$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: UkOlowU0owxlADArsdgsBSbnrBnEOWypV0Z8LhZjjX0= Subject key identifier: A5:9A:87:D0:85:47:67:95:34:15:90:41:54:E5:AF:EE:EE:BF:3B:DF Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 029D Signing time: Mon 11 Aug 2025 01:48:50 +0000 Manifest this update: Mon 11 Aug 2025 01:48:49 +0000 Manifest next update: Mon 18 Aug 2025 01:48:49 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: Ex6Dnn7NtkB2WxXpiJnA8l64Zn/YNWwEFSubUC+cxIo=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 01:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Aug 11 01:48:49 2025 GMT Not After : Aug 18 01:48:49 2025 GMT Subject: CN=68994c01-2514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:4f:00:5e:0c:bc:46:40:10:7c:2f:85:6b: 0d:6d:00:b9:c1:64:d2:ba:d8:95:dc:e6:1f:eb:5f: 7b:c5:dc:43:1a:94:d8:95:b6:7a:9f:d0:15:f6:a0: d1:01:10:1f:51:a5:6c:f8:0c:6f:99:b3:b8:64:8a: b8:be:bb:54:e4:bd:61:9b:5b:64:b1:f1:35:0f:99: 45:ce:c0:5f:5a:95:08:49:3b:be:c9:54:90:0f:ce: ff:f3:1e:f1:b6:c7:64:2a:82:56:53:1c:f8:42:62: c3:60:37:10:91:a6:6a:19:7a:ec:d6:15:aa:8b:f2: c9:67:78:5c:ec:68:b3:5d:0f:83:7e:ef:82:40:a0: 22:52:7a:85:0c:35:ae:67:0d:a9:10:4a:b3:d6:2f: 35:b8:98:ea:90:da:f9:a3:d1:2f:be:6c:40:2d:68: ab:f4:47:24:26:ee:56:23:3c:cd:68:69:ab:80:9e: 92:7b:ea:22:9d:04:51:48:fd:b7:68:5c:78:02:5e: b6:1e:ef:df:c8:36:cb:5a:28:e7:9a:de:e5:bd:6d: 3e:09:27:3c:42:aa:9e:19:17:c6:23:42:f3:c6:26: 71:e9:ab:1d:70:e0:18:d9:b6:b0:88:a8:22:0d:6b: 0e:e3:a9:58:a5:87:49:3f:59:79:38:06:6b:da:f2: 76:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9A:87:D0:85:47:67:95:34:15:90:41:54:E5:AF:EE:EE:BF:3B:DF X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8f:0f:b0:86:4c:4d:a1:7d:95:11:e1:6e:3d:0b:fd:ec:78: 71:75:5d:7c:5d:8d:6f:6f:24:ba:1a:49:55:bd:1b:10:fd:75: f8:96:d5:37:8c:e8:bd:54:11:a7:af:ac:c6:93:86:74:a8:85: 67:e3:04:70:d2:bb:2b:1a:a9:e5:1d:e8:8a:cf:17:82:b8:1c: 6a:aa:75:cf:6d:e5:14:b0:93:e5:3b:38:eb:26:a5:98:2a:69: 5e:24:52:f0:38:12:a8:9c:dd:c0:c2:7b:21:af:11:ab:78:0c: d6:c2:f4:60:b1:e1:7f:e8:5f:1f:3c:62:49:3c:c2:59:fc:97: e2:f3:68:25:bb:9f:b4:db:62:f7:3b:a5:98:6d:5a:60:e1:c0: f7:dd:ed:b1:f1:02:63:14:bb:03:c6:e3:fe:07:85:3b:79:80: 0b:9b:bf:10:b4:50:11:c8:05:fa:3d:e6:c7:54:5c:66:3f:1b: e9:13:47:1e:95:55:a7:a1:51:e0:48:13:98:c7:16:6e:40:d0: d2:79:9e:fb:88:11:fa:ed:a5:1e:cd:d9:d6:ad:67:de:bd:39: c3:5d:78:09:92:59:c8:39:61:51:f7:d2:97:d1:23:b7:61:ab: bb:3d:d9:1f:bc:8d:6c:f3:70:83:90:3d:34:49:eb:9a:63:35: 0c:0d:a8:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwODExMDE0ODQ5WhcNMjUwODE4MDE0ODQ5WjAYMRYwFAYD VQQDEw02ODk5NGMwMS0yNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CBPAF4MvEZAEHwvhWsNbQC5wWTSutiV3OYf6197xdxDGpTYlbZ6n9AV9qDR ARAfUaVs+AxvmbO4ZIq4vrtU5L1hm1tksfE1D5lFzsBfWpUISTu+yVSQD87/8x7x tsdkKoJWUxz4QmLDYDcQkaZqGXrs1hWqi/LJZ3hc7GizXQ+Dfu+CQKAiUnqFDDWu Zw2pEEqz1i81uJjqkNr5o9EvvmxALWir9EckJu5WIzzNaGmrgJ6Se+oinQRRSP23 aFx4Al62Hu/fyDbLWijnmt7lvW0+CSc8QqqeGRfGI0LzxiZx6asdcOAY2bawiKgi DWsO46lYpYdJP1l5OAZr2vJ2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWah9CF R2eVNBWQQVTlr+7uvzvfMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9jw+whkxNoX2VEeFuPQv97HhxdV18XY1vbyS6GklVvRsQ/XX4ltU3 jOi9VBGnr6zGk4Z0qIVn4wRw0rsrGqnlHeiKzxeCuBxqqnXPbeUUsJPlOzjrJqWY KmleJFLwOBKonN3AwnshrxGreAzWwvRgseF/6F8fPGJJPMJZ/Jfi82glu5+022L3 O6WYbVpg4cD33e2x8QJjFLsDxuP+B4U7eYALm78QtFARyAX6PebHVFxmPxvpE0ce lVWnoVHgSBOYxxZuQNDSeZ77iBH67aUezdnWrWfevTnDXXgJklnIOWFR99KX0SO3 Yau7PdkfvI1s83CDkD00SeuaYzUMDagU -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:29 2025 by rpki-client