$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: jiCvXGGzIWv7G+vlviqa+/vfDIN4bkvU49076cUCumE= Subject key identifier: BB:19:67:26:4D:F2:99:72:7A:2B:EC:DA:0D:D8:F7:02:B8:A5:5C:83 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 06 Signing time: Sat 19 Jul 2025 08:27:41 +0000 Manifest this update: Sat 19 Jul 2025 08:27:40 +0000 Manifest next update: Sat 26 Jul 2025 08:27:40 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: 2tl7pUyKS/47WiMRcaA5FaqKrTXtoZMrxbTnmZ/cRkQ=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Jul 19 08:27:40 2025 GMT Not After : Jul 26 08:27:40 2025 GMT Subject: CN=687b56fd-d8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a1:76:59:2e:58:4c:41:d9:44:91:e6:a4:31: 3d:3e:34:b6:c1:27:9a:3c:09:d7:8e:70:4f:18:a8: 11:2d:a2:a5:a6:e9:f1:b0:ce:6b:05:b9:bf:3d:7a: 39:84:9b:bb:02:c8:ee:a9:26:1f:38:5e:02:df:d4: ce:f8:20:d2:1a:81:ae:1d:0f:bf:4e:e1:7c:0b:2e: ca:99:66:91:62:e5:20:53:72:87:c1:98:11:e0:5d: c4:49:85:d9:9c:eb:6e:88:ff:b2:a1:4a:46:8f:8e: 79:9f:d9:08:5d:b5:c2:ae:42:39:75:54:84:7e:09: 34:0f:bf:a1:48:a1:e8:57:c4:2e:16:cf:05:9c:74: 46:af:7e:9f:a3:3f:4c:9c:6c:16:f2:7f:dc:17:f1: 99:ac:fd:91:4d:f9:ca:87:90:9d:24:7b:44:2e:e2: f6:71:ca:79:80:95:23:53:8e:e8:91:1b:f6:f0:1b: 87:8b:58:28:1f:70:71:90:5a:62:c5:12:56:bd:30: 05:b8:66:0e:58:60:55:74:6a:2e:05:9a:b5:6d:2b: 15:ce:bb:ca:d8:ed:44:ba:d8:ab:31:30:18:b5:89: a0:8a:b2:f1:5a:a1:cb:2e:d3:0d:40:50:39:8f:67: 76:58:e6:dd:89:3e:6e:6d:80:81:08:68:ff:93:0c: 8f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:19:67:26:4D:F2:99:72:7A:2B:EC:DA:0D:D8:F7:02:B8:A5:5C:83 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7b:2c:76:4d:3b:86:20:7e:66:68:3c:a1:7b:a0:4c:47:aa: 58:6f:62:9f:a3:c2:7b:e4:f4:8d:60:ed:c5:d7:00:7e:a4:cf: 5a:58:ca:67:a8:82:26:68:d5:9d:1b:7e:dd:ff:9b:36:a2:de: de:5b:e6:51:de:32:21:00:f6:84:40:52:bf:b2:e5:6f:40:b1: bf:9f:a4:f8:e0:6e:79:77:ee:e6:b6:24:42:21:6e:d9:67:a8: f9:b6:00:99:a9:e6:97:7a:71:58:14:dc:85:3c:eb:84:1c:30: e2:0c:a1:14:05:e0:ba:5a:38:b0:b0:02:f4:d3:6c:d2:ca:74: a9:4a:80:00:71:cc:1f:12:cf:79:53:15:7c:e2:20:75:61:b1: b7:91:3c:82:c8:0b:93:16:56:1a:1c:f6:70:ab:f4:db:f4:06: 77:e7:2e:30:79:ef:b3:3c:2d:b0:88:dd:f8:15:8e:86:73:c4: 82:9b:90:2b:32:c6:15:ee:ce:db:57:03:44:fd:bb:bc:94:6d: 06:ab:6d:64:0f:9f:ac:09:6c:5e:4d:b7:84:c0:08:71:f2:bc: b6:c5:aa:50:c4:3b:18:7d:ad:0b:64:61:4e:64:29:43:07:87: 3e:9a:9f:1b:7a:e7:45:42:b4:03:d4:55:35:70:57:0c:b1:85: 51:fa:b6:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTA3MTkwODI3NDBaFw0yNTA3MjYwODI3NDBaMBgxFjAUBgNV BAMTDTY4N2I1NmZkLWQ4ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4oXZZLlhMQdlEkeakMT0+NLbBJ5o8CdeOcE8YqBEtoqWm6fGwzmsFub89ejmE m7sCyO6pJh84XgLf1M74INIaga4dD79O4XwLLsqZZpFi5SBTcofBmBHgXcRJhdmc 626I/7KhSkaPjnmf2QhdtcKuQjl1VIR+CTQPv6FIoehXxC4WzwWcdEavfp+jP0yc bBbyf9wX8Zms/ZFN+cqHkJ0ke0Qu4vZxynmAlSNTjuiRG/bwG4eLWCgfcHGQWmLF Ela9MAW4Zg5YYFV0ai4FmrVtKxXOu8rY7US62KsxMBi1iaCKsvFaocsu0w1AUDmP Z3ZY5t2JPm5tgIEIaP+TDI8RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuxlnJk3y mXJ6K+zaDdj3ArilXIMwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEB7LHZNO4YgfmZoPKF7oExHqlhvYp+jwnvk9I1g7cXXAH6kz1pYymeo giZo1Z0bft3/mzai3t5b5lHeMiEA9oRAUr+y5W9Asb+fpPjgbnl37ua2JEIhbtln qPm2AJmp5pd6cVgU3IU864QcMOIMoRQF4LpaOLCwAvTTbNLKdKlKgABxzB8Sz3lT FXziIHVhsbeRPILIC5MWVhoc9nCr9Nv0BnfnLjB577M8LbCI3fgVjoZzxIKbkCsy xhXuzttXA0T9u7yUbQarbWQPn6wJbF5Nt4TACHHyvLbFqlDEOxh9rQtkYU5kKUMH hz6anxt650VCtAPUVTVwVwyxhVH6tv0= -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:15 2025 by rpki-client