$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: dAzcyUKeivmCUORIGAxPZ4cauHk1LGRo8v92W+48Fr8= Subject key identifier: 12:AB:2A:06:5E:D0:0F:C4:2A:80:C1:4C:4F:83:1A:12:E0:6E:50:84 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 258E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 257B Signing time: Mon 12 May 2025 15:42:37 +0000 Manifest this update: Mon 12 May 2025 15:42:37 +0000 Manifest next update: Mon 19 May 2025 15:42:37 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: UODLNwpEMkLllSxe/RhEjEHYFeBDdHUU/hi7VYKQZzU=) 2: 4AD1B6D2C3D911ED861C5356C4F9AE02.roa (hash: I8f+DwZj5FOfOPdJZNNwgd12PVcO07q38Jd2BAvcM6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9614 (0x258e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: May 12 15:42:37 2025 GMT Not After : May 19 15:42:37 2025 GMT Subject: CN=682216ed-3741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:85:1a:08:7b:b7:8f:af:03:0d:60:f6:0f: e7:16:99:db:2d:fb:94:ce:2b:23:e5:d1:46:21:b0: 7f:19:52:d6:43:17:0b:59:c7:5f:54:b4:6a:9d:96: 79:c3:77:9a:b2:7a:b9:62:7a:33:55:89:54:96:f7: ac:3f:fa:33:a3:86:73:88:5c:40:6f:1a:12:6f:6a: cd:e2:91:1c:25:57:a6:27:74:53:a6:04:d6:eb:29: 57:ae:21:f7:39:b4:a2:b0:b7:27:46:ee:1d:eb:d7: 5d:c6:85:d9:23:05:55:f3:c0:4e:38:fa:70:ff:a0: 47:30:fa:16:5a:e1:d7:41:14:9d:85:08:da:c4:58: c4:64:2b:03:8a:90:07:5b:f5:a0:fa:20:a7:03:ff: 0a:19:4e:81:0e:63:e3:b9:c0:f1:f8:6a:fc:d9:6b: 3a:b2:87:5a:bc:6f:11:d0:cf:e6:9d:46:ec:b6:f4: f9:af:59:41:29:99:c0:5d:b6:c7:d9:e3:6f:b1:88: bc:bc:08:9c:5f:a7:3c:1b:7c:6f:87:46:03:88:e2: 0f:ec:86:05:4b:05:6d:b1:b9:bc:94:fd:c1:0c:af: 3c:bd:33:50:58:fb:16:75:2c:4a:cf:df:b7:dc:7b: a5:89:44:ef:b3:bb:fd:48:68:96:9a:ba:02:ae:9a: 25:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AB:2A:06:5E:D0:0F:C4:2A:80:C1:4C:4F:83:1A:12:E0:6E:50:84 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:89:96:8a:0e:6d:0c:b0:ab:b5:20:58:62:53:42:7d:7a:72: c9:a4:c9:bd:74:2b:3b:8c:78:fb:35:ec:1a:74:a4:c4:64:c6: 12:03:18:d5:fa:ce:86:28:78:be:9b:0a:0e:a4:b1:16:b6:51: 2b:84:45:04:e9:dc:a6:8a:2f:09:5f:b0:7c:82:89:e7:e3:15: de:67:bb:dd:8f:01:1c:84:2a:23:74:58:b6:02:aa:d9:09:7a: ec:4d:0c:b0:ad:d9:a4:d8:ff:1d:05:79:f3:38:c1:9d:66:d6: a7:46:10:63:16:94:86:e3:23:9a:7d:f2:2c:ee:8c:4d:6b:17: a2:e8:e4:47:fb:4f:aa:7c:e7:b5:51:25:62:bf:5c:67:10:49: 0b:4a:b3:65:3d:7b:b4:0e:2e:0e:58:fe:d6:77:be:6c:f2:b8: 7d:2a:81:44:05:d3:f9:3e:1d:95:57:5e:be:c6:ba:fd:3e:02: 21:9c:4e:52:ce:ea:ce:3f:08:07:27:0d:cf:30:97:98:53:71: 23:38:4a:9e:a8:75:48:2a:26:11:20:9a:9f:f4:06:68:ae:df: c4:48:6d:60:9d:b6:d1:77:df:ba:a3:ae:d0:ec:ce:d9:33:66: ea:46:43:85:2e:34:52:5f:a0:20:b2:fd:29:aa:38:31:38:21: 61:27:80:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUwNTEyMTU0MjM3WhcNMjUwNTE5MTU0MjM3WjAYMRYwFAYD VQQDEw02ODIyMTZlZC0zNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxECFGgh7t4+vAw1g9g/nFpnbLfuUzisj5dFGIbB/GVLWQxcLWcdfVLRqnZZ5 w3easnq5YnozVYlUlvesP/ozo4ZziFxAbxoSb2rN4pEcJVemJ3RTpgTW6ylXriH3 ObSisLcnRu4d69ddxoXZIwVV88BOOPpw/6BHMPoWWuHXQRSdhQjaxFjEZCsDipAH W/Wg+iCnA/8KGU6BDmPjucDx+Gr82Ws6sodavG8R0M/mnUbstvT5r1lBKZnAXbbH 2eNvsYi8vAicX6c8G3xvh0YDiOIP7IYFSwVtsbm8lP3BDK88vTNQWPsWdSxKz9+3 3HuliUTvs7v9SGiWmroCrpolPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKrKgZe 0A/EKoDBTE+DGhLgblCEMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeiZaKDm0MsKu1IFhiU0J9enLJpMm9dCs7jHj7NewadKTEZMYSAxjV +s6GKHi+mwoOpLEWtlErhEUE6dymii8JX7B8gonn4xXeZ7vdjwEchCojdFi2AqrZ CXrsTQywrdmk2P8dBXnzOMGdZtanRhBjFpSG4yOaffIs7oxNaxei6ORH+0+qfOe1 USViv1xnEEkLSrNlPXu0Di4OWP7Wd75s8rh9KoFEBdP5Ph2VV16+xrr9PgIhnE5S zurOPwgHJw3PMJeYU3EjOEqeqHVIKiYRIJqf9AZort/ESG1gnbbRd9+6o67Q7M7Z M2bqRkOFLjRSX6Agsv0pqjgxOCFhJ4CB -----END CERTIFICATE-----Generated at Tue May 13 22:33:26 2025 by rpki-client