$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: IWT3sUoUg1SwKvcYIrgG/ae74pDgWEOyivwly2J11zQ= Subject key identifier: D0:39:AF:C3:74:41:A0:5F:93:6C:1E:16:8B:3F:5B:FD:8F:B7:0A:6D Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25CC Signing time: Sat 18 Oct 2025 15:57:13 +0000 Manifest this update: Sat 18 Oct 2025 15:57:12 +0000 Manifest next update: Sat 25 Oct 2025 15:57:12 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: yRaPH8gpJ9zgEkY6bO7W7vpnhjp5U1bkBwNTjIR8/ZM=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9695 (0x25df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Oct 18 15:57:12 2025 GMT Not After : Oct 25 15:57:12 2025 GMT Subject: CN=68f3b8d8-acdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:21:30:cc:fb:4a:3e:29:d5:15:35:bd:23:31: c5:05:40:e6:94:7b:48:89:a3:c3:8c:d8:2f:84:11: 4c:3a:78:01:49:a3:4b:5e:6b:a0:57:6e:9a:2f:6c: 8f:22:e2:ca:4b:bd:53:26:51:55:1a:81:a0:1e:7d: 65:4a:65:f1:53:0e:5f:41:12:eb:86:fd:00:9d:0b: ac:50:7a:f3:6e:60:bc:3f:04:c1:d6:03:2a:57:14: e4:f2:06:72:65:d5:21:9e:b2:67:e6:e7:83:86:98: 9b:2a:4d:1d:dc:33:84:8d:38:5c:ad:7d:73:e8:6c: 0a:b4:13:f1:68:3e:c5:61:2f:2f:56:4d:03:eb:9f: d2:5e:c4:3d:99:94:41:43:55:45:f9:c7:ad:51:65: 0b:82:d3:05:cb:a1:ec:4c:5c:7b:5f:ca:38:19:ab: ab:c4:0e:96:3c:9b:c8:74:27:2f:37:9d:39:f1:bc: 4e:e7:c2:ac:26:77:f7:64:b5:aa:b1:b4:6c:72:84: ec:fb:c5:bd:0a:79:4d:80:e2:98:17:d7:bc:fe:eb: a2:f4:c9:18:87:4f:d2:7a:a4:29:d2:63:df:71:af: e7:82:97:1d:a9:f3:3c:ce:6f:48:23:c4:63:28:39: 0c:11:f6:b3:cb:3a:71:bc:9b:a0:c2:00:5d:47:5a: 68:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:39:AF:C3:74:41:A0:5F:93:6C:1E:16:8B:3F:5B:FD:8F:B7:0A:6D X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0a:14:20:29:32:2d:41:b8:1c:c4:66:35:60:7b:f8:f5:a5: 8f:9e:16:ef:ec:3e:82:41:15:83:14:38:e0:8e:77:ac:1e:78: 47:8d:34:e8:b4:23:1c:39:bf:a6:84:27:fd:18:4d:5f:a7:ee: 2e:9c:81:c7:fc:b5:cf:82:80:3e:b1:6d:fd:59:84:f8:9e:ee: 69:83:12:cd:13:5c:f1:6e:fe:94:b8:4b:bf:45:e0:5a:d0:45: fb:a1:5e:b6:f3:74:4c:0f:29:3a:5b:cb:99:28:15:76:93:fc: 7f:c5:7f:6b:33:e8:38:c1:a7:b8:c4:bd:11:72:38:88:5e:1c: 3e:c8:23:08:46:c7:7a:fa:dc:1f:ed:a4:c7:51:03:7f:74:7c: 23:c3:7c:29:ea:3c:1e:bb:5e:26:f1:15:1d:53:2f:db:da:57: fa:61:3e:f2:74:e0:f2:b6:e2:a8:ad:c7:5c:6f:0a:1d:ed:07: 6d:21:0d:97:6e:70:a8:28:dd:30:6d:70:ef:f8:a3:77:8a:b9: 32:68:c7:db:6e:e4:bb:23:ea:40:e9:b8:b6:e1:19:80:e2:a4: c5:b6:4e:50:34:17:c6:de:13:7a:af:c0:97:b0:20:ab:9e:1b: 87:e5:e1:0b:df:93:41:6a:db:4e:0a:d5:4a:c8:a2:66:4a:aa: 91:3e:28:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUxMDE4MTU1NzEyWhcNMjUxMDI1MTU1NzEyWjAYMRYwFAYD VQQDEw02OGYzYjhkOC1hY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yEwzPtKPinVFTW9IzHFBUDmlHtIiaPDjNgvhBFMOngBSaNLXmugV26aL2yP IuLKS71TJlFVGoGgHn1lSmXxUw5fQRLrhv0AnQusUHrzbmC8PwTB1gMqVxTk8gZy ZdUhnrJn5ueDhpibKk0d3DOEjThcrX1z6GwKtBPxaD7FYS8vVk0D65/SXsQ9mZRB Q1VF+cetUWULgtMFy6HsTFx7X8o4GaurxA6WPJvIdCcvN5058bxO58KsJnf3ZLWq sbRscoTs+8W9CnlNgOKYF9e8/uui9MkYh0/SeqQp0mPfca/ngpcdqfM8zm9II8Rj KDkMEfazyzpxvJugwgBdR1pojwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNA5r8N0 QaBfk2weFos/W/2PtwptMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOChQgKTItQbgcxGY1YHv49aWPnhbv7D6CQRWDFDjgjnesHnhHjTTo tCMcOb+mhCf9GE1fp+4unIHH/LXPgoA+sW39WYT4nu5pgxLNE1zxbv6UuEu/ReBa 0EX7oV6283RMDyk6W8uZKBV2k/x/xX9rM+g4wae4xL0RcjiIXhw+yCMIRsd6+twf 7aTHUQN/dHwjw3wp6jweu14m8RUdUy/b2lf6YT7ydODytuKorcdcbwod7QdtIQ2X bnCoKN0wbXDv+KN3irkyaMfbbuS7I+pA6bi24RmA4qTFtk5QNBfG3hN6r8CXsCCr nhuH5eEL35NBattOCtVKyKJmSqqRPiiw -----END CERTIFICATE-----Generated at Mon Oct 20 12:16:10 2025 by rpki-client