$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: 0zta0DbQxiKwGNLh6KkYp+Vhse4lh03QNXSOkjB9vKI= Subject key identifier: BF:2B:40:A2:C7:AA:48:71:FA:98:6B:AB:F2:56:97:02:E8:58:DE:F7 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D1A Signing time: Mon 04 Aug 2025 16:18:30 +0000 Manifest this update: Mon 04 Aug 2025 16:18:30 +0000 Manifest next update: Mon 11 Aug 2025 16:18:30 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: XpmRxK52qA7XMBUooDAU32swTTw/XjlSF+uXJwsOuVg=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7513 (0x1d59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Aug 4 16:18:30 2025 GMT Not After : Aug 11 16:18:30 2025 GMT Subject: CN=6890dd56-df7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ac:ae:37:4b:4c:c5:9b:74:0e:1a:90:ac:85: d2:fe:f5:38:2a:94:f9:b5:53:fc:be:86:e0:12:b4: ee:44:6b:66:9f:51:bd:5a:f9:a1:c1:31:4e:af:e3: 9d:eb:36:ee:a5:67:ff:c8:2b:7b:f8:46:c7:75:bd: 31:fd:67:22:8e:ba:81:fa:9f:bc:6b:04:26:1b:ad: 75:40:cd:da:c2:75:06:b9:aa:3a:5e:9a:b4:18:46: 28:ca:5b:55:17:8b:7a:c4:8b:d3:8d:89:5d:28:b7: 1f:df:78:1d:55:84:5b:a8:67:75:c0:15:8b:37:50: c0:1f:46:ba:e0:d3:e6:ec:35:f6:95:dd:f3:29:60: 96:c6:43:ab:0f:0c:00:24:e0:66:be:e7:35:c8:2a: 96:17:15:06:61:c4:44:a7:57:d4:e4:ca:f5:43:fe: fc:64:be:89:c1:42:14:3c:13:b5:0e:f9:e9:b9:3f: a2:5c:55:4f:17:5d:b2:d4:11:f6:1a:a8:2e:ac:51: 0f:a0:79:29:0a:58:31:2c:c7:62:ef:33:d7:ea:90: 09:07:99:3f:4f:ec:57:67:b2:50:6c:cb:95:08:00: 08:fd:82:7b:c5:66:5b:7f:79:94:97:15:56:20:f6: d0:10:af:7a:a0:f3:65:f6:1b:3b:06:77:f9:27:4e: 31:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2B:40:A2:C7:AA:48:71:FA:98:6B:AB:F2:56:97:02:E8:58:DE:F7 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:0a:ff:f5:2f:b4:fd:a9:b6:75:ad:a3:05:ab:c2:07:39:1a: 1e:49:3a:b3:23:74:62:f1:79:ee:3c:7b:31:6a:6a:b3:5e:97: 42:c5:5a:4f:57:b8:5d:3a:ed:ee:5b:13:f8:57:ea:a6:57:b6: 81:e0:22:54:da:9d:10:8e:5f:4a:81:fa:89:cb:73:f5:12:da: 37:36:01:47:5a:39:e2:17:dc:f2:c8:3f:0c:8a:5a:31:05:91: 3c:63:2e:22:a4:f0:48:23:66:db:06:6b:07:9d:64:d6:0c:c6: 72:2f:a0:6b:90:a1:36:d8:d4:e4:74:02:48:0a:0c:63:44:4d: 53:af:96:58:12:aa:ee:53:19:98:a3:22:6a:59:74:20:e7:c8: 3d:a8:b2:c2:0e:61:19:b1:0b:a2:16:79:f0:00:73:2c:7c:b6: a0:43:88:b9:62:3e:74:c7:d2:34:c0:20:17:fd:60:b6:b0:b3: 98:43:cc:ec:5e:47:4f:d7:73:29:23:c1:4f:e0:d0:b0:d1:e5: ae:e4:f9:f0:ab:01:53:c6:96:84:34:6a:ac:17:f7:ea:f7:6d: 01:73:a3:12:b9:72:81:11:84:45:7a:49:d3:35:16:de:19:6b: f3:f6:3e:f9:ee:c6:8f:5c:e3:fd:ae:9e:ad:0e:53:e9:28:be: 51:c9:fa:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwODA0MTYxODMwWhcNMjUwODExMTYxODMwWjAYMRYwFAYD VQQDEw02ODkwZGQ1Ni1kZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ayuN0tMxZt0DhqQrIXS/vU4KpT5tVP8vobgErTuRGtmn1G9WvmhwTFOr+Od 6zbupWf/yCt7+EbHdb0x/WcijrqB+p+8awQmG611QM3awnUGuao6Xpq0GEYoyltV F4t6xIvTjYldKLcf33gdVYRbqGd1wBWLN1DAH0a64NPm7DX2ld3zKWCWxkOrDwwA JOBmvuc1yCqWFxUGYcREp1fU5Mr1Q/78ZL6JwUIUPBO1DvnpuT+iXFVPF12y1BH2 GqgurFEPoHkpClgxLMdi7zPX6pAJB5k/T+xXZ7JQbMuVCAAI/YJ7xWZbf3mUlxVW IPbQEK96oPNl9hs7Bnf5J04xuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8rQKLH qkhx+phrq/JWlwLoWN73MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjCv/1L7T9qbZ1raMFq8IHORoeSTqzI3Ri8XnuPHsxamqzXpdCxVpP V7hdOu3uWxP4V+qmV7aB4CJU2p0Qjl9KgfqJy3P1Eto3NgFHWjniF9zyyD8Milox BZE8Yy4ipPBII2bbBmsHnWTWDMZyL6BrkKE22NTkdAJICgxjRE1Tr5ZYEqruUxmY oyJqWXQg58g9qLLCDmEZsQuiFnnwAHMsfLagQ4i5Yj50x9I0wCAX/WC2sLOYQ8zs XkdP13MpI8FP4NCw0eWu5PnwqwFTxpaENGqsF/fq920Bc6MSuXKBEYRFeknTNRbe GWvz9j757saPXOP9rp6tDlPpKL5Ryfpp -----END CERTIFICATE-----Generated at Wed Aug 6 10:16:41 2025 by rpki-client