$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: NcAwbfob92fVP4WbY2Y3BTXF1Jw+by+gfJT5OUS2eNo= Subject key identifier: B1:87:D8:5D:4A:1A:24:CD:BC:21:4D:D1:D1:A8:24:D3:F2:06:A8:BA Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 25A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 2595 Signing time: Wed 02 Jul 2025 15:50:48 +0000 Manifest this update: Wed 02 Jul 2025 15:50:47 +0000 Manifest next update: Wed 09 Jul 2025 15:50:47 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: IQLLiXyAFB7Iadrs9AGktYEQxH/IeAZijrWaxeQfcXs=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9640 (0x25a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Jul 2 15:50:47 2025 GMT Not After : Jul 9 15:50:47 2025 GMT Subject: CN=68655557-9ff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bd:10:76:f2:4f:2b:aa:0c:73:30:03:1c:97: d7:cb:ef:fd:91:9a:d8:5d:a9:91:67:35:51:aa:0b: c7:b3:6e:8b:d0:7b:a5:da:22:c8:70:cb:1b:5c:ca: c3:cc:bf:3b:4b:4f:0b:b4:01:3b:89:34:95:77:11: 95:e9:c2:3d:c5:b7:04:57:ce:be:8f:de:88:8c:c4: 42:8f:9a:5e:4c:bc:7c:75:a8:6c:32:bd:96:96:a5: 7a:c1:71:3f:b2:1b:38:ae:3f:f1:27:76:32:0a:aa: fc:a9:48:09:e8:59:ac:c9:45:e6:cd:e7:e9:44:b7: df:11:04:65:17:51:bf:27:44:cb:50:a1:a2:59:60: 4b:b7:8f:f6:36:57:c6:4a:47:af:4e:1a:2a:cf:13: 1c:52:d2:89:7d:41:ba:1b:e7:6e:b9:fb:19:32:3b: aa:06:e2:28:f2:88:5a:25:10:13:cd:6a:a8:98:e5: d7:2b:6b:2e:2f:38:4e:95:f5:5c:46:a2:05:5f:4a: dd:66:4c:db:61:26:74:2d:62:7d:92:ab:be:26:35: ea:3f:51:1d:7e:1a:57:f0:78:7b:97:c9:6e:ad:db: 5e:99:6a:82:47:0b:d0:dc:3a:b0:2d:a8:bd:70:d0: e0:c4:af:53:f5:60:4d:31:1f:23:d2:7f:bf:c7:11: e3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:87:D8:5D:4A:1A:24:CD:BC:21:4D:D1:D1:A8:24:D3:F2:06:A8:BA X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:1c:ca:a4:93:3e:4c:91:be:3c:93:69:19:1c:35:75:38:87: d3:ef:99:be:e2:46:b3:c7:22:40:09:d9:bb:c9:1c:a4:93:fd: 4e:cc:9f:e1:17:e4:06:d9:66:d8:e5:1a:19:ab:ef:a4:f1:0d: cb:e9:71:0a:75:51:24:31:8c:6e:62:29:48:6c:89:49:8c:d4: 59:fd:c6:27:b5:57:3d:ed:60:5b:8c:00:9a:be:f8:81:fc:51: 79:6d:19:0f:c4:41:f7:c1:9a:5f:d1:5e:c3:9a:4c:18:03:60: 51:8a:41:05:2a:ac:23:89:f2:1f:8f:66:85:2f:65:96:64:79: 39:41:64:ca:36:02:21:03:43:a1:bd:c6:d0:fe:7f:79:9b:ed: cf:b4:4f:0f:8b:09:8f:1f:cc:96:42:08:53:d4:ce:fa:32:c5: 3a:e4:7a:ca:a2:b2:f3:42:43:57:da:05:ee:cd:ac:41:18:2a: 30:d2:12:65:d2:d4:97:3c:91:4b:1c:b7:20:1c:b5:4d:36:37: f9:45:aa:95:8c:0f:a8:f7:67:70:b6:b3:67:c9:e0:36:ef:5a: 24:28:24:83:79:5c:95:30:91:53:11:53:b2:e0:af:83:85:0d: 38:07:b3:6e:71:c5:56:aa:76:de:7c:1a:df:51:ef:c8:b6:d4: da:c3:e3:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNzAyMTU1MDQ3WhcNMjUwNzA5MTU1MDQ3WjAYMRYwFAYD VQQDEw02ODY1NTU1Ny05ZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL0QdvJPK6oMczADHJfXy+/9kZrYXamRZzVRqgvHs26L0Hul2iLIcMsbXMrD zL87S08LtAE7iTSVdxGV6cI9xbcEV86+j96IjMRCj5peTLx8dahsMr2WlqV6wXE/ shs4rj/xJ3YyCqr8qUgJ6FmsyUXmzefpRLffEQRlF1G/J0TLUKGiWWBLt4/2NlfG SkevThoqzxMcUtKJfUG6G+duufsZMjuqBuIo8ohaJRATzWqomOXXK2suLzhOlfVc RqIFX0rdZkzbYSZ0LWJ9kqu+JjXqP1EdfhpX8Hh7l8lurdtemWqCRwvQ3DqwLai9 cNDgxK9T9WBNMR8j0n+/xxHjzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGH2F1K GiTNvCFN0dGoJNPyBqi6MB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACHMqkkz5Mkb48k2kZHDV1OIfT75m+4kazxyJACdm7yRykk/1OzJ/h F+QG2WbY5RoZq++k8Q3L6XEKdVEkMYxuYilIbIlJjNRZ/cYntVc97WBbjACavviB /FF5bRkPxEH3wZpf0V7DmkwYA2BRikEFKqwjifIfj2aFL2WWZHk5QWTKNgIhA0Oh vcbQ/n95m+3PtE8PiwmPH8yWQghT1M76MsU65HrKorLzQkNX2gXuzaxBGCow0hJl 0tSXPJFLHLcgHLVNNjf5RaqVjA+o92dwtrNnyeA271okKCSDeVyVMJFTEVOy4K+D hQ04B7NuccVWqnbefBrfUe/IttTaw+Pa -----END CERTIFICATE-----Generated at Thu Jul 3 05:06:46 2025 by rpki-client