$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: dPwaznKpuso3F55OrRGTM1rezzO7oOoZ+3UePXnte9I= Subject key identifier: 45:F1:EA:7A:BB:9F:A1:80:12:C0:DC:1D:62:47:80:3E:94:6A:43:74 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25A8 Signing time: Fri 08 Aug 2025 15:48:30 +0000 Manifest this update: Fri 08 Aug 2025 15:48:29 +0000 Manifest next update: Fri 15 Aug 2025 15:48:29 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: XNMszE2NYwoNfou/1YohOk+ueh2iK49nfDuhnp+QZqM=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9659 (0x25bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Aug 8 15:48:29 2025 GMT Not After : Aug 15 15:48:29 2025 GMT Subject: CN=68961c4d-047a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:41:b3:e0:ce:c9:e0:56:97:c1:ec:53:35: 1c:8d:7e:fe:28:f7:40:f6:6f:29:93:1b:5d:ea:24: 6c:8f:85:81:f4:51:fa:35:ae:d7:9b:69:bc:bd:09: 52:61:30:7a:cb:60:cc:06:51:3b:ae:98:b8:18:44: 77:b9:eb:b5:2c:2f:32:50:ae:f1:24:1f:b6:de:32: bc:0b:3b:71:36:4b:dc:b6:60:e7:13:4e:17:70:b7: 62:66:5b:7d:b6:64:d4:2a:46:3d:f0:3d:bc:91:9c: 1c:5b:21:d8:8d:59:ef:d0:fe:6c:03:b9:b5:3b:ba: ed:1f:ee:ac:af:8d:45:3d:a2:73:ac:b0:cf:1e:3c: 15:da:ad:44:6f:33:b7:0f:2f:9b:a8:40:89:f1:8e: 32:1b:55:47:92:da:e8:5a:ba:61:0f:0a:7f:79:d5: 73:a8:d4:e8:3d:9b:a5:dc:78:3e:65:86:79:cf:34: 52:ee:a6:02:09:82:70:10:97:c2:98:0e:65:b7:0e: 86:bc:96:a8:10:88:56:e8:bb:44:89:0f:f7:4d:a8: 76:a6:92:3d:34:cf:29:89:09:a2:9b:56:53:97:25: cf:89:b0:94:cd:05:d4:d4:fd:16:76:14:51:0c:26: 53:a4:1c:a2:c8:86:d5:57:1b:29:c4:16:fc:1e:30: f0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F1:EA:7A:BB:9F:A1:80:12:C0:DC:1D:62:47:80:3E:94:6A:43:74 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c2:af:62:ac:4f:16:a6:14:10:4f:0b:34:36:c0:73:88:1b: 5a:75:a3:5a:17:d7:a4:2a:07:48:08:09:9d:91:a1:5e:94:86: 50:50:34:b9:fb:5c:d4:af:30:c9:05:20:cd:b1:8f:7b:63:36: a3:d3:0e:43:7e:f8:07:75:c4:87:65:3c:cb:82:56:d8:86:52: 11:6d:3c:b6:d8:27:66:35:45:41:98:ef:e6:0f:66:5b:3b:e1: 9c:24:07:aa:ab:b4:db:89:52:29:8f:ff:3e:e8:fe:f9:82:cd: 68:5d:f6:22:61:f5:04:65:5e:78:c3:9c:4d:2b:b2:25:2e:43: 83:f0:cc:ec:24:ee:a6:b7:4d:3f:27:fe:a3:39:db:a9:f5:41: bb:8e:e7:1c:5d:e2:a0:92:54:77:a5:8a:32:b7:7a:66:e6:e9: 9f:a8:f9:a1:ff:f5:5b:36:9a:e3:60:bf:7c:8e:77:83:f4:a2: dd:ff:a6:da:31:59:87:3b:2c:4d:6c:69:8b:75:3d:5a:82:ce: 8c:b6:d6:1b:cb:d7:5c:ea:51:47:94:e4:63:71:2e:0f:dc:5a: e5:61:6b:90:8c:e0:83:08:ca:28:ff:b8:87:74:b5:8e:68:2e: ab:c5:a0:4a:f6:7d:72:e7:fb:a5:a8:8c:b0:4d:96:40:a8:81: e5:77:9f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwODA4MTU0ODI5WhcNMjUwODE1MTU0ODI5WjAYMRYwFAYD VQQDEw02ODk2MWM0ZC0wNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06xBs+DOyeBWl8HsUzUcjX7+KPdA9m8pkxtd6iRsj4WB9FH6Na7Xm2m8vQlS YTB6y2DMBlE7rpi4GER3ueu1LC8yUK7xJB+23jK8CztxNkvctmDnE04XcLdiZlt9 tmTUKkY98D28kZwcWyHYjVnv0P5sA7m1O7rtH+6sr41FPaJzrLDPHjwV2q1EbzO3 Dy+bqECJ8Y4yG1VHktroWrphDwp/edVzqNToPZul3Hg+ZYZ5zzRS7qYCCYJwEJfC mA5ltw6GvJaoEIhW6LtEiQ/3Tah2ppI9NM8piQmim1ZTlyXPibCUzQXU1P0WdhRR DCZTpByiyIbVVxspxBb8HjDwTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXx6nq7 n6GAEsDcHWJHgD6UakN0MB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfwq9irE8WphQQTws0NsBziBtadaNaF9ekKgdICAmdkaFelIZQUDS5 +1zUrzDJBSDNsY97Yzaj0w5DfvgHdcSHZTzLglbYhlIRbTy22CdmNUVBmO/mD2Zb O+GcJAeqq7TbiVIpj/8+6P75gs1oXfYiYfUEZV54w5xNK7IlLkOD8MzsJO6mt00/ J/6jOdup9UG7juccXeKgklR3pYoyt3pm5umfqPmh//VbNprjYL98jneD9KLd/6ba MVmHOyxNbGmLdT1ags6MttYby9dc6lFHlORjcS4P3FrlYWuQjOCDCMoo/7iHdLWO aC6rxaBK9n1y5/ulqIywTZZAqIHld5+D -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:19 2025 by rpki-client