$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft File: GwdUmyUM_APdrXtURD2oOIkYEco.mft (raw, json) Hash identifier: kz/WrSQVjXB8zBueNGKnvkIeUBX5RSxtiqrxsa+IbII= Subject key identifier: 60:CC:CB:21:CA:60:30:53:52:51:38:57:A8:6D:FC:CD:B2:10:ED:8E Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft Manifest number: 8A Signing time: Sat 19 Jul 2025 06:40:49 +0000 Manifest this update: Sat 19 Jul 2025 06:40:49 +0000 Manifest next update: Sat 26 Jul 2025 06:40:49 +0000 Files and hashes: 1: GwdUmyUM_APdrXtURD2oOIkYEco.crl (hash: EyuYIRF0YZqJuzah+7VbWwbhnd+4djrwSprmsO47MIE=) 2: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (hash: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC, serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Validity Not Before: Jul 19 06:40:49 2025 GMT Not After : Jul 26 06:40:49 2025 GMT Subject: CN=687b3df1-7ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b3:02:b5:72:df:fc:02:a6:ff:be:79:0e:1d: 57:fa:3b:db:22:7e:dc:71:db:31:8b:36:24:a8:45: a0:b8:80:2e:2f:06:db:0c:19:fd:84:30:2e:33:fa: d5:39:9b:cd:76:72:7c:4e:67:47:bf:f7:9c:1e:b3: aa:50:c0:4b:a9:82:e3:4f:84:cb:96:b9:05:ed:77: 6e:2d:a6:05:f4:2e:ec:56:63:a3:80:87:b9:db:2f: 2b:82:10:54:1c:6b:44:82:ca:e8:72:52:bf:20:2f: f2:13:44:36:e6:b5:c0:f9:c8:55:67:83:d0:8a:37: 32:87:39:72:41:14:76:7e:cc:5e:71:40:18:8c:86: 4c:46:8e:bf:13:0a:e0:8c:70:af:35:3c:c1:7e:04: dd:84:f6:51:41:28:13:aa:29:c5:d9:85:08:f9:0b: a0:62:95:c5:2a:77:6b:28:02:dc:9b:81:32:10:b4: e1:98:89:bb:90:c2:57:16:23:d5:67:11:69:1e:45: 01:0b:6f:f0:61:de:c3:b6:e5:61:b5:97:fa:d1:f3: d6:ff:5a:e8:1c:8e:24:86:75:c6:87:56:67:2a:32: 08:42:ec:bc:5d:f9:8e:61:46:14:e8:45:32:a9:f4: cb:ea:17:21:fe:63:45:84:87:d1:4e:fe:c7:be:a1: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CC:CB:21:CA:60:30:53:52:51:38:57:A8:6D:FC:CD:B2:10:ED:8E X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:30:c6:1e:c3:76:c7:3a:9a:a5:31:2b:dd:7a:df:3a:da:91: 23:27:56:c5:e5:32:2e:31:b7:f1:f7:90:e9:f9:b4:f9:ba:5a: 87:b8:b5:d5:09:5b:ac:40:a3:7f:9f:48:25:a5:53:fe:03:69: b1:2f:22:ea:b8:08:22:6f:a8:f1:01:08:b7:eb:f6:fd:b0:1c: 8b:fb:b8:9e:bb:50:a4:a7:e8:dc:c5:6d:7f:14:25:37:1d:b8: 6f:ed:ca:06:7f:4f:a0:71:fe:13:98:af:e5:4c:9c:c8:be:69: 73:fe:de:6d:55:45:6c:a3:26:26:dc:cb:08:fe:09:53:49:42: e4:06:a8:88:9a:bd:06:c4:74:c3:ef:1c:d4:e4:4b:59:4a:23: 69:5e:5a:cb:2f:18:57:d6:66:60:98:b4:db:6a:f4:81:b9:82: d0:de:71:9f:40:e2:87:31:3a:1c:e2:db:1c:0d:d6:67:26:69: 7b:67:5e:04:2a:32:bd:3f:ca:91:75:71:f0:1b:0c:69:7d:2d: e7:3d:5a:ba:ea:36:3f:76:84:1f:40:89:ed:bc:c9:67:3e:0f: 80:24:86:58:5d:00:64:78:e8:e2:43:74:d9:07:8d:da:83:d5: 3e:47:32:7b:88:f1:c9:f3:27:bf:37:e6:54:4f:00:c9:9b:1a: c7:15:dc:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE4QUMxMTAvBgNVBAUTKDFCMDc1NDlCMjUwQ0ZDMDNEREFEN0I1NDQ0M0RBODM4 ODkxODExQ0EwHhcNMjUwNzE5MDY0MDQ5WhcNMjUwNzI2MDY0MDQ5WjAYMRYwFAYD VQQDEw02ODdiM2RmMS03YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rMCtXLf/AKm/755Dh1X+jvbIn7ccdsxizYkqEWguIAuLwbbDBn9hDAuM/rV OZvNdnJ8TmdHv/ecHrOqUMBLqYLjT4TLlrkF7XduLaYF9C7sVmOjgIe52y8rghBU HGtEgsroclK/IC/yE0Q25rXA+chVZ4PQijcyhzlyQRR2fsxecUAYjIZMRo6/Ewrg jHCvNTzBfgTdhPZRQSgTqinF2YUI+QugYpXFKndrKALcm4EyELThmIm7kMJXFiPV ZxFpHkUBC2/wYd7DtuVhtZf60fPW/1roHI4khnXGh1ZnKjIIQuy8XfmOYUYU6EUy qfTL6hch/mNFhIfRTv7HvqHhdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDMyyHK YDBTUlE4V6ht/M2yEO2OMB8GA1UdIwQYMBaAFBsHVJslDPwD3a17VEQ9qDiJGBHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMThBQy9ENEJBM0Q5ODk2 Q0MxMUVGOEVGQ0I4NDlDNEY5QUUwMi9Hd2RVbXlVTV9BUGRyWHRVUkQyb09Ja1lF Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MThBQy9ENEJBM0Q5ODk2Q0MxMUVGOEVGQ0I4NDlDNEY5QUUwMi9Hd2RVbXlVTV9B UGRyWHRVUkQyb09Ja1lFY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3MMYew3bHOpqlMSvdet862pEjJ1bF5TIuMbfx95Dp+bT5ulqHuLXV CVusQKN/n0glpVP+A2mxLyLquAgib6jxAQi36/b9sByL+7ieu1Ckp+jcxW1/FCU3 Hbhv7coGf0+gcf4TmK/lTJzIvmlz/t5tVUVsoyYm3MsI/glTSULkBqiImr0GxHTD 7xzU5EtZSiNpXlrLLxhX1mZgmLTbavSBuYLQ3nGfQOKHMToc4tscDdZnJml7Z14E KjK9P8qRdXHwGwxpfS3nPVq66jY/doQfQIntvMlnPg+AJIZYXQBkeOjiQ3TZB43a g9U+RzJ7iPHJ8ye/N+ZUTwDJmxrHFdzM -----END CERTIFICATE-----Generated at Sun Jul 20 02:11:58 2025 by rpki-client