$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: N92wO2cRqvw8ctirB0c32U9y/6CALI8j567/vPz6o6I= Subject key identifier: 5F:0F:03:E3:45:EE:43:91:E5:6D:09:5F:65:50:8A:02:B1:95:B2:11 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25AF Signing time: Fri 22 Aug 2025 15:46:41 +0000 Manifest this update: Fri 22 Aug 2025 15:46:40 +0000 Manifest next update: Fri 29 Aug 2025 15:46:40 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: bPr0QrVIzXhMLFVyt8MsHmeFPMOOpCbJbBp562aCQbs=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9666 (0x25c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Aug 22 15:46:40 2025 GMT Not After : Aug 29 15:46:40 2025 GMT Subject: CN=68a890e1-514c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:bc:fd:80:c5:04:29:d5:1b:c9:8e:f7:c3: e9:b6:36:27:aa:63:c7:73:0c:da:af:80:e4:72:fc: 8a:9a:8b:69:34:7b:7c:eb:cb:58:3f:38:fd:23:29: 0d:49:f9:5e:97:2a:00:09:80:9e:74:cf:45:36:e9: 37:e7:93:e7:f1:ea:8b:14:8a:b3:6e:3c:6d:7d:80: 79:a3:25:36:3c:36:86:f1:6a:25:ca:aa:66:1a:07: f9:38:f8:4f:47:2f:0b:fc:15:df:d4:1b:df:f1:17: 0e:ca:9d:c1:42:c2:ea:76:df:98:fc:3a:24:24:ea: 36:a4:09:80:f4:90:29:a0:91:22:0b:f1:04:f6:0a: 09:50:aa:36:33:6a:be:91:88:d5:5d:26:34:7c:43: 15:e4:45:c0:70:23:9b:1d:3b:41:64:30:df:3e:ab: 6e:96:20:e2:5c:6f:f8:ca:a4:ed:9e:1b:2a:1d:10: 83:ca:00:57:0a:4b:41:ca:3b:52:79:b3:98:6a:c0: ec:2f:fd:92:d7:3a:f4:ee:ba:86:25:de:c5:ba:2b: 31:18:02:10:c3:cc:8a:1e:e5:26:be:94:aa:23:c2: 9e:e3:3f:47:fe:af:b0:b4:67:b4:81:a8:60:85:9a: 70:9e:69:e4:34:9e:14:57:72:a0:10:0c:42:29:21: 79:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0F:03:E3:45:EE:43:91:E5:6D:09:5F:65:50:8A:02:B1:95:B2:11 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:5f:04:12:95:21:d8:5d:a2:99:f0:8e:93:da:a5:9a:a2:67: 55:a5:08:23:2e:ba:2e:31:fe:ff:b9:24:c5:63:96:ec:1d:e5: f2:42:4c:90:f5:09:a2:d5:78:8f:f4:94:ce:c0:6f:db:29:17: 62:62:71:d6:05:8d:69:14:65:a5:bd:b5:c2:2c:a3:be:6f:dc: b7:89:d1:d6:57:3b:be:5b:b3:d0:51:81:89:1b:a6:ff:3c:fc: 64:0a:ce:8a:df:cb:33:c7:08:d9:ed:07:7f:88:98:a0:bf:e1: ad:7f:ed:53:4d:23:ea:29:8b:2f:85:7e:fe:be:1c:b2:4c:ba: e1:d4:25:a8:c1:6d:f1:39:20:fb:b8:50:11:52:87:a3:d9:16: 36:b2:71:30:25:ce:49:72:94:9b:79:4d:e0:83:69:1b:a9:25: cf:e4:20:54:45:ed:4d:3e:3a:9c:a8:6b:13:90:9e:72:3a:a8: 31:b6:75:83:23:57:8c:d7:96:a6:10:c9:72:23:38:28:81:8f: 26:dd:d3:3a:3b:48:be:78:ae:67:3b:7a:ad:a0:aa:85:90:8c: b4:92:90:da:c1:31:71:31:f4:47:6a:88:9a:52:e8:c0:ce:c0: 60:8f:6c:06:cf:45:4d:44:c8:72:f3:b6:13:41:00:3e:d1:dc: 3d:f6:16:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwODIyMTU0NjQwWhcNMjUwODI5MTU0NjQwWjAYMRYwFAYD VQQDEw02OGE4OTBlMS01MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsey8/YDFBCnVG8mO98PptjYnqmPHcwzar4DkcvyKmotpNHt868tYPzj9IykN SflelyoACYCedM9FNuk355Pn8eqLFIqzbjxtfYB5oyU2PDaG8WolyqpmGgf5OPhP Ry8L/BXf1Bvf8RcOyp3BQsLqdt+Y/DokJOo2pAmA9JApoJEiC/EE9goJUKo2M2q+ kYjVXSY0fEMV5EXAcCObHTtBZDDfPqtuliDiXG/4yqTtnhsqHRCDygBXCktByjtS ebOYasDsL/2S1zr07rqGJd7FuisxGAIQw8yKHuUmvpSqI8Ke4z9H/q+wtGe0gahg hZpwnmnkNJ4UV3KgEAxCKSF5BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8PA+NF 7kOR5W0JX2VQigKxlbIRMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiXwQSlSHYXaKZ8I6T2qWaomdVpQgjLrouMf7/uSTFY5bsHeXyQkyQ 9Qmi1XiP9JTOwG/bKRdiYnHWBY1pFGWlvbXCLKO+b9y3idHWVzu+W7PQUYGJG6b/ PPxkCs6K38szxwjZ7Qd/iJigv+Gtf+1TTSPqKYsvhX7+vhyyTLrh1CWowW3xOSD7 uFARUoej2RY2snEwJc5JcpSbeU3gg2kbqSXP5CBURe1NPjqcqGsTkJ5yOqgxtnWD I1eM15amEMlyIzgogY8m3dM6O0i+eK5nO3qtoKqFkIy0kpDawTFxMfRHaoiaUujA zsBgj2wGz0VNRMhy87YTQQA+0dw99hYN -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:11 2025 by rpki-client