$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: ZhkeCmuMj/dtd8+VnRswwukRkhcP369X0/dOIrXMLek= Subject key identifier: 45:99:8C:73:CB:4E:E7:EC:AF:67:AF:89:16:AF:60:B3:A6:75:7D:60 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25D5 Signing time: Tue 04 Nov 2025 15:48:06 +0000 Manifest this update: Tue 04 Nov 2025 15:48:05 +0000 Manifest next update: Tue 11 Nov 2025 15:48:05 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: V/wPnw3f++vuuC+rodLd8PB2b1YkhTM/iUZYXeYdW60=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9704 (0x25e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Nov 4 15:48:05 2025 GMT Not After : Nov 11 15:48:05 2025 GMT Subject: CN=690a2035-2774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5e:6b:c0:80:4d:26:f0:ad:66:e5:88:ca:ad: a1:a7:d6:3c:8d:d9:9c:32:fd:ff:10:bf:d1:74:a5: 1d:83:84:94:09:d7:60:a0:55:6d:9a:24:94:c5:4d: 46:25:41:77:e6:9f:32:63:87:de:98:7c:79:fd:f5: be:72:2f:ee:59:4f:30:22:34:a1:29:63:a8:ea:9c: 60:94:ef:5c:6f:e6:a4:54:46:69:00:bc:ef:8a:72: f4:0a:81:30:bd:d2:ba:65:db:9d:ff:cf:ff:22:b4: 7b:18:89:d6:1b:74:d7:a4:ea:d7:be:92:6d:b7:98: e3:32:d7:98:6f:b0:45:81:2b:8c:95:26:bb:be:2a: 37:d3:9c:02:d8:e8:fc:71:44:d6:09:6f:c4:2a:8a: e6:42:82:cb:70:8d:e2:ec:99:c1:81:d8:50:55:a5: 79:1f:f2:d4:5e:34:f4:45:5e:e2:34:6b:3a:96:5e: 15:6a:2a:b3:6d:61:3a:67:fe:f8:97:d2:2e:7a:bb: ea:86:49:9a:d9:ea:64:23:04:8a:cd:9b:e4:a4:75: 4d:fc:13:57:cd:0c:43:0b:80:4f:7c:50:63:76:b6: 97:cc:d4:6f:2c:76:94:01:50:a1:21:36:ab:3c:c4: fd:50:e6:73:ad:94:ca:8e:a1:37:26:76:66:a2:b5: 8a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:99:8C:73:CB:4E:E7:EC:AF:67:AF:89:16:AF:60:B3:A6:75:7D:60 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:62:3f:e4:df:6a:e6:4e:67:fa:0d:c6:38:fd:97:9c:09:fe: c4:6d:fa:58:13:52:45:a8:38:78:b8:ba:5f:84:86:22:9b:bd: 2c:59:27:6c:bb:f1:fe:30:44:d8:ec:d2:c3:67:da:48:54:e4: f8:8f:a8:ce:05:91:32:2e:9d:72:d9:e6:23:79:e5:4c:83:55: 76:c4:56:f9:85:5b:40:2b:1e:8b:b8:2b:9d:ee:71:80:43:72: 74:a8:11:73:55:49:80:99:cd:23:4d:8f:62:d0:c1:4b:39:51: 0e:1b:da:11:35:57:16:e6:70:74:66:88:65:23:66:f7:80:84: 56:a3:58:04:9a:5b:94:ed:c9:1e:d5:65:be:5a:aa:db:03:79: 53:8c:82:b8:d2:67:e0:03:e1:7b:78:de:ec:23:99:16:a5:ce: bd:d3:40:1b:86:60:cf:9e:f4:4b:66:bf:07:0e:79:f8:03:17: 1c:22:e2:c2:05:2d:44:d6:02:8f:90:cc:1c:3a:ae:3b:e6:0b: 21:14:a0:bb:d0:42:9b:c7:c1:06:54:29:ea:28:c1:b2:5a:30: 0f:f3:bb:60:09:9f:90:12:51:7d:8f:d9:dc:33:b0:09:2c:a2: aa:0e:f0:73:7c:05:3a:17:74:bc:ed:2a:fe:36:cc:d1:1e:19: 7d:3e:5a:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUxMTA0MTU0ODA1WhcNMjUxMTExMTU0ODA1WjAYMRYwFAYD VQQDEw02OTBhMjAzNS0yNzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF5rwIBNJvCtZuWIyq2hp9Y8jdmcMv3/EL/RdKUdg4SUCddgoFVtmiSUxU1G JUF35p8yY4femHx5/fW+ci/uWU8wIjShKWOo6pxglO9cb+akVEZpALzvinL0CoEw vdK6Zdud/8//IrR7GInWG3TXpOrXvpJtt5jjMteYb7BFgSuMlSa7vio305wC2Oj8 cUTWCW/EKormQoLLcI3i7JnBgdhQVaV5H/LUXjT0RV7iNGs6ll4VaiqzbWE6Z/74 l9Iuervqhkma2epkIwSKzZvkpHVN/BNXzQxDC4BPfFBjdraXzNRvLHaUAVChITar PMT9UOZzrZTKjqE3JnZmorWKHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWZjHPL Tufsr2eviRavYLOmdX1gMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYYj/k32rmTmf6DcY4/ZecCf7EbfpYE1JFqDh4uLpfhIYim70sWSds u/H+METY7NLDZ9pIVOT4j6jOBZEyLp1y2eYjeeVMg1V2xFb5hVtAKx6LuCud7nGA Q3J0qBFzVUmAmc0jTY9i0MFLOVEOG9oRNVcW5nB0ZohlI2b3gIRWo1gEmluU7cke 1WW+WqrbA3lTjIK40mfgA+F7eN7sI5kWpc6900AbhmDPnvRLZr8HDnn4AxccIuLC BS1E1gKPkMwcOq475gshFKC70EKbx8EGVCnqKMGyWjAP87tgCZ+QElF9j9ncM7AJ LKKqDvBzfAU6F3S87Sr+NszRHhl9Plo5 -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:04 2025 by rpki-client