$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: OuO88NwfVOwvcaAiADkcowfWIYAtWCRzdQvl78Uu5Ww= Subject key identifier: 33:BB:84:8B:51:B3:E1:70:27:45:4D:9C:5C:1E:2A:A6:11:4F:21:20 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 11 Signing time: Sat 09 Aug 2025 08:34:21 +0000 Manifest this update: Sat 09 Aug 2025 08:34:21 +0000 Manifest next update: Sat 16 Aug 2025 08:34:20 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: vqq+vtwu92CEx0vTHnOA6/fXyBlGSi/E7aPfVT9HPiY=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Aug 9 08:34:21 2025 GMT Not After : Aug 16 08:34:20 2025 GMT Subject: CN=6897080d-f9c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5e:ad:9a:98:a6:0a:80:68:47:a2:96:a9:85: b2:c1:0f:5e:3a:06:14:0d:3b:8c:a9:c3:4c:1d:3a: 6b:7d:72:cc:7d:4d:7b:bb:4c:47:34:46:e2:b0:c3: c4:c2:2c:a1:7b:73:80:e1:2b:b2:00:0e:86:31:46: 49:64:7e:28:1d:1d:fe:b3:5e:a0:5d:0b:ca:21:44: f8:26:0b:13:5b:d0:30:04:75:37:c3:4f:14:89:69: 28:a8:21:db:81:47:a3:36:3d:6f:7c:8a:78:a0:ca: 86:b1:dd:9d:68:16:14:09:71:04:c8:24:32:0a:18: 7f:f9:5d:b8:03:99:8e:ba:52:60:6e:06:55:d6:59: 41:42:ff:33:9d:e4:5b:74:88:56:3d:34:be:e5:80: 55:70:2f:96:43:0c:d6:af:3b:31:f4:8e:44:5f:d2: e2:91:c0:5d:1d:d2:2b:10:1c:d8:cb:7b:55:53:5b: 4a:87:38:7b:ab:b3:a9:15:a9:53:30:8e:6a:ad:ab: 96:2c:d2:35:72:bc:b9:57:fa:fb:6a:9a:1a:c2:3e: d2:03:a2:39:86:7f:c1:87:77:53:c7:b4:20:60:4f: bd:d9:2c:51:77:66:5c:9a:15:1f:4b:4d:41:83:4b: 5b:3c:b6:f7:e8:54:8a:a1:e6:39:99:2b:ff:26:4b: fc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BB:84:8B:51:B3:E1:70:27:45:4D:9C:5C:1E:2A:A6:11:4F:21:20 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:71:91:ab:01:2d:8f:d7:39:d4:8e:ba:20:99:e3:25:f4:18: 4a:78:dd:52:de:2d:96:c2:f1:11:c4:68:3a:a9:a4:05:0d:83: 14:24:6d:32:43:0d:82:80:6d:35:52:db:e5:03:32:91:00:98: 8c:a2:ef:51:bd:e2:3c:f9:1f:ab:9f:b4:67:2e:d1:9d:3a:48: 7f:f2:e9:ba:13:d4:2e:04:ef:7f:32:00:e3:38:b5:b6:f6:85: 7c:4c:48:5a:36:be:b0:93:8a:4b:8e:1c:6f:b3:bf:a1:82:85: 59:8c:82:05:b0:d0:b4:d9:fa:24:2c:96:e0:dc:d5:6d:e8:8e: c3:3b:5a:bf:8b:a2:5f:8e:31:3f:07:bd:f5:26:7a:ef:0d:de: ee:fe:a9:6c:79:e9:5d:de:a2:bb:82:1b:4c:ea:90:7a:6e:d5: 9b:8e:9b:06:78:49:41:94:fb:17:5e:1f:fa:3a:01:6d:d4:9b: 6f:b3:f6:1f:66:45:10:51:a4:17:47:d6:ab:d0:40:1b:53:0d: 83:46:a8:87:b6:59:45:a9:73:b7:6c:23:7c:eb:fe:e8:d1:78: 09:5a:32:ad:34:f2:0d:69:e5:6f:2b:a1:ad:83:7a:cf:0b:39: 30:36:4d:22:2d:99:02:97:85:99:15:63:f5:c4:f1:d6:c5:24: 8c:60:06:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTA4MDkwODM0MjFaFw0yNTA4MTYwODM0MjBaMBgxFjAUBgNV BAMTDTY4OTcwODBkLWY5YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWXq2amKYKgGhHopaphbLBD146BhQNO4ypw0wdOmt9csx9TXu7TEc0RuKww8TC LKF7c4DhK7IADoYxRklkfigdHf6zXqBdC8ohRPgmCxNb0DAEdTfDTxSJaSioIduB R6M2PW98inigyoax3Z1oFhQJcQTIJDIKGH/5XbgDmY66UmBuBlXWWUFC/zOd5Ft0 iFY9NL7lgFVwL5ZDDNavOzH0jkRf0uKRwF0d0isQHNjLe1VTW0qHOHurs6kVqVMw jmqtq5Ys0jVyvLlX+vtqmhrCPtIDojmGf8GHd1PHtCBgT73ZLFF3ZlyaFR9LTUGD S1s8tvfoVIqh5jmZK/8mS/z5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM7uEi1Gz 4XAnRU2cXB4qphFPISAwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJxkasBLY/XOdSOuiCZ4yX0GEp43VLeLZbC8RHEaDqppAUNgxQkbTJD DYKAbTVS2+UDMpEAmIyi71G94jz5H6uftGcu0Z06SH/y6boT1C4E738yAOM4tbb2 hXxMSFo2vrCTikuOHG+zv6GChVmMggWw0LTZ+iQsluDc1W3ojsM7Wr+Lol+OMT8H vfUmeu8N3u7+qWx56V3eoruCG0zqkHpu1ZuOmwZ4SUGU+xdeH/o6AW3Um2+z9h9m RRBRpBdH1qvQQBtTDYNGqIe2WUWpc7dsI3zr/ujReAlaMq008g1p5W8roa2Des8L OTA2TSItmQKXhZkVY/XE8dbFJIxgBqs= -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:26 2025 by rpki-client