$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: 9yBvlhq7bNU3aqI2mOPBl/8lwDcg/4WnJ4EtElizbvg= Subject key identifier: 88:9B:53:40:1A:7C:0D:0C:BB:7B:8E:EC:E8:3C:B1:45:BD:EC:DB:2A Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 151B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 1510 Signing time: Sat 06 Sep 2025 16:54:31 +0000 Manifest this update: Sat 06 Sep 2025 16:54:31 +0000 Manifest next update: Sat 13 Sep 2025 16:54:31 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: PvvIy78v2X3BGv9jcSFX74+pTA4Te35vboOant3dZPw=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5403 (0x151b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Sep 6 16:54:31 2025 GMT Not After : Sep 13 16:54:31 2025 GMT Subject: CN=68bc6747-e67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f8:3d:60:1c:55:e0:3e:0e:e7:df:63:52:c2: ac:1c:3a:48:59:82:3c:fc:cd:ba:8b:7b:e3:01:96: aa:86:ac:95:8f:0f:5d:54:95:50:c4:f8:9a:01:12: fd:8a:8a:d2:2e:52:3f:41:20:7b:70:e7:c5:b9:5f: 40:d6:12:39:fb:a3:d6:3b:a4:4f:00:4a:c6:31:59: 6c:57:4c:76:f0:10:86:72:41:dd:78:fa:1b:7f:b3: e3:b0:e5:d3:ff:0a:bd:71:02:03:09:d6:5e:52:6e: df:da:ee:01:cc:bb:64:8c:30:24:1c:72:95:dd:97: 4b:7d:5b:5d:c7:3d:4e:4a:ca:58:44:9f:6c:e0:39: 8e:3a:cf:1e:d2:3e:da:af:eb:66:3f:e3:24:93:21: 80:2f:0c:c6:06:ef:b9:47:07:69:e8:0f:3d:b6:c8: 75:58:a2:86:ef:e3:07:46:77:e4:db:a6:90:9b:12: b0:41:41:eb:8c:ca:72:e7:ab:8b:e3:2b:c0:9a:9e: fa:4e:78:60:93:c9:9a:e2:f6:7c:1e:35:aa:f9:56: a5:19:33:b4:a3:48:ec:a0:c7:cd:6d:a5:6a:0a:2a: 2d:3c:d8:f9:d1:1f:b6:c5:2a:16:fa:2d:82:23:c2: bc:af:7c:16:79:13:b8:99:2a:11:bf:b8:33:e3:d0: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9B:53:40:1A:7C:0D:0C:BB:7B:8E:EC:E8:3C:B1:45:BD:EC:DB:2A X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:f1:ae:8a:65:fb:ee:cf:1e:37:ee:f8:4d:e6:09:00:14:e6: 2a:06:3e:1a:86:cc:b3:f8:19:ea:00:8e:74:16:70:c5:ee:1e: 90:18:7e:97:06:84:f1:e7:4b:41:cd:2f:e2:62:9a:61:39:b6: 2d:07:89:c2:3a:3e:83:0c:be:36:99:0a:e9:ab:57:eb:7a:89: 88:35:89:59:49:08:28:40:ad:40:f2:a5:b2:17:fe:94:09:09: f6:50:69:2b:0b:ba:59:f6:08:6d:ed:57:e7:76:8d:cc:27:72: e5:95:fb:74:ed:ee:0a:10:d9:10:36:14:2d:a9:52:24:37:a9: 35:dd:05:8d:67:70:0b:1b:bb:c2:27:07:5b:13:6a:c8:e1:8f: 56:93:1d:17:7a:ef:c6:2b:69:b2:32:fb:55:7b:c2:52:45:8c: f7:a6:09:c3:39:ac:1d:1a:30:a7:8f:0f:9a:d0:7d:c6:7b:b2: 6c:1f:b1:a4:ff:86:16:ea:6a:e8:0a:b1:4b:5e:57:a7:9a:77: 1c:9f:ee:69:66:bc:2f:ae:7d:05:81:fc:f6:b8:25:0e:f3:47: b1:b7:0e:08:6d:de:11:b2:c7:1f:57:19:2d:c8:9e:fa:95:24: 35:e0:5d:1d:ed:ec:2a:2a:2e:60:46:b2:a8:76:d5:e7:aa:19: 06:93:3c:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUwOTA2MTY1NDMxWhcNMjUwOTEzMTY1NDMxWjAYMRYwFAYD VQQDEw02OGJjNjc0Ny1lNjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/g9YBxV4D4O599jUsKsHDpIWYI8/M26i3vjAZaqhqyVjw9dVJVQxPiaARL9 iorSLlI/QSB7cOfFuV9A1hI5+6PWO6RPAErGMVlsV0x28BCGckHdePobf7PjsOXT /wq9cQIDCdZeUm7f2u4BzLtkjDAkHHKV3ZdLfVtdxz1OSspYRJ9s4DmOOs8e0j7a r+tmP+MkkyGALwzGBu+5Rwdp6A89tsh1WKKG7+MHRnfk26aQmxKwQUHrjMpy56uL 4yvAmp76Tnhgk8ma4vZ8HjWq+ValGTO0o0jsoMfNbaVqCiotPNj50R+2xSoW+i2C I8K8r3wWeRO4mSoRv7gz49B1gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIibU0Aa fA0Mu3uO7Og8sUW97NsqMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO8a6KZfvuzx437vhN5gkAFOYqBj4ahsyz+BnqAI50FnDF7h6QGH6X BoTx50tBzS/iYpphObYtB4nCOj6DDL42mQrpq1freomINYlZSQgoQK1A8qWyF/6U CQn2UGkrC7pZ9ght7Vfndo3MJ3Lllft07e4KENkQNhQtqVIkN6k13QWNZ3ALG7vC JwdbE2rI4Y9Wkx0Xeu/GK2myMvtVe8JSRYz3pgnDOawdGjCnjw+a0H3Ge7JsH7Gk /4YW6mroCrFLXlenmnccn+5pZrwvrn0Fgfz2uCUO80extw4Ibd4RsscfVxktyJ76 lSQ14F0d7ewqKi5gRrKodtXnqhkGkzxj -----END CERTIFICATE-----Generated at Mon Sep 8 13:58:07 2025 by rpki-client