$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: EgLtn3gQxvE7Q8ePa/ASB5QPiLpD6a3ZoLw2voXfs0Y= Subject key identifier: 70:77:2C:21:38:4E:E1:B0:06:14:6B:43:28:1D:25:2F:B1:27:E9:5A Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 2597 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 2584 Signing time: Fri 30 May 2025 15:54:00 +0000 Manifest this update: Fri 30 May 2025 15:53:59 +0000 Manifest next update: Fri 06 Jun 2025 15:53:59 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: UgJTkEIpd8D4G22F2HwIvvoZLWp05NejFEx28HqTijY=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9623 (0x2597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: May 30 15:53:59 2025 GMT Not After : Jun 6 15:53:59 2025 GMT Subject: CN=6839d498-af1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:28:b8:1b:c4:65:31:87:89:55:09:92:68:38: e1:3b:be:e1:39:91:56:68:f1:11:d3:2e:95:ad:64: 93:a5:97:33:bc:e3:89:a3:4b:ec:fc:a1:e1:67:07: ef:8e:d7:3b:bc:42:f7:0f:d4:b4:96:2e:28:60:7d: d3:ba:d1:74:ca:de:01:3e:02:da:55:0a:d3:10:f4: 09:b0:3b:87:37:ba:87:2a:78:f4:cf:e2:6d:8e:0c: cb:02:af:96:e9:6b:b5:16:de:7e:37:cf:a1:d9:af: 4d:28:27:9f:0a:50:73:48:e1:15:cd:55:16:63:b9: 5c:65:3c:03:a3:b7:16:53:e5:6d:42:57:49:26:92: a6:56:84:89:50:22:e4:f6:58:53:4e:e9:31:b8:f9: 77:c6:54:64:9a:89:74:c1:6f:7a:3f:b7:0d:62:f9: d5:8b:9b:1c:4e:42:30:a5:ed:e7:73:cb:21:ed:8c: 93:82:43:63:48:4b:e0:09:05:f4:e8:8c:8c:e2:e8: 05:c0:11:82:aa:bb:4a:aa:7a:dc:0d:93:f0:88:e6: c3:73:1e:b6:3e:ee:1d:59:e0:a5:a1:fd:e0:43:63: 66:c3:03:2b:64:70:2b:85:80:14:cf:39:7c:14:32: 35:5b:fa:d3:b0:e5:c5:71:6b:b0:2f:0c:98:52:b3: b1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:77:2C:21:38:4E:E1:B0:06:14:6B:43:28:1D:25:2F:B1:27:E9:5A X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:1c:e7:28:e4:27:15:d7:b6:f8:49:25:82:4e:20:38:64:ec: 2f:91:9b:15:cf:10:f1:f8:86:b6:5b:9d:5b:6e:68:c0:8a:e8: 2d:bb:c1:ae:13:b2:96:87:9e:ac:7e:fa:a2:c5:e7:f4:40:21: 3b:a6:99:cf:a9:a3:8f:70:e9:d9:37:d6:4b:56:6a:72:e9:c5: e4:78:7a:81:13:37:40:f0:ec:f8:59:51:e4:26:43:c4:96:a8: 04:11:f6:d0:ca:4f:47:c4:27:75:f7:7d:05:65:6c:eb:a1:79: 6c:e2:ed:33:28:dc:96:7d:37:40:e8:d8:8e:ab:65:79:8a:3a: e4:2d:5d:fd:d4:78:45:a7:6e:c9:ab:58:85:65:56:53:3c:6e: cb:9b:f6:a2:93:fc:9a:24:5a:b4:23:c3:a7:a1:45:f8:e9:60: b3:64:82:ea:27:ef:3f:d9:67:68:7a:03:49:d3:4e:ab:91:72: a4:62:88:49:8d:c0:a2:30:d8:17:09:1e:d2:3a:33:f4:6a:82: 3c:a4:b8:87:47:66:09:55:39:31:33:24:3d:7b:34:e2:10:ee: 0c:28:40:38:e9:c8:a1:ae:04:0b:85:60:34:83:3c:aa:e3:b0: a4:00:ac:61:6b:23:a0:0e:53:8c:5d:36:81:f5:ca:f0:23:92: c1:37:b7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNTMwMTU1MzU5WhcNMjUwNjA2MTU1MzU5WjAYMRYwFAYD VQQDEw02ODM5ZDQ5OC1hZjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ci4G8RlMYeJVQmSaDjhO77hOZFWaPER0y6VrWSTpZczvOOJo0vs/KHhZwfv jtc7vEL3D9S0li4oYH3TutF0yt4BPgLaVQrTEPQJsDuHN7qHKnj0z+JtjgzLAq+W 6Wu1Ft5+N8+h2a9NKCefClBzSOEVzVUWY7lcZTwDo7cWU+VtQldJJpKmVoSJUCLk 9lhTTukxuPl3xlRkmol0wW96P7cNYvnVi5scTkIwpe3nc8sh7YyTgkNjSEvgCQX0 6IyM4ugFwBGCqrtKqnrcDZPwiObDcx62Pu4dWeClof3gQ2NmwwMrZHArhYAUzzl8 FDI1W/rTsOXFcWuwLwyYUrOxJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHB3LCE4 TuGwBhRrQygdJS+xJ+laMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBHOco5CcV17b4SSWCTiA4ZOwvkZsVzxDx+Ia2W51bbmjAiugtu8Gu E7KWh56sfvqixef0QCE7ppnPqaOPcOnZN9ZLVmpy6cXkeHqBEzdA8Oz4WVHkJkPE lqgEEfbQyk9HxCd1930FZWzroXls4u0zKNyWfTdA6NiOq2V5ijrkLV391HhFp27J q1iFZVZTPG7Lm/aik/yaJFq0I8OnoUX46WCzZILqJ+8/2WdoegNJ006rkXKkYohJ jcCiMNgXCR7SOjP0aoI8pLiHR2YJVTkxMyQ9ezTiEO4MKEA46cihrgQLhWA0gzyq 47CkAKxhayOgDlOMXTaB9crwI5LBN7e7 -----END CERTIFICATE-----Generated at Sat May 31 17:12:55 2025 by rpki-client