$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: Wd1CsitNCW3fpXGellKQ0Z8Bh70BKFcKkRCek9HIRmM= Subject key identifier: 75:8A:FE:E0:3C:26:54:BE:8D:C1:60:9B:76:10:5E:7D:83:3E:49:50 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 14ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 14E3 Signing time: Sat 14 Jun 2025 16:47:16 +0000 Manifest this update: Sat 14 Jun 2025 16:47:15 +0000 Manifest next update: Sat 21 Jun 2025 16:47:15 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: lZN2ekH0ZXxftv+iT8wQXxn1THHhAJDfrKoHpvOys+E=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: ts6CuXT017m+Eo1tnvA5GQ371D5wqgoVWLN1l6w+WmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5357 (0x14ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Jun 14 16:47:15 2025 GMT Not After : Jun 21 16:47:15 2025 GMT Subject: CN=684da793-d264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ac:53:d3:8c:3a:af:b7:1e:8d:7e:5e:03:81: cb:18:e7:22:34:41:53:f5:df:07:bc:4c:b6:de:d7: 98:8f:16:b2:55:61:9a:1e:36:d4:36:f9:19:8d:57: f4:52:94:85:ac:69:2a:b1:95:08:1e:dc:e0:d8:b8: 38:7d:21:93:0d:5b:3f:91:58:77:27:52:d0:19:ca: 8a:a7:cc:de:eb:f5:6f:d8:f7:03:4d:82:db:fb:6c: 76:5c:4e:38:73:39:bd:bf:6e:12:28:12:cd:95:83: 68:40:c9:1c:10:01:e6:7b:ab:40:d6:72:5b:3f:67: 3b:8b:d6:0d:77:b3:29:b7:6a:1f:d9:cd:aa:ca:3a: 64:83:fc:90:4f:61:bb:06:80:ce:95:1a:96:99:fe: 93:f7:d0:d5:1c:41:e9:b6:39:99:af:1f:fb:7d:7a: 8f:2d:b6:da:d8:e2:80:06:13:44:37:34:30:3e:c2: 86:17:c2:6d:6e:c4:3b:f3:de:5d:9a:6e:39:f7:ec: 99:44:7a:65:f6:65:1e:a2:cb:85:9a:82:52:22:fe: 09:a3:dc:44:81:8b:a7:bb:e9:4c:0f:bf:ee:5f:cf: d0:9a:02:55:67:6d:33:9e:44:bd:a5:c6:d7:04:ad: 17:00:c7:4b:69:f0:86:04:f2:6c:e2:58:99:39:1f: f8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8A:FE:E0:3C:26:54:BE:8D:C1:60:9B:76:10:5E:7D:83:3E:49:50 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:79:72:f6:39:e9:8f:11:61:9c:42:f8:0b:17:2a:9d:70:e1: c9:62:e2:87:36:02:6f:66:25:f2:2b:f2:10:77:a5:a9:03:ed: 3a:3e:10:d3:05:33:6a:ba:a9:39:e1:25:c7:04:e0:40:cc:bc: 66:88:cf:55:27:9b:1a:91:de:a0:45:54:45:49:30:4c:f8:40: dd:87:32:cb:5c:50:12:c5:44:07:2f:3d:1d:d2:a0:f5:0b:57: e2:6a:dd:bb:31:b4:47:06:35:ed:8e:51:fa:70:60:9d:78:fa: be:52:02:d4:eb:9e:ff:fa:92:c8:00:ed:75:fa:3d:1b:59:6b: 5e:a9:22:00:00:dd:52:c0:1e:01:65:e3:b4:b2:53:d1:73:71: 65:c9:d7:26:d2:13:e1:8d:30:33:2e:72:51:10:35:6d:bb:b8: 82:36:a3:29:ec:c1:6e:0f:76:08:74:32:fd:a6:49:95:b9:ab: 35:f0:e6:0b:42:12:66:10:01:ad:75:86:b2:ce:1a:f1:50:98: cb:29:f3:1c:01:fa:c9:a8:ce:28:b8:7c:14:8d:b9:22:35:33: ff:f7:f6:2f:43:3b:34:58:e7:42:8b:8c:5f:dd:58:20:c6:48: 5a:97:b9:e5:41:69:56:02:f8:c6:5c:73:06:b0:41:83:45:a0: fd:2b:ba:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUwNjE0MTY0NzE1WhcNMjUwNjIxMTY0NzE1WjAYMRYwFAYD VQQDEw02ODRkYTc5My1kMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6xT04w6r7cejX5eA4HLGOciNEFT9d8HvEy23teYjxayVWGaHjbUNvkZjVf0 UpSFrGkqsZUIHtzg2Lg4fSGTDVs/kVh3J1LQGcqKp8ze6/Vv2PcDTYLb+2x2XE44 czm9v24SKBLNlYNoQMkcEAHme6tA1nJbP2c7i9YNd7Mpt2of2c2qyjpkg/yQT2G7 BoDOlRqWmf6T99DVHEHptjmZrx/7fXqPLbba2OKABhNENzQwPsKGF8JtbsQ7895d mm459+yZRHpl9mUeosuFmoJSIv4Jo9xEgYunu+lMD7/uX8/QmgJVZ20znkS9pcbX BK0XAMdLafCGBPJs4liZOR/4ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWK/uA8 JlS+jcFgm3YQXn2DPklQMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEeXL2OemPEWGcQvgLFyqdcOHJYuKHNgJvZiXyK/IQd6WpA+06PhDT BTNquqk54SXHBOBAzLxmiM9VJ5sakd6gRVRFSTBM+EDdhzLLXFASxUQHLz0d0qD1 C1fiat27MbRHBjXtjlH6cGCdePq+UgLU657/+pLIAO11+j0bWWteqSIAAN1SwB4B ZeO0slPRc3Flydcm0hPhjTAzLnJREDVtu7iCNqMp7MFuD3YIdDL9pkmVuas18OYL QhJmEAGtdYayzhrxUJjLKfMcAfrJqM4ouHwUjbkiNTP/9/YvQzs0WOdCi4xf3Vgg xkhal7nlQWlWAvjGXHMGsEGDRaD9K7rs -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:57 2025 by rpki-client