$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: a3ISrW/+CV66hbQu0CDgiLoa8PJDlDX9M/IZIt/5fSM= Subject key identifier: 22:A7:34:BD:57:C8:D7:B4:B0:04:9B:8E:09:C0:97:CB:7D:9C:81:36 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0291 Signing time: Sat 19 Jul 2025 02:02:58 +0000 Manifest this update: Sat 19 Jul 2025 02:02:57 +0000 Manifest next update: Sat 26 Jul 2025 02:02:57 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: XpjTFeI7yWQ3oJtl53ygemsO6l7nhRX5L+3hv6uRDis=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Jul 19 02:02:57 2025 GMT Not After : Jul 26 02:02:57 2025 GMT Subject: CN=687afcd1-31ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fa:5e:32:a0:c2:39:c7:ea:0c:29:27:5c:5d: 74:9f:c0:15:fa:5c:82:9e:cd:57:3d:74:2d:f3:ac: 07:87:aa:57:d7:53:d2:3b:d2:7e:c2:9b:c2:25:22: c5:75:39:d9:24:bc:2e:48:7f:c2:43:56:a7:89:7a: 71:8a:71:73:21:b8:f2:fe:75:6b:b4:6c:f9:f8:09: e4:cd:bf:e8:3d:70:d0:d5:ab:86:8b:7d:59:ef:b2: 41:2a:54:60:2c:83:bb:9a:67:c9:f6:5c:51:b6:85: 4d:48:ad:25:5a:d3:e4:75:79:02:56:0b:f7:44:6a: 21:80:bd:42:3f:76:03:96:60:1c:1c:95:d9:2f:6a: f5:9a:ba:de:73:77:d3:62:38:d1:d4:da:73:55:4a: da:d1:28:cf:27:a0:4a:a6:57:20:04:bf:40:98:95: 78:01:7c:51:1b:fe:ec:4b:3f:95:69:b8:75:ff:43: dc:d4:ae:3d:8b:a0:84:7c:19:77:9c:76:f8:59:d6: f3:1e:8f:0e:55:e8:72:9d:09:97:94:a8:13:71:d4: 48:d2:56:19:92:3e:e6:30:d1:82:b7:4e:ff:ad:ae: eb:82:ed:c9:07:88:ea:52:96:82:1c:5e:32:e6:fe: 61:8c:f3:f4:8a:d9:99:a4:78:0e:07:81:09:65:fc: bb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A7:34:BD:57:C8:D7:B4:B0:04:9B:8E:09:C0:97:CB:7D:9C:81:36 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:99:3b:54:c8:54:09:8b:23:d2:c2:98:f8:10:19:56:7e:aa: 5d:67:18:b7:c1:23:3a:28:39:7a:32:08:df:9a:ea:57:3b:00: 19:7b:ac:02:f8:d2:35:bc:d7:e0:4b:96:1f:0a:07:87:00:6c: 4b:c4:d9:66:cf:a6:d3:d2:b5:70:b4:38:54:ba:e6:94:5d:1c: 89:93:c9:05:59:65:45:ee:39:fa:39:7e:ed:66:1b:eb:4d:d6: 39:c7:34:23:46:b5:36:07:0b:a3:f4:aa:d9:b9:ba:8c:17:18: ba:de:6b:d6:ce:e0:3f:69:e0:4d:47:71:85:e2:87:7c:93:0b: 79:f2:5b:83:b5:13:b2:75:66:80:2e:0a:39:17:c7:90:0f:ba: a3:87:ad:f8:cf:3f:8e:ea:ee:d2:98:fa:0f:72:eb:77:8d:4b: 57:1f:15:ba:ab:d7:fb:bd:53:9d:97:bc:3b:ef:a9:0a:ee:5f: 92:a8:2a:68:d8:f6:0c:cf:45:06:00:e2:a4:2a:3a:f4:d5:bd: 4d:71:2a:df:23:30:3d:f6:89:de:de:cd:f4:6e:f9:a7:58:5e: 67:c5:ca:a9:f5:e3:73:53:cc:22:d9:19:83:04:e4:22:7b:ff: 73:8a:c4:1c:9f:df:d4:73:d7:a8:47:d1:59:8d:96:21:b9:4a: 26:08:c0:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwNzE5MDIwMjU3WhcNMjUwNzI2MDIwMjU3WjAYMRYwFAYD VQQDEw02ODdhZmNkMS0zMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfpeMqDCOcfqDCknXF10n8AV+lyCns1XPXQt86wHh6pX11PSO9J+wpvCJSLF dTnZJLwuSH/CQ1aniXpxinFzIbjy/nVrtGz5+Ankzb/oPXDQ1auGi31Z77JBKlRg LIO7mmfJ9lxRtoVNSK0lWtPkdXkCVgv3RGohgL1CP3YDlmAcHJXZL2r1mrrec3fT YjjR1NpzVUra0SjPJ6BKplcgBL9AmJV4AXxRG/7sSz+Vabh1/0Pc1K49i6CEfBl3 nHb4WdbzHo8OVehynQmXlKgTcdRI0lYZkj7mMNGCt07/ra7rgu3JB4jqUpaCHF4y 5v5hjPP0itmZpHgOB4EJZfy7NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKnNL1X yNe0sASbjgnAl8t9nIE2MB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEmTtUyFQJiyPSwpj4EBlWfqpdZxi3wSM6KDl6MgjfmupXOwAZe6wC +NI1vNfgS5YfCgeHAGxLxNlmz6bT0rVwtDhUuuaUXRyJk8kFWWVF7jn6OX7tZhvr TdY5xzQjRrU2Bwuj9KrZubqMFxi63mvWzuA/aeBNR3GF4od8kwt58luDtROydWaA Lgo5F8eQD7qjh634zz+O6u7SmPoPcut3jUtXHxW6q9f7vVOdl7w776kK7l+SqCpo 2PYMz0UGAOKkKjr01b1NcSrfIzA99one3s30bvmnWF5nxcqp9eNzU8wi2RmDBOQi e/9zisQcn9/Uc9eoR9FZjZYhuUomCMAo -----END CERTIFICATE-----Generated at Sun Jul 20 03:44:10 2025 by rpki-client