$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: ftKAP1vUZbpXpLDgblDWYmSjfYxVnwbm4G5EXTX521A= Subject key identifier: 3C:88:1B:6A:23:70:15:76:B7:AE:94:71:6E:08:93:B7:F2:46:83:F8 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C57 Signing time: Fri 18 Jul 2025 16:18:20 +0000 Manifest this update: Fri 18 Jul 2025 16:18:20 +0000 Manifest next update: Fri 25 Jul 2025 16:18:20 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: EjUJBHlvEMKbT4sc8mSP3ltX22k+OWTIjdbGNcAdmNM=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7271 (0x1c67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Jul 18 16:18:20 2025 GMT Not After : Jul 25 16:18:20 2025 GMT Subject: CN=687a73cc-04ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:96:79:f4:14:31:e7:9c:e0:c3:5c:71:42: 37:c0:ca:29:85:c0:b7:b0:31:ce:11:e7:fc:a3:8d: 34:e7:cb:3f:5c:d4:4b:a6:5c:85:f4:fe:69:58:4f: a1:09:2e:d9:0c:e5:a9:6b:07:2d:4e:7a:a0:f9:34: cd:99:cd:fb:01:4c:c1:a0:27:d9:db:3c:03:be:06: bc:a2:26:6e:df:5a:62:18:ed:72:e0:ef:14:f9:7e: 73:b8:b8:6a:95:81:75:5f:c8:d4:a3:a2:4d:92:24: 11:23:2b:97:9f:85:5b:5b:ee:0a:33:de:06:17:a9: 85:2f:dc:12:14:0a:17:bc:ff:f9:0f:3f:58:d4:31: 89:ca:7d:36:cd:ad:0f:6d:bf:23:83:b6:e0:79:c1: 29:47:b8:45:d2:db:86:b9:10:76:56:fb:0a:3b:4e: 71:16:1e:ea:17:0e:28:bb:f3:15:ba:e4:ee:e2:6a: 8d:e9:4e:cd:31:fd:0a:53:41:f5:28:31:92:d8:c2: 9c:02:43:69:38:e1:b5:31:b1:a6:be:93:9b:01:e9: 7f:fe:da:8e:8c:50:00:9d:ae:09:9a:da:3f:78:74: a4:38:74:4e:75:7a:7d:d6:6a:28:56:56:e9:93:12: 48:dd:14:95:e6:73:40:66:17:a3:05:a7:28:97:5d: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:88:1B:6A:23:70:15:76:B7:AE:94:71:6E:08:93:B7:F2:46:83:F8 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c3:52:1c:c5:80:fa:e5:75:06:17:09:6b:00:5b:7d:48:ff: 03:bc:9f:d0:28:ae:c0:61:11:46:a1:dd:75:09:84:8a:72:75: 93:fd:23:aa:47:6e:50:b0:6b:51:85:3e:2c:93:a2:7f:2c:be: 34:4d:30:e0:2e:48:fe:9b:d5:d2:ad:e2:69:f3:60:9d:8c:88: fa:2a:f7:51:57:1f:58:c6:aa:f4:48:d4:90:8b:3b:58:4f:c5: bd:78:69:ea:07:4f:b8:46:6b:da:32:7f:e3:f1:be:ba:5e:90: a4:fc:f4:0f:fb:45:8f:f6:4d:fb:08:b3:b5:78:cd:82:9c:d2: aa:d5:9f:8e:e0:bd:60:d6:5c:b4:43:8b:02:6f:d4:51:78:19: e8:8b:9a:2e:56:10:65:48:3f:fa:b3:41:30:09:0c:bb:f4:b8: 92:e8:1c:5b:a9:35:13:db:45:6f:82:f1:6e:a1:23:8e:1d:a1: bd:08:1e:4f:cb:0f:ce:e2:d1:f1:4f:12:d1:26:f9:7f:fa:f9: bc:6b:1f:5c:1d:f4:c9:63:a7:2d:86:f8:98:33:cc:1c:c6:3b: be:ce:20:3b:0f:a7:3e:38:ca:ab:60:f2:25:c6:30:01:0b:e5: b5:71:7d:77:d2:8b:f9:7e:cb:06:fa:a3:6b:e0:99:72:53:82: f8:8f:4f:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUwNzE4MTYxODIwWhcNMjUwNzI1MTYxODIwWjAYMRYwFAYD VQQDEw02ODdhNzNjYy0wNGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL6WefQUMeec4MNccUI3wMophcC3sDHOEef8o40058s/XNRLplyF9P5pWE+h CS7ZDOWpawctTnqg+TTNmc37AUzBoCfZ2zwDvga8oiZu31piGO1y4O8U+X5zuLhq lYF1X8jUo6JNkiQRIyuXn4VbW+4KM94GF6mFL9wSFAoXvP/5Dz9Y1DGJyn02za0P bb8jg7bgecEpR7hF0tuGuRB2VvsKO05xFh7qFw4ou/MVuuTu4mqN6U7NMf0KU0H1 KDGS2MKcAkNpOOG1MbGmvpObAel//tqOjFAAna4Jmto/eHSkOHROdXp91mooVlbp kxJI3RSV5nNAZhejBacol13FpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyIG2oj cBV2t66UcW4Ik7fyRoP4MB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALw1IcxYD65XUGFwlrAFt9SP8DvJ/QKK7AYRFGod11CYSKcnWT/SOq R25QsGtRhT4sk6J/LL40TTDgLkj+m9XSreJp82CdjIj6KvdRVx9Yxqr0SNSQiztY T8W9eGnqB0+4RmvaMn/j8b66XpCk/PQP+0WP9k37CLO1eM2CnNKq1Z+O4L1g1ly0 Q4sCb9RReBnoi5ouVhBlSD/6s0EwCQy79LiS6BxbqTUT20VvgvFuoSOOHaG9CB5P yw/O4tHxTxLRJvl/+vm8ax9cHfTJY6cthviYM8wcxju+ziA7D6c+OMqrYPIlxjAB C+W1cX130ov5fssG+qNr4JlyU4L4j09h -----END CERTIFICATE-----Generated at Sun Jul 20 10:51:54 2025 by rpki-client