$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: FJ8hkZJW452szLAJmbL+SvH8f+U/5lDTc6s+lNmYpwc= Subject key identifier: FD:F2:B3:92:1A:E8:EA:85:A5:47:B6:41:98:7B:70:0A:65:81:52:50 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 2585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 2572 Signing time: Thu 24 Apr 2025 16:12:54 +0000 Manifest this update: Thu 24 Apr 2025 16:12:53 +0000 Manifest next update: Thu 01 May 2025 16:12:53 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: l9oreWTNIayyh2ShjUiNq7mY+cAEdnYSB++svJEuFds=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9605 (0x2585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Apr 24 16:12:53 2025 GMT Not After : May 1 16:12:53 2025 GMT Subject: CN=680a6306-9c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7d:81:fb:0e:f5:00:59:fc:84:6a:ca:1d:7b: 9b:b3:5c:0d:37:5d:96:fb:b8:dc:52:91:f4:da:35: d9:57:6e:7a:af:7b:24:ff:33:cd:16:34:e7:58:a6: d5:34:56:73:06:b5:7d:54:6d:26:11:3f:1b:5a:6b: e9:6b:26:ce:1f:7e:57:44:f3:b5:66:12:f2:5b:d5: b3:4c:a9:fb:26:f2:09:4a:c6:b2:1a:89:a0:33:97: a5:fe:bb:3f:75:cb:36:ac:cd:15:65:79:dd:32:d7: ba:62:9d:b7:41:fb:2c:47:11:bf:06:8b:a5:3b:f0: f7:13:da:f8:18:70:1f:55:5d:55:dc:12:b6:7d:fa: 5b:7c:5c:c6:42:58:37:4b:22:07:a7:04:9a:92:67: 5b:dc:cd:3f:86:9d:2e:36:40:e6:37:41:ba:48:13: 90:69:2b:11:ea:f5:3b:59:3a:d1:9c:f4:66:ca:a4: a0:67:35:9b:65:ee:03:e4:cd:fd:20:03:8f:bd:c2: a2:9a:c1:af:8e:3a:db:0f:1d:db:76:bf:6d:50:ef: a4:71:62:e8:33:d7:c3:83:c7:2c:b5:64:fe:7a:b3: ab:d9:7a:47:0d:20:c9:7a:e8:2f:4c:5e:e3:71:be: 73:f2:20:fd:f1:5e:98:67:25:a4:69:57:a2:4a:ef: da:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F2:B3:92:1A:E8:EA:85:A5:47:B6:41:98:7B:70:0A:65:81:52:50 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:c7:e3:cd:fd:7c:1a:ae:01:da:c9:66:2f:42:33:9b:4b:08: 1b:54:2f:0c:82:8e:ed:58:40:79:00:2a:0c:f8:50:b2:3f:1f: 4b:b6:17:81:0b:b9:d5:b3:19:f8:00:9b:8c:d9:5d:c3:61:ec: 8c:ab:02:91:ee:16:36:8b:a2:50:28:88:7d:f9:f9:7f:84:6f: 9e:64:e6:ff:eb:bf:ad:86:ef:f8:9a:d1:c2:29:51:54:b0:31: 18:4d:51:01:e1:25:26:e3:84:51:2d:19:bf:ab:43:10:75:7c: 85:bb:d6:4b:4d:17:c5:d7:00:33:50:d2:4e:8b:96:4a:73:a3: 55:ec:ca:e3:0e:e5:b8:67:83:48:83:c1:8e:bf:a6:2d:ba:14: 56:95:06:35:31:9d:dc:57:9c:ae:43:70:ff:c5:ed:31:2e:76: 2b:9a:f9:bd:5a:d1:4a:95:4f:df:e6:14:5c:ab:b0:7b:ca:f7: 60:69:e5:00:44:ee:90:98:b7:e0:b5:6c:c3:3e:fc:32:4f:4c: bf:f4:92:17:fa:14:8f:93:f8:cf:a0:b8:14:1e:72:b7:9c:eb: 9e:da:79:32:bc:be:2f:4a:4e:17:a7:f8:59:28:aa:1c:16:95: 86:9b:b6:89:67:36:ec:36:07:a5:10:4f:b7:dc:13:10:ab:25: 1b:db:d7:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNDI0MTYxMjUzWhcNMjUwNTAxMTYxMjUzWjAYMRYwFAYD VQQDEw02ODBhNjMwNi05YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH2B+w71AFn8hGrKHXubs1wNN12W+7jcUpH02jXZV256r3sk/zPNFjTnWKbV NFZzBrV9VG0mET8bWmvpaybOH35XRPO1ZhLyW9WzTKn7JvIJSsayGomgM5el/rs/ dcs2rM0VZXndMte6Yp23QfssRxG/BoulO/D3E9r4GHAfVV1V3BK2ffpbfFzGQlg3 SyIHpwSakmdb3M0/hp0uNkDmN0G6SBOQaSsR6vU7WTrRnPRmyqSgZzWbZe4D5M39 IAOPvcKimsGvjjrbDx3bdr9tUO+kcWLoM9fDg8cstWT+erOr2XpHDSDJeugvTF7j cb5z8iD98V6YZyWkaVeiSu/axQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3ys5Ia 6OqFpUe2QZh7cAplgVJQMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+x+PN/XwargHayWYvQjObSwgbVC8Mgo7tWEB5ACoM+FCyPx9LtheB C7nVsxn4AJuM2V3DYeyMqwKR7hY2i6JQKIh9+fl/hG+eZOb/67+thu/4mtHCKVFU sDEYTVEB4SUm44RRLRm/q0MQdXyFu9ZLTRfF1wAzUNJOi5ZKc6NV7MrjDuW4Z4NI g8GOv6YtuhRWlQY1MZ3cV5yuQ3D/xe0xLnYrmvm9WtFKlU/f5hRcq7B7yvdgaeUA RO6QmLfgtWzDPvwyT0y/9JIX+hSPk/jPoLgUHnK3nOue2nkyvL4vSk4Xp/hZKKoc FpWGm7aJZzbsNgelEE+33BMQqyUb29cb -----END CERTIFICATE-----Generated at Sat Apr 26 05:22:20 2025 by rpki-client