$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: EmOQMfBeEJlQf2aLdoJisusMr8RDS2L+o7Ft4EvYoOs= Subject key identifier: 2E:C4:9D:49:CA:41:00:7F:E2:F4:9C:3F:B1:E6:70:B5:82:71:C1:4D Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0280 Signing time: Thu 19 Jun 2025 01:30:24 +0000 Manifest this update: Thu 19 Jun 2025 01:30:23 +0000 Manifest next update: Thu 26 Jun 2025 01:30:23 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: sA3NMrXJ+RGFv23WLA01SmJ9r6ANTJLCzNdgPNRLMr0=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: iNGLEhZ74V/teXh5s40LgFHohuZJ0yOem+a3lr8uSKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Jun 19 01:30:23 2025 GMT Not After : Jun 26 01:30:23 2025 GMT Subject: CN=68536830-12ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1a:9e:6b:3a:40:70:d5:60:71:a2:18:38:b2: 15:0e:90:8b:49:23:47:4b:3e:54:3c:72:2a:73:44: 3c:a1:94:7d:f9:15:83:21:6d:9e:b2:c8:1d:1b:cf: 04:e0:fa:ee:71:37:48:90:4d:72:f3:fd:75:c8:74: 53:e4:da:a0:b5:cf:83:5b:d4:24:73:53:6e:e6:48: 37:6b:18:25:b3:38:e3:20:e9:f7:70:01:31:66:8f: 81:ee:77:93:bd:3d:e5:56:05:f7:4a:d5:3f:dd:30: fc:bf:96:1a:04:ff:cd:3d:17:73:97:87:63:6f:f6: a5:b9:62:01:90:16:03:6f:e3:aa:67:ee:01:79:64: b2:0e:ba:61:ea:43:6d:19:00:8d:41:a9:ac:3d:35: 0f:d4:70:8f:72:89:63:62:24:2b:24:fa:d0:d4:9c: 91:fc:45:ab:67:f4:ff:84:c8:3e:46:d9:0d:ec:db: 67:68:3c:2e:a2:83:2a:c0:d5:31:74:ba:2f:2b:88: ef:59:76:43:56:c7:ae:08:cc:1a:f6:82:1d:7b:2d: d1:b5:2d:43:df:63:61:94:fb:52:3f:11:2d:47:67: c6:6f:b5:e6:ce:ac:f2:cc:39:3c:71:66:a3:29:6f: 49:99:7e:55:95:f7:db:aa:19:0e:75:d9:0b:bf:62: 4b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C4:9D:49:CA:41:00:7F:E2:F4:9C:3F:B1:E6:70:B5:82:71:C1:4D X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:60:be:1d:ee:25:3a:f7:ca:60:cd:4f:d4:c2:4e:43:34:1a: 93:99:6a:59:61:30:12:90:c4:ec:d9:d4:6a:be:e1:a3:e8:f3: 62:e3:9e:2e:c8:46:05:86:82:97:6a:d1:4a:89:3c:0e:38:78: a5:a2:28:81:6d:64:45:c5:74:21:47:a7:24:45:a1:66:c9:31: 60:f9:69:58:3c:77:d3:25:ee:85:d9:ef:7e:69:04:5b:22:71: b6:1f:20:39:1a:2a:66:72:6b:12:75:d9:2d:07:9e:c5:c6:19: 67:53:f8:c9:32:6e:34:6b:f3:45:03:70:76:01:c3:f5:c7:1d: ac:8d:63:f1:c4:d6:88:55:1a:c1:bf:f2:95:d7:ad:9b:95:7c: c0:7b:ce:27:2c:a0:0a:65:6e:3e:82:47:de:3e:50:07:bc:ef: da:03:ca:34:c8:a9:b6:ef:8a:d6:4e:66:3b:45:8e:54:a5:a4: fb:39:7f:fd:47:51:ad:1c:4f:b1:15:80:bc:c0:cf:ec:b1:b5: 6c:de:5f:04:6d:24:9a:ae:9d:0e:32:e1:c1:f3:06:a4:9d:1f: 72:16:d2:23:fd:33:a0:86:08:c9:99:e4:f9:f3:0b:25:04:5b: a7:17:f1:4b:fd:b8:dc:ef:1d:96:28:d4:2f:b5:5f:3e:37:7e: 0e:e0:d9:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNjE5MDEzMDIzWhcNMjUwNjI2MDEzMDIzWjAYMRYwFAYD VQQDEw02ODUzNjgzMC0xMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohqeazpAcNVgcaIYOLIVDpCLSSNHSz5UPHIqc0Q8oZR9+RWDIW2essgdG88E 4PrucTdIkE1y8/11yHRT5Nqgtc+DW9Qkc1Nu5kg3axglszjjIOn3cAExZo+B7neT vT3lVgX3StU/3TD8v5YaBP/NPRdzl4djb/aluWIBkBYDb+OqZ+4BeWSyDrph6kNt GQCNQamsPTUP1HCPcoljYiQrJPrQ1JyR/EWrZ/T/hMg+RtkN7NtnaDwuooMqwNUx dLovK4jvWXZDVseuCMwa9oIdey3RtS1D32NhlPtSPxEtR2fGb7XmzqzyzDk8cWaj KW9JmX5VlffbqhkOddkLv2JLfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7EnUnK QQB/4vScP7HmcLWCccFNMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbYL4d7iU698pgzU/Uwk5DNBqTmWpZYTASkMTs2dRqvuGj6PNi454u yEYFhoKXatFKiTwOOHiloiiBbWRFxXQhR6ckRaFmyTFg+WlYPHfTJe6F2e9+aQRb InG2HyA5GipmcmsSddktB57FxhlnU/jJMm40a/NFA3B2AcP1xx2sjWPxxNaIVRrB v/KV162blXzAe84nLKAKZW4+gkfePlAHvO/aA8o0yKm274rWTmY7RY5UpaT7OX/9 R1GtHE+xFYC8wM/ssbVs3l8EbSSarp0OMuHB8waknR9yFtIj/TOghgjJmeT58wsl BFunF/FL/bjc7x2WKNQvtV8+N34O4Nmh -----END CERTIFICATE-----Generated at Fri Jun 20 12:59:17 2025 by rpki-client