$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: XCpVkBOd5fR+ZFAbCCFzvQKyMhejQaJIn6XSV9/k9a0= Subject key identifier: FA:43:BD:C9:02:92:1D:B8:D7:FF:18:44:6C:3F:D9:31:B2:B0:F7:A6 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 259F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 258C Signing time: Sat 14 Jun 2025 15:42:27 +0000 Manifest this update: Sat 14 Jun 2025 15:42:27 +0000 Manifest next update: Sat 21 Jun 2025 15:42:26 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: FTZKdgm7V80krmNE8CHTrBE98+EFoWhUBqTvy26XOnU=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9631 (0x259f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Jun 14 15:42:27 2025 GMT Not After : Jun 21 15:42:26 2025 GMT Subject: CN=684d9863-0cc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:61:ca:bf:e0:76:02:d2:ea:c6:af:a4:4b:cb: 7d:b9:a8:e5:03:c5:ac:b6:5e:40:08:43:9f:7f:fa: ad:20:71:34:ac:f6:9d:c7:43:f1:24:4f:d9:99:e2: f5:a7:75:97:ca:6e:35:fe:f6:31:37:ff:40:c8:83: e7:66:46:5b:da:db:56:e0:eb:93:50:fe:8b:7d:39: d8:28:f3:90:ac:27:76:d0:e1:6b:f2:30:41:fb:b8: fc:02:46:36:85:7c:37:3e:ad:50:f7:7d:64:53:32: fd:15:d2:c1:37:68:9a:e6:c9:78:67:a4:66:86:24: 6f:b9:18:18:24:2c:55:d4:a7:ea:d9:a4:ed:42:ef: b7:f1:be:1f:61:2b:aa:83:86:d0:cb:a5:f5:f0:8a: 40:4a:12:19:ac:cd:59:ef:df:c1:c7:35:4c:99:b3: a3:43:3e:e6:2a:4e:bd:54:ea:58:01:f0:73:d6:6f: 94:5d:e0:10:34:44:79:17:18:a9:40:f4:ab:2b:e2: 82:7c:2e:4e:c8:1b:55:c4:d4:b7:77:76:51:e9:ab: 2b:bc:3d:1c:f4:b1:b0:c9:cf:99:03:b1:1f:69:2e: cb:b6:60:58:ae:fd:df:ab:3d:ec:40:8a:4e:8a:7f: d6:24:ed:b6:30:70:00:e9:06:e2:29:05:27:b2:85: 99:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:43:BD:C9:02:92:1D:B8:D7:FF:18:44:6C:3F:D9:31:B2:B0:F7:A6 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:06:8b:ac:b9:b9:ba:44:4d:df:70:de:7c:e8:12:c8:06:09: a7:c7:df:ad:71:86:71:98:a8:94:fe:5b:33:15:cd:c0:52:51: e5:91:f7:de:5d:98:74:c3:22:6e:b9:32:60:c3:d0:4d:bb:5f: 38:87:c3:a3:74:31:48:44:be:0a:67:a8:53:08:bc:f5:27:53: 56:0f:3e:fa:60:b1:6e:79:f0:dc:b8:f3:0a:20:82:e0:a6:84: 5e:82:b3:9c:98:a1:37:06:dd:85:f8:bb:df:b5:c5:ea:ce:a3: 89:8c:fd:21:b0:c6:44:b8:b5:dd:ef:53:5d:5e:f4:ae:09:b5: d7:fc:51:48:23:5c:1f:f0:be:82:76:16:a0:9c:f1:de:a0:12: 1c:94:c2:f6:a6:e8:07:8f:df:f7:61:6e:28:0f:dd:4d:61:36: 43:49:47:7a:7d:5a:45:74:ac:49:21:a6:59:cc:34:d9:7c:50: 1e:d6:6e:dd:4b:00:f9:f7:f4:e3:90:5a:58:17:de:b1:79:e5: 26:f0:c3:7d:08:9f:42:18:f5:86:6f:80:4f:3a:ca:56:ca:30: d7:c0:7d:d7:16:21:a3:39:1c:ee:94:2f:e9:ec:01:ca:59:94: 30:67:56:2a:07:8b:a3:f1:da:42:5a:80:a0:cb:69:58:18:b7: 21:42:f9:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNjE0MTU0MjI3WhcNMjUwNjIxMTU0MjI2WjAYMRYwFAYD VQQDEw02ODRkOTg2My0wY2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWHKv+B2AtLqxq+kS8t9uajlA8Wstl5ACEOff/qtIHE0rPadx0PxJE/ZmeL1 p3WXym41/vYxN/9AyIPnZkZb2ttW4OuTUP6LfTnYKPOQrCd20OFr8jBB+7j8AkY2 hXw3Pq1Q931kUzL9FdLBN2ia5sl4Z6RmhiRvuRgYJCxV1Kfq2aTtQu+38b4fYSuq g4bQy6X18IpAShIZrM1Z79/BxzVMmbOjQz7mKk69VOpYAfBz1m+UXeAQNER5Fxip QPSrK+KCfC5OyBtVxNS3d3ZR6asrvD0c9LGwyc+ZA7EfaS7LtmBYrv3fqz3sQIpO in/WJO22MHAA6QbiKQUnsoWZ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpDvckC kh241/8YRGw/2TGysPemMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLBousubm6RE3fcN586BLIBgmnx9+tcYZxmKiU/lszFc3AUlHlkffe XZh0wyJuuTJgw9BNu184h8OjdDFIRL4KZ6hTCLz1J1NWDz76YLFuefDcuPMKIILg poRegrOcmKE3Bt2F+LvftcXqzqOJjP0hsMZEuLXd71NdXvSuCbXX/FFII1wf8L6C dhagnPHeoBIclML2pugHj9/3YW4oD91NYTZDSUd6fVpFdKxJIaZZzDTZfFAe1m7d SwD59/TjkFpYF96xeeUm8MN9CJ9CGPWGb4BPOspWyjDXwH3XFiGjORzulC/p7AHK WZQwZ1YqB4uj8dpCWoCgy2lYGLchQvlC -----END CERTIFICATE-----Generated at Sun Jun 15 09:31:21 2025 by rpki-client