$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: T5oSX/nD3ERhpP1jUBynPiEDwtOmSYN5W2f1lkqWb4k= Subject key identifier: 32:47:8C:DB:99:02:01:49:90:57:5D:5B:AA:8B:BF:8D:86:AA:8F:40 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25D0 Signing time: Sun 26 Oct 2025 15:50:06 +0000 Manifest this update: Sun 26 Oct 2025 15:50:05 +0000 Manifest next update: Sun 02 Nov 2025 15:50:05 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: zaQc+BNTHxdjx1NaC9ODZ/v3efLDMrK7eNFRBKRjPU8=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 15:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9699 (0x25e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Oct 26 15:50:05 2025 GMT Not After : Nov 2 15:50:05 2025 GMT Subject: CN=68fe432d-e9d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:36:af:61:88:5c:e2:a1:be:aa:24:d8:69:aa: 61:82:9c:d9:0f:3d:59:6b:f6:5f:f1:c1:fb:80:25: 30:11:9e:4b:d1:b4:9c:1a:ec:14:f9:89:3e:3e:2f: 7e:65:94:7b:5e:5f:54:ae:1c:48:b1:fb:68:22:64: 15:37:cc:19:65:d5:b9:87:e5:3b:6f:1b:09:ad:66: 90:c7:3c:0d:5a:6c:23:c4:fc:86:72:87:99:4d:ac: 23:94:0a:21:7b:80:30:09:4e:b0:99:e0:b5:72:34: 03:36:f3:b1:b4:63:fb:0d:1d:f2:63:87:e4:d9:80: cd:05:1f:86:e0:fc:70:a8:4f:e7:75:db:d5:9b:f8: 60:24:44:93:36:94:8f:d4:7b:dc:cd:1e:b8:58:33: 7f:28:56:3c:8d:07:f6:f2:3c:be:0d:66:34:de:9d: 67:54:e1:23:8f:88:f6:8a:54:de:d2:07:e5:95:0a: 1a:57:49:50:ec:7b:4b:3b:0f:1e:cb:b7:ae:b3:06: 05:31:c3:b3:bc:14:9c:f6:08:b6:de:d2:a7:d6:ad: fb:55:c5:f1:9a:77:d7:3a:c8:35:fd:c3:6f:9f:6e: 56:d1:b2:b9:17:f6:3a:df:b0:cb:e0:98:2d:8d:6b: b5:fe:51:b1:80:3f:59:15:06:8d:19:2a:15:5c:c1: 79:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:47:8C:DB:99:02:01:49:90:57:5D:5B:AA:8B:BF:8D:86:AA:8F:40 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:1f:da:12:06:89:da:ef:72:bf:fe:4c:75:7a:0f:ff:64:04: 66:45:09:46:90:59:76:83:70:18:d1:75:c8:78:68:75:e1:02: f0:b1:4e:25:a7:71:d4:cf:66:5a:69:a0:ac:20:f6:99:dd:0d: ec:06:f3:55:dc:93:9b:31:9c:02:6d:98:35:9c:90:01:00:df: 56:97:78:0b:95:61:62:3d:99:71:b2:95:df:00:29:76:ed:43: 7d:da:dd:35:e2:63:f7:69:22:2d:e1:0f:cf:9d:cd:02:89:e6: af:23:9e:7a:2e:39:82:e0:db:e8:3b:93:8b:93:ee:a4:24:d3: 5d:12:86:59:a4:47:02:e2:24:91:7b:f8:f9:51:59:64:28:7d: 1a:f0:84:8f:48:8c:16:2c:d7:0a:d1:47:7e:a1:e1:e5:ad:77: ba:3f:fc:0e:27:30:13:08:0e:05:9d:a1:99:34:5b:c0:bb:a7: 51:de:fc:b2:65:0f:1f:58:27:10:54:da:61:9a:ba:24:80:b6: 18:07:b0:a7:bf:17:5d:c0:e9:ae:2c:15:ec:8a:bc:9e:11:3a: 8d:23:ee:2a:12:50:7d:e9:6f:91:0a:e1:67:f0:3a:b9:e3:97: 28:8c:77:a7:1a:dc:ce:e5:9d:1a:68:5d:72:f8:4f:e8:36:50: 94:61:aa:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUxMDI2MTU1MDA1WhcNMjUxMTAyMTU1MDA1WjAYMRYwFAYD VQQDEw02OGZlNDMyZC1lOWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzavYYhc4qG+qiTYaaphgpzZDz1Za/Zf8cH7gCUwEZ5L0bScGuwU+Yk+Pi9+ ZZR7Xl9UrhxIsftoImQVN8wZZdW5h+U7bxsJrWaQxzwNWmwjxPyGcoeZTawjlAoh e4AwCU6wmeC1cjQDNvOxtGP7DR3yY4fk2YDNBR+G4PxwqE/nddvVm/hgJESTNpSP 1HvczR64WDN/KFY8jQf28jy+DWY03p1nVOEjj4j2ilTe0gfllQoaV0lQ7HtLOw8e y7euswYFMcOzvBSc9gi23tKn1q37VcXxmnfXOsg1/cNvn25W0bK5F/Y637DL4Jgt jWu1/lGxgD9ZFQaNGSoVXMF5XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJHjNuZ AgFJkFddW6qLv42Gqo9AMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFH9oSBona73K//kx1eg//ZARmRQlGkFl2g3AY0XXIeGh14QLwsU4l p3HUz2ZaaaCsIPaZ3Q3sBvNV3JObMZwCbZg1nJABAN9Wl3gLlWFiPZlxspXfACl2 7UN92t014mP3aSIt4Q/Pnc0CieavI556LjmC4NvoO5OLk+6kJNNdEoZZpEcC4iSR e/j5UVlkKH0a8ISPSIwWLNcK0Ud+oeHlrXe6P/wOJzATCA4FnaGZNFvAu6dR3vyy ZQ8fWCcQVNphmrokgLYYB7CnvxddwOmuLBXsiryeETqNI+4qElB96W+RCuFn8Dq5 45cojHenGtzO5Z0aaF1y+E/oNlCUYar+ -----END CERTIFICATE-----Generated at Mon Oct 27 22:47:48 2025 by rpki-client