$ rpki-client -vvf rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft File: GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft (raw, json) Hash identifier: 6t6kxIPKiDen4MxrEkBBilJ4CZ7vG6dSitkQJ5y2e7s= Subject key identifier: 96:8A:A0:3A:38:69:7E:3C:E6:9D:23:CF:1E:37:04:88:DB:87:3F:04 Authority key identifier: 19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E Certificate issuer: /CN=A917C615/serialNumber=1948CC14F30ED83CAA52C8EC4B08C44CA83A629E Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft Manifest number: 0C75 Signing time: Sun 20 Jul 2025 18:19:54 +0000 Manifest this update: Sun 20 Jul 2025 18:19:54 +0000 Manifest next update: Sun 27 Jul 2025 18:19:54 +0000 Files and hashes: 1: GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl (hash: c7aeWxmN9ycgo+hl7C4WZLz+PsXaJjVCHx/pMapugkU=) 2: 9A19DA76006E11EAA4A23169C4F9AE02.roa (hash: xXy4YLIIWobgpWskblv4qsKYOQzH1cx/NBVAIabfj3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C615, serialNumber=1948CC14F30ED83CAA52C8EC4B08C44CA83A629E Validity Not Before: Jul 20 18:19:54 2025 GMT Not After : Jul 27 18:19:54 2025 GMT Subject: CN=687d334a-2de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:46:14:b7:9a:a4:15:53:19:eb:82:2c:33:09: d3:a3:fd:93:16:f6:3c:a2:44:2d:a5:0e:25:a5:9a: 47:a7:f4:bc:9e:cd:a1:f7:8f:13:7e:14:20:d6:86: 1b:cd:39:fc:29:ed:26:45:d9:05:8c:11:3e:0e:a9: 8c:3a:a5:53:9b:a7:5c:1c:05:58:b5:46:3d:38:30: 47:35:b8:6b:8a:63:b7:ec:07:f1:73:5b:4d:63:59: ca:ad:6a:7e:11:75:74:e0:da:44:3a:58:33:14:c2: 72:f4:e8:4b:8f:d8:d3:cb:96:8f:01:3d:f7:49:6f: 24:eb:ae:a0:50:54:d8:66:c7:a5:e0:6c:e5:c9:cb: 05:29:13:2b:1f:45:66:63:5f:91:c0:fe:51:89:c1: fb:32:39:4b:c1:e2:31:ee:22:9f:58:e8:62:b6:d8: 1c:1f:47:35:76:19:c6:c0:f4:21:e8:33:9b:04:6c: b0:c9:7d:31:8e:13:8d:7c:c6:64:5f:31:26:92:ff: 21:ab:09:96:0d:c3:a5:02:a9:f6:0e:1e:43:4b:bb: 24:8d:d9:aa:31:da:89:8f:e3:48:e9:24:15:f9:49: 8a:31:55:c4:5b:a3:c6:c5:c1:2a:8a:96:48:db:31: ac:68:8e:e5:96:05:50:f4:b9:4d:44:43:1c:b0:9c: df:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8A:A0:3A:38:69:7E:3C:E6:9D:23:CF:1E:37:04:88:DB:87:3F:04 X509v3 Authority Key Identifier: keyid:19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:55:be:11:a7:3b:41:4a:37:c7:46:cd:c5:45:11:c0:f2:7f: 07:dc:03:fc:04:bd:41:ca:ca:5e:1f:60:e7:d0:c3:92:d6:9d: 35:3f:d3:ab:28:89:7e:8d:c5:24:81:62:14:a3:96:02:3e:f1: f6:fc:05:cc:c0:e9:0b:d7:c4:89:79:58:45:82:9d:03:50:98: 45:13:8f:1b:94:b5:c5:87:21:e2:0c:8a:a4:6f:30:77:50:b6: 38:0c:9c:10:d4:11:aa:b5:20:2b:bb:2f:9c:9c:d0:fe:6b:5c: ca:6f:bd:d4:44:d2:9c:38:20:ff:18:81:f9:58:51:db:70:fd: 99:c7:1e:64:c5:37:ab:83:89:85:96:89:44:50:85:39:79:da: e1:00:5d:cd:16:73:da:5e:c8:1b:c1:79:1b:29:8b:7b:d8:cd: 91:fd:a5:10:fb:e0:fb:f2:da:bc:7c:c2:38:ef:99:b8:c7:30: ab:ab:09:7d:62:80:87:70:cd:be:05:0e:a4:2e:79:0a:fc:57: ea:b4:61:4b:f6:9b:94:69:ce:37:1b:df:be:62:85:4e:d7:49: e6:80:df:c7:bb:28:89:9b:60:14:89:c4:e6:96:79:26:71:11: e6:40:16:62:73:a3:31:d0:62:31:4a:68:24:32:a0:5a:00:86: ca:a9:7c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MTUxMTAvBgNVBAUTKDE5NDhDQzE0RjMwRUQ4M0NBQTUyQzhFQzRCMDhDNDRD QTgzQTYyOUUwHhcNMjUwNzIwMTgxOTU0WhcNMjUwNzI3MTgxOTU0WjAYMRYwFAYD VQQDEw02ODdkMzM0YS0yZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UYUt5qkFVMZ64IsMwnTo/2TFvY8okQtpQ4lpZpHp/S8ns2h948TfhQg1oYb zTn8Ke0mRdkFjBE+DqmMOqVTm6dcHAVYtUY9ODBHNbhrimO37Afxc1tNY1nKrWp+ EXV04NpEOlgzFMJy9OhLj9jTy5aPAT33SW8k666gUFTYZsel4GzlycsFKRMrH0Vm Y1+RwP5RicH7MjlLweIx7iKfWOhittgcH0c1dhnGwPQh6DObBGywyX0xjhONfMZk XzEmkv8hqwmWDcOlAqn2Dh5DS7skjdmqMdqJj+NI6SQV+UmKMVXEW6PGxcEqipZI 2zGsaI7llgVQ9LlNREMcsJzfUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaKoDo4 aX485p0jzx43BIjbhz8EMB8GA1UdIwQYMBaAFBlIzBTzDtg8qlLI7EsIxEyoOmKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYxNS80MjAwQzlFNjAw NkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJEeXFVc2pzU3dqRVRLZzZZ cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dVak1GUE1PMkR5cVVzanNTd2pFVEtnNllwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYxNS80MjAwQzlFNjAwNkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJE eXFVc2pzU3dqRVRLZzZZcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzVb4RpztBSjfHRs3FRRHA8n8H3AP8BL1ByspeH2Dn0MOS1p01P9Or KIl+jcUkgWIUo5YCPvH2/AXMwOkL18SJeVhFgp0DUJhFE48blLXFhyHiDIqkbzB3 ULY4DJwQ1BGqtSAruy+cnND+a1zKb73URNKcOCD/GIH5WFHbcP2Zxx5kxTerg4mF lolEUIU5edrhAF3NFnPaXsgbwXkbKYt72M2R/aUQ++D78tq8fMI475m4xzCrqwl9 YoCHcM2+BQ6kLnkK/FfqtGFL9puUac43G9++YoVO10nmgN/HuyiJm2AUicTmlnkm cRHmQBZic6Mx0GIxSmgkMqBaAIbKqXyj -----END CERTIFICATE-----Generated at Mon Jul 21 18:31:56 2025 by rpki-client