1c:d5:a4: 7b:73:0c:5d:29:f9:b3:32:30:b2:67:0e:cf:0f:a4: af:91:8c:d5:4d:9a:5d:1a:e9:a3:15:15:e2:ca:93: 52:2a:7d:25:45:a6:6d:bf:8a:85:91:f8:ec:e0:66: 78:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1A:B9:F0:30:CD:05:AF:47:0A:98:E7:3C:9F:BA:3E:49:2D:56:A3 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6f:db:2c:88:f6:d5:62:c1:df:ee:78:4c:d0:eb:b4:13:79: c0:00:e2:bf:dd:3d:76:71:d1:d2:35:71:b3:3b:6a:1e:8e:9d: ec:48:2e:3f:a5:76:48:19:82:98:b4:4d:a4:c7:a1:90:e3:f7: 1b:85:ea:69:32:8c:cd:5e:e2:32:6c:98:39:30:f2:85:ae:5d: 1e:f0:eb:2b:4c:df:75:e7:6a:0d:3a:18:2c:3c:0b:d5:cd:9f: 17:84:81:12:60:a0:3b:2e:25:41:1b:b2:7f:a0:6e:de:f5:5d: 5c:e2:4c:1b:a4:e7:54:d2:0d:fe:ae:b7:93:1c:20:38:94:ac: 6b:a8:c2:5a:7b:1a:f0:55:bf:0c:2c:1a:38:80:0c:fc:06:43: 19:10:ee:d7:04:6a:6e:e0:48:32:d7:51:39:77:af:cd:3f:d9: b2:8a:f5:5a:9d:96:3b:b6:06:4a:e2:84:1b:ca:3a:87:d0:ad: 2b:ff:7f:3f:79:61:e9:01:8c:b3:77:40:79:17:92:80:b2:63: 8b:3b:9b:2a:7f:f2:b0:cc:0a:ae:3e:31:6d:f9:3d:69:92:e5: 65:5f:57:68:3a:6c:fd:f5:b4:be:f6:0f:5e:a0:50:7f:cd:04: 45:ba:77:62:ff:00:4d:6e:25:37:57:ef:03:b8:c1:98:2e:ae: 59:26:30:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwOTA4MTU0MzE3WhcNMjUwOTE1MTU0MzE3WjAYMRYwFAYD VQQDEw02OGJlZjk5NS0xMGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxw8DmG2AJbCHNYdJGoSRcKrTNWB6JPL3zW0Ewb1PWoYcJyoX4mkDRyJHTihX +LL2QPWXXmguxRZXs/isRmD2bRkkrPEWgiAaNNsmyZcTh2orVYWkduMuxDCWeh8m feYngDnefJW/VCNCwxtXvp7b4BSdxKmD/J18386ae7gtX9ets/T2r7moE5PuyEBV 1paRFvovEs0EhDNrgjBanFTb2MAQHPdIFRZQNJ4bK0q9NIkY52JolUXIe/BU5+j1 LoM0onA9j/vcH2NFRcGDVzIc1aR7cwxdKfmzMjCyZw7PD6SvkYzVTZpdGumjFRXi ypNSKn0lRaZtv4qFkfjs4GZ4FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEaufAw zQWvRwqY5zyfuj5JLVajMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqb9ssiPbVYsHf7nhM0Ou0E3nAAOK/3T12cdHSNXGzO2oejp3sSC4/ pXZIGYKYtE2kx6GQ4/cbheppMozNXuIybJg5MPKFrl0e8OsrTN9152oNOhgsPAvV zZ8XhIESYKA7LiVBG7J/oG7e9V1c4kwbpOdU0g3+rreTHCA4lKxrqMJaexrwVb8M LBo4gAz8BkMZEO7XBGpu4Egy11E5d6/NP9myivVanZY7tgZK4oQbyjqH0K0r/38/ eWHpAYyzd0B5F5KAsmOLO5sqf/KwzAquPjFt+T1pkuVlX1doOmz99bS+9g9eoFB/ zQRFundi/wBNbiU3V+8DuMGYLq5ZJjAp -----END CERTIFICATE-----Generated at Wed Sep 10 03:53:56 2025 by rpki-client