$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: 2GcqKDQY38IMZ57Vx7FLI6oGCxLuxSTMYrCI/VKdUz0= Subject key identifier: 19:2B:B8:68:43:1D:D9:DD:54:82:97:B0:0E:97:31:41:06:31:52:18 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 1F Signing time: Fri 05 Sep 2025 08:23:09 +0000 Manifest this update: Fri 05 Sep 2025 08:23:09 +0000 Manifest next update: Fri 12 Sep 2025 08:23:09 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: M+z6RPdq1hooIkL/paJvU0EkolD35q2Ue7Q15Q38eek=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Sep 5 08:23:09 2025 GMT Not After : Sep 12 08:23:09 2025 GMT Subject: CN=68ba9ded-5dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9c:6c:8b:ec:62:85:ce:4b:dd:ad:10:d7:f8: 30:11:54:bc:46:1f:e0:5f:2a:08:1d:ac:68:da:8f: 73:08:4d:58:1e:70:69:97:6a:fc:48:f1:b8:49:76: 92:8e:39:21:c9:3c:93:fb:db:0d:b3:f0:e4:bf:d3: cc:78:c0:33:3f:bf:4a:93:50:ea:42:4f:93:c5:ba: db:33:21:5e:4e:16:1c:ef:bd:18:72:56:c5:90:f2: 45:f4:c3:e1:a3:f5:de:f9:db:5f:a6:c3:6b:b0:d3: 38:19:8d:32:d9:41:a5:72:4d:c1:e2:41:04:db:0c: c9:93:b2:6a:41:06:78:91:e1:bd:38:02:08:2b:b1: b0:e4:d0:e3:01:91:ce:99:f3:5c:15:ca:b7:ae:9f: c9:fd:32:92:73:38:c6:aa:05:6c:1b:1b:f3:8e:2c: 56:88:19:de:57:c8:03:ef:52:84:77:8f:6f:a1:e1: b7:67:a7:cb:31:f9:6a:4d:9b:3a:37:1e:42:ae:41: a7:b6:98:09:80:b5:4d:5c:17:07:c3:a7:3d:ab:e1: 06:73:bf:81:7d:8c:61:5f:16:c7:c6:0a:67:fc:48: 8d:0d:bb:1d:21:5c:29:fe:a5:a8:15:66:9f:2d:8b: 88:da:3c:db:30:2f:0a:3d:91:8f:21:2d:67:66:68: 2a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:2B:B8:68:43:1D:D9:DD:54:82:97:B0:0E:97:31:41:06:31:52:18 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:31:fd:24:cd:9e:10:b8:85:34:f3:49:0b:ee:9e:02:9d:49: fc:57:56:f0:d7:71:2a:59:89:32:da:d7:fc:40:08:e2:5f:2c: 37:2b:db:bc:20:21:12:46:62:81:31:a7:20:6e:47:e7:c9:b6: ce:70:bc:95:a1:ca:6a:f6:25:f1:62:ad:4f:14:99:dd:8e:1a: fe:90:a3:4d:ca:d3:54:34:ef:9c:23:88:75:23:d5:5e:9a:69: 08:be:69:58:24:bf:72:a5:06:77:27:07:3b:0c:e0:fe:38:db: 68:49:b1:8c:91:0e:13:54:4a:61:71:1a:06:88:e1:2a:ca:da: 5b:be:92:a7:57:4e:a6:38:12:aa:63:2d:36:43:b6:b3:a1:31: 36:6a:7d:37:8e:f6:d0:2c:82:06:e7:94:11:27:e7:65:f6:a3: 5b:dc:7c:6c:9a:86:6e:9f:01:cb:45:d7:a0:bc:46:d5:2e:d0: e4:ed:b6:50:c7:57:8e:e6:82:8a:47:6b:2e:7e:fa:bf:68:61: a0:69:4e:77:75:27:ce:67:c7:e6:58:89:32:29:a5:af:e3:5b: 0c:f2:8e:71:47:99:18:53:3e:76:b0:a1:0d:76:ed:d1:ef:e0: 6f:5a:91:db:91:77:dd:6b:1e:87:8c:b8:42:bc:a6:ea:e0:ec: df:63:8a:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTA5MDUwODIzMDlaFw0yNTA5MTIwODIzMDlaMBgxFjAUBgNV BAMTDTY4YmE5ZGVkLTVkYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2nGyL7GKFzkvdrRDX+DARVLxGH+BfKggdrGjaj3MITVgecGmXavxI8bhJdpKO OSHJPJP72w2z8OS/08x4wDM/v0qTUOpCT5PFutszIV5OFhzvvRhyVsWQ8kX0w+Gj 9d7521+mw2uw0zgZjTLZQaVyTcHiQQTbDMmTsmpBBniR4b04AggrsbDk0OMBkc6Z 81wVyreun8n9MpJzOMaqBWwbG/OOLFaIGd5XyAPvUoR3j2+h4bdnp8sx+WpNmzo3 HkKuQae2mAmAtU1cFwfDpz2r4QZzv4F9jGFfFsfGCmf8SI0Nux0hXCn+pagVZp8t i4jaPNswLwo9kY8hLWdmaCrPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGSu4aEMd 2d1UgpewDpcxQQYxUhgwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL8x/STNnhC4hTTzSQvungKdSfxXVvDXcSpZiTLa1/xACOJfLDcr27wg IRJGYoExpyBuR+fJts5wvJWhymr2JfFirU8Umd2OGv6Qo03K01Q075wjiHUj1V6a aQi+aVgkv3KlBncnBzsM4P4422hJsYyRDhNUSmFxGgaI4SrK2lu+kqdXTqY4Eqpj LTZDtrOhMTZqfTeO9tAsggbnlBEn52X2o1vcfGyahm6fActF16C8RtUu0OTttlDH V47mgopHay5++r9oYaBpTnd1J85nx+ZYiTIppa/jWwzyjnFHmRhTPnawoQ127dHv 4G9akduRd91rHoeMuEK8purg7N9jihg= -----END CERTIFICATE-----Generated at Sat Sep 6 20:51:58 2025 by rpki-client