$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: ZxA55sJ4hmkEp0AIwBewS2nrW+qAGxsenqIqky8Tzzc= Subject key identifier: 46:35:73:BC:27:9C:C7:36:86:36:76:C9:86:68:33:04:33:19:15:A1 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 150C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 1501 Signing time: Fri 08 Aug 2025 16:59:33 +0000 Manifest this update: Fri 08 Aug 2025 16:59:32 +0000 Manifest next update: Fri 15 Aug 2025 16:59:32 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: xoaeOhnAkpaRNvGuE8jIflSr/H3nYnCvBsinANWRRas=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5388 (0x150c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Aug 8 16:59:32 2025 GMT Not After : Aug 15 16:59:32 2025 GMT Subject: CN=68962cf4-6fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:c2:ca:76:e7:1b:28:44:33:2b:fa:ce:58: 8a:66:e5:92:1c:e2:04:2b:b0:e0:7d:59:a6:90:b7: 19:fa:cc:67:c8:d5:e3:ad:7d:2c:61:23:eb:71:51: dd:eb:54:77:ea:36:67:f1:6d:5c:d4:ed:92:7e:ce: ad:d4:42:fc:5b:84:ab:15:cc:8c:d3:92:52:f2:3b: 14:42:ec:f1:5a:50:4a:b8:cd:d5:de:aa:6a:72:9c: d5:b5:44:2f:58:ae:45:73:88:77:85:09:46:e6:a4: db:8c:93:de:1f:17:81:d3:4a:46:67:d5:6f:9a:2e: 9c:57:a1:3d:a4:64:7c:83:ca:36:3c:10:79:02:c2: fa:e2:56:36:48:6e:11:6e:41:e7:f6:75:ff:b1:95: 82:c9:ca:f8:11:96:c7:00:6f:8c:41:56:3b:e4:a8: 0a:3c:83:b6:37:d9:75:8a:c9:4d:d2:7f:d9:9c:27: d6:d0:e6:1b:1c:b4:1a:8b:ad:89:a0:9a:55:bb:95: a3:6d:3a:ac:33:87:e0:a2:87:eb:b7:76:e4:46:13: 02:7b:d0:ee:0f:b5:fb:d8:c0:02:74:35:22:b4:c3: 6f:8b:4e:84:58:0a:e9:ef:08:f9:32:5a:04:d0:cf: 06:55:d4:dd:f6:2b:0c:96:55:fc:3e:af:16:a4:b9: 65:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:35:73:BC:27:9C:C7:36:86:36:76:C9:86:68:33:04:33:19:15:A1 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:70:58:00:04:a0:c3:8e:99:ae:15:dd:13:99:0b:02:7f:ab: 44:b9:90:87:d8:ba:16:8f:d0:88:69:87:27:26:13:85:c6:96: db:d1:38:5c:8d:c3:51:33:26:0b:d4:b6:f0:4f:71:d5:31:1a: 61:d6:67:19:7c:a8:af:cf:a2:27:fd:5e:4c:cc:38:98:a3:4a: 57:42:a5:55:95:32:9d:64:74:7b:5f:81:5f:53:0f:7c:bf:3a: 68:0a:6b:92:8a:09:f3:76:79:54:76:04:c3:99:ef:52:6e:45: 48:98:59:db:ef:b7:a0:74:67:2f:00:22:58:ce:ea:f1:57:14: fb:20:32:65:c4:68:5c:c8:d8:4c:40:0a:93:c0:69:ed:82:ff: df:65:20:5c:ed:4b:5c:a8:b9:f4:64:66:b6:a8:31:e3:7a:9f: 29:ac:d5:02:cd:0d:a6:1c:74:2b:04:3c:14:ce:0f:d6:49:9c: 50:40:9f:44:37:79:63:ec:42:ca:6f:dd:62:0e:37:c3:af:de: a2:26:93:b1:ea:2b:79:13:06:c6:f3:16:1f:dd:68:2e:2f:5d: ac:7b:c9:1f:bf:2d:b7:a9:89:68:b7:d5:b4:8e:4a:44:4d:80: 12:ed:5b:d9:54:e2:d6:98:fc:26:1a:61:94:d8:1c:f6:9f:be: db:09:48:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUwODA4MTY1OTMyWhcNMjUwODE1MTY1OTMyWjAYMRYwFAYD VQQDEw02ODk2MmNmNC02ZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNnCynbnGyhEMyv6zliKZuWSHOIEK7DgfVmmkLcZ+sxnyNXjrX0sYSPrcVHd 61R36jZn8W1c1O2Sfs6t1EL8W4SrFcyM05JS8jsUQuzxWlBKuM3V3qpqcpzVtUQv WK5Fc4h3hQlG5qTbjJPeHxeB00pGZ9Vvmi6cV6E9pGR8g8o2PBB5AsL64lY2SG4R bkHn9nX/sZWCycr4EZbHAG+MQVY75KgKPIO2N9l1islN0n/ZnCfW0OYbHLQai62J oJpVu5WjbTqsM4fgoofrt3bkRhMCe9DuD7X72MACdDUitMNvi06EWArp7wj5MloE 0M8GVdTd9isMllX8Pq8WpLlliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY1c7wn nMc2hjZ2yYZoMwQzGRWhMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVcFgABKDDjpmuFd0TmQsCf6tEuZCH2LoWj9CIaYcnJhOFxpbb0Thc jcNRMyYL1LbwT3HVMRph1mcZfKivz6In/V5MzDiYo0pXQqVVlTKdZHR7X4FfUw98 vzpoCmuSignzdnlUdgTDme9SbkVImFnb77egdGcvACJYzurxVxT7IDJlxGhcyNhM QAqTwGntgv/fZSBc7UtcqLn0ZGa2qDHjep8prNUCzQ2mHHQrBDwUzg/WSZxQQJ9E N3lj7ELKb91iDjfDr96iJpOx6it5EwbG8xYf3WguL12se8kfvy23qYlot9W0jkpE TYAS7VvZVOLWmPwmGmGU2Bz2n77bCUif -----END CERTIFICATE-----Generated at Sat Aug 9 10:45:35 2025 by rpki-client