$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: Pfwoalxp3WriIzMOOYpU4Yh4nbtcIzG9cLOCaUf+UiY= Subject key identifier: 24:E3:76:57:76:FA:B9:98:F1:3D:A5:38:15:1B:A8:9D:58:E3:79:49 Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 0660 Signing time: Fri 18 Jul 2025 22:49:42 +0000 Manifest this update: Fri 18 Jul 2025 22:49:41 +0000 Manifest next update: Fri 25 Jul 2025 22:49:41 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: DDm/4t7GM2j6EsKBpMfP/cKd0KR0RJiem6+tyBimWhg=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Jul 18 22:49:41 2025 GMT Not After : Jul 25 22:49:41 2025 GMT Subject: CN=687acf85-db26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9e:5c:7f:1f:7d:a0:b7:41:ba:9f:37:90:54: 60:c9:9d:02:00:cd:42:03:ba:02:fa:91:0b:90:26: 56:b3:01:1d:62:f2:18:a1:16:19:f5:86:37:16:f5: 12:39:38:0e:fc:06:f0:5a:9f:d0:7d:0b:21:e5:5e: 5e:6a:a9:05:71:7a:a7:82:06:3c:ca:2a:d2:d8:cc: 1f:5f:87:3e:b5:0e:9e:bc:fe:85:a7:bd:c5:d7:8c: a3:72:44:37:0c:11:df:6b:9a:b1:fd:c8:81:0b:63: 0f:66:2a:2e:e5:8d:83:23:fb:c8:af:34:d5:5f:26: 51:88:01:cb:33:a4:70:b5:c5:1c:76:d8:0a:17:39: b3:a6:d3:1d:e5:51:89:ae:31:85:d7:bd:07:fa:68: 06:fe:86:92:9f:f2:86:a5:b4:e7:60:c6:51:b5:b2: 38:03:89:ef:86:a7:41:f7:46:16:48:2c:05:1d:ce: bb:45:30:15:d8:b6:e0:73:a6:a1:70:7f:55:44:a3: e2:11:03:aa:7d:43:96:29:1d:6a:2b:28:3d:61:e0: 6f:9d:7a:f6:10:bb:49:8d:88:77:f4:39:87:09:3e: a4:be:b6:83:22:12:72:05:86:fc:eb:eb:be:70:60: d1:c6:5a:13:4e:10:f5:a2:29:9f:95:ac:eb:e5:96: 5b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E3:76:57:76:FA:B9:98:F1:3D:A5:38:15:1B:A8:9D:58:E3:79:49 X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f6:7d:76:ec:eb:75:15:80:e9:14:09:88:f9:18:7b:79:9a: 03:23:54:c2:62:2c:74:33:6b:4c:4a:e9:8f:61:c5:10:47:e9: 08:89:00:b1:ad:51:7e:5c:b2:a0:d0:0c:4c:1e:b6:c9:3d:c7: 04:6b:c6:c9:e9:ca:d0:9e:e6:6b:ab:4a:44:49:40:eb:db:7f: a2:0b:7a:01:69:34:52:41:dd:b7:44:52:71:7f:5f:51:43:11: 91:c5:b2:8f:b7:9d:57:a1:be:6c:31:6e:a3:f2:79:f4:68:5b: 98:1c:e3:7b:44:c1:02:49:0a:35:7e:32:93:72:61:ef:bc:ec: 71:af:6d:d3:2c:9d:a2:ba:3e:ae:e7:4a:67:4f:54:0f:24:f2: 07:b8:a4:68:0a:c3:04:af:96:b6:48:c3:1e:0d:f8:8c:a2:0a: 8e:ac:e3:c3:e1:74:e4:a6:12:51:cb:7f:93:4e:c5:6d:5e:e4: a0:f7:47:18:0c:46:48:67:00:94:39:fb:dc:04:0e:e8:70:45: 65:6c:ec:69:b0:b7:42:88:3b:e4:1c:0f:0a:e0:88:4b:1c:a4: 0a:0e:bd:12:ee:dc:1c:81:92:89:4d:a4:9f:0e:16:3e:04:f9: ce:ac:2b:b3:54:df:2a:df:37:cf:b8:3d:a8:08:4d:04:0b:87: 2e:fa:99:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwNzE4MjI0OTQxWhcNMjUwNzI1MjI0OTQxWjAYMRYwFAYD VQQDEw02ODdhY2Y4NS1kYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJ5cfx99oLdBup83kFRgyZ0CAM1CA7oC+pELkCZWswEdYvIYoRYZ9YY3FvUS OTgO/AbwWp/QfQsh5V5eaqkFcXqnggY8yirS2MwfX4c+tQ6evP6Fp73F14yjckQ3 DBHfa5qx/ciBC2MPZiou5Y2DI/vIrzTVXyZRiAHLM6RwtcUcdtgKFzmzptMd5VGJ rjGF170H+mgG/oaSn/KGpbTnYMZRtbI4A4nvhqdB90YWSCwFHc67RTAV2Lbgc6ah cH9VRKPiEQOqfUOWKR1qKyg9YeBvnXr2ELtJjYh39DmHCT6kvraDIhJyBYb86+u+ cGDRxloTThD1oimflazr5ZZbuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTjdld2 +rmY8T2lOBUbqJ1Y43lJMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk9n127Ot1FYDpFAmI+Rh7eZoDI1TCYix0M2tMSumPYcUQR+kIiQCx rVF+XLKg0AxMHrbJPccEa8bJ6crQnuZrq0pESUDr23+iC3oBaTRSQd23RFJxf19R QxGRxbKPt51Xob5sMW6j8nn0aFuYHON7RMECSQo1fjKTcmHvvOxxr23TLJ2iuj6u 50pnT1QPJPIHuKRoCsMEr5a2SMMeDfiMogqOrOPD4XTkphJRy3+TTsVtXuSg90cY DEZIZwCUOfvcBA7ocEVlbOxpsLdCiDvkHA8K4IhLHKQKDr0S7twcgZKJTaSfDhY+ BPnOrCuzVN8q3zfPuD2oCE0EC4cu+pk+ -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:36 2025 by rpki-client