$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: +ReoMZBKvGZ4xJ2lB7xPMfR3NvevlTGHPNmec81Q5FM= Subject key identifier: 1C:D1:CA:A7:A2:29:2A:F4:C9:B3:A5:B2:45:7B:3E:1A:CF:41:42:55 Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 0674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 066C Signing time: Sun 10 Aug 2025 22:34:38 +0000 Manifest this update: Sun 10 Aug 2025 22:34:38 +0000 Manifest next update: Sun 17 Aug 2025 22:34:38 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: soi8JqC9f7snxXVnPGeZ2AjzoqkLGHF04Fyb3Id9Lbg=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Aug 10 22:34:38 2025 GMT Not After : Aug 17 22:34:38 2025 GMT Subject: CN=68991e7e-ba44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d4:7b:3a:4c:3e:41:55:39:09:fe:0e:be:c8: 21:fa:db:1f:e4:fc:15:72:2e:c7:aa:15:c2:44:1e: a3:f3:15:b3:90:7c:6d:b2:43:34:7b:23:cf:3d:4b: 36:9e:62:af:0f:47:11:72:02:9c:2d:ad:10:d5:bc: 59:79:a1:4b:6a:39:48:56:0a:77:6c:22:57:ae:f5: 34:7e:5e:ef:ab:63:3e:59:b9:34:f8:3c:c9:1b:bc: cc:ec:d3:3b:7b:1a:61:42:31:01:7d:d1:60:0f:51: dd:b2:dd:d3:a7:ae:4d:39:4b:9c:72:ea:59:0d:83: 94:ac:19:b5:aa:78:3b:5a:fe:89:76:31:1d:69:1b: 31:a0:c6:7c:1c:b9:dc:cc:7e:8e:b3:2e:f2:ff:46: 20:a8:45:59:01:e4:fd:fc:71:59:07:b1:f0:69:db: a1:df:10:fd:b9:11:8a:25:e2:46:86:02:bd:d2:3e: 7c:b5:4e:99:30:30:68:8c:6f:fe:1b:ea:2c:17:63: de:d7:d0:9f:90:e8:82:7a:f5:fe:c8:4d:c7:b0:02: 15:43:44:ae:7b:40:18:0a:22:3a:99:10:fc:2b:ad: 14:ae:b5:47:5b:7d:cf:ab:67:c8:8e:67:2b:f4:c9: fa:b1:bb:77:95:a1:a0:23:5b:06:fe:25:fd:d6:ba: e5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D1:CA:A7:A2:29:2A:F4:C9:B3:A5:B2:45:7B:3E:1A:CF:41:42:55 X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ba:72:d3:90:84:fe:7a:8d:01:0c:e0:73:87:73:18:39:d8: 50:0c:3a:a5:ed:ab:9e:81:58:89:80:a7:d1:02:ff:42:21:23: c2:75:5f:6d:28:ac:04:1d:e0:64:ea:23:14:b1:f0:12:19:6a: e0:b5:3b:7f:32:10:ef:88:55:51:a0:ee:48:e2:1d:8b:d1:e3: 27:72:96:8b:84:02:a1:af:55:9b:c5:e5:b7:55:8d:70:75:b3: 05:12:df:04:04:a3:ed:61:c1:d9:b1:ec:60:18:d0:01:52:d6: 53:e3:5d:f6:dd:29:13:6d:c3:d6:5f:80:50:dc:71:77:61:19: e1:35:d3:2e:f9:b0:a2:63:da:8e:e4:a5:93:f2:73:98:e1:36: 77:96:99:18:bc:78:98:c4:4f:b2:d3:25:88:21:e8:de:f5:30: dc:2b:75:39:cd:64:07:ef:b6:86:0a:31:f3:ea:b7:69:b8:be: c2:c3:47:d0:1e:5c:28:45:c8:1e:32:1a:c8:47:17:13:2d:2d: a6:fc:a1:53:13:bb:65:2b:f2:d3:59:e5:aa:5d:35:12:d3:37: 50:0e:6a:85:30:4f:f8:96:f5:2f:34:02:95:36:14:af:8a:61: 24:db:37:62:ba:d0:38:8d:6e:68:94:83:75:7d:df:5d:23:08: 09:99:f7:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwODEwMjIzNDM4WhcNMjUwODE3MjIzNDM4WjAYMRYwFAYD VQQDEw02ODk5MWU3ZS1iYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtR7Okw+QVU5Cf4Ovsgh+tsf5PwVci7HqhXCRB6j8xWzkHxtskM0eyPPPUs2 nmKvD0cRcgKcLa0Q1bxZeaFLajlIVgp3bCJXrvU0fl7vq2M+Wbk0+DzJG7zM7NM7 exphQjEBfdFgD1Hdst3Tp65NOUuccupZDYOUrBm1qng7Wv6JdjEdaRsxoMZ8HLnc zH6Osy7y/0YgqEVZAeT9/HFZB7Hwaduh3xD9uRGKJeJGhgK90j58tU6ZMDBojG/+ G+osF2Pe19CfkOiCevX+yE3HsAIVQ0Sue0AYCiI6mRD8K60UrrVHW33Pq2fIjmcr 9Mn6sbt3laGgI1sG/iX91rrlNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzRyqei KSr0ybOlskV7PhrPQUJVMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbunLTkIT+eo0BDOBzh3MYOdhQDDql7auegViJgKfRAv9CISPCdV9t KKwEHeBk6iMUsfASGWrgtTt/MhDviFVRoO5I4h2L0eMncpaLhAKhr1WbxeW3VY1w dbMFEt8EBKPtYcHZsexgGNABUtZT41323SkTbcPWX4BQ3HF3YRnhNdMu+bCiY9qO 5KWT8nOY4TZ3lpkYvHiYxE+y0yWIIeje9TDcK3U5zWQH77aGCjHz6rdpuL7Cw0fQ HlwoRcgeMhrIRxcTLS2m/KFTE7tlK/LTWeWqXTUS0zdQDmqFME/4lvUvNAKVNhSv imEk2zdiutA4jW5olIN1fd9dIwgJmfcp -----END CERTIFICATE-----Generated at Tue Aug 12 22:52:22 2025 by rpki-client