$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: yvXHmb5AvkrRZ3823WfQE5T+aSRk/pzbDcA2TceajJc= Subject key identifier: 03:17:B0:5C:A6:C1:53:9B:A4:59:BD:67:1D:42:AC:A9:8C:3D:2E:9E Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D2C Signing time: Mon 08 Sep 2025 16:09:18 +0000 Manifest this update: Mon 08 Sep 2025 16:09:18 +0000 Manifest next update: Mon 15 Sep 2025 16:09:18 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: O66ySjJU9qKguoll1p367J5r1CcWA/WWRQPehcFq2ho=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7531 (0x1d6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Sep 8 16:09:18 2025 GMT Not After : Sep 15 16:09:18 2025 GMT Subject: CN=68beffae-d8a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2a:9d:51:6f:49:68:13:6b:3c:8f:e1:25:2b: 26:d9:76:30:b4:53:32:ff:14:84:6c:1c:d9:25:de: b6:3b:9e:28:de:39:51:bf:78:64:0f:dc:a9:7e:9b: 44:87:8a:bf:e8:2e:98:ab:82:94:a9:b0:f9:97:b7: 8d:aa:86:83:61:72:85:9c:34:7c:65:f3:24:0a:c0: 7b:5c:f5:15:51:db:cb:71:c0:ba:00:c4:7e:40:cb: 23:ba:0e:83:29:c8:f3:bc:b9:c2:12:52:b6:1b:38: 53:cb:d3:88:e5:3f:5c:b8:8b:a8:db:84:25:12:ac: 1b:33:3a:e1:59:37:85:fa:68:96:f1:4a:a3:6f:41: d3:61:13:5b:bf:7a:a0:b2:ad:25:30:ff:9a:6a:8a: 8b:2c:e5:7f:07:6c:f8:55:21:1f:48:61:05:8f:c4: be:1f:14:4b:e4:15:ea:ee:d5:8b:57:d3:94:7c:8d: a3:4c:9c:13:21:49:81:2f:82:2b:ca:ab:f1:df:72: a3:49:9a:1a:5f:69:3e:2f:e6:8d:1d:9e:2b:3f:4f: 06:e2:40:b1:68:08:06:32:c9:79:be:f2:6f:8d:ad: 02:36:c1:60:62:7e:50:82:72:5c:8f:c2:5c:87:c4: df:9b:68:18:f9:b7:a1:8a:84:b9:92:e9:3c:f2:4e: f7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:17:B0:5C:A6:C1:53:9B:A4:59:BD:67:1D:42:AC:A9:8C:3D:2E:9E X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:9f:de:a1:fe:81:ff:76:b8:f6:2a:fe:fb:61:80:69:26:6b: 47:3f:22:2b:56:73:91:83:63:c1:6c:39:a5:5a:33:47:20:dc: b0:8e:cd:03:60:e4:d5:ad:25:6b:02:a4:a8:c6:88:c7:a3:09: ab:39:23:34:08:a1:bc:e9:46:47:df:3d:0d:bf:7f:c1:9c:7d: c0:3e:b3:5e:b8:8e:2b:b5:ef:79:4c:91:bc:dd:e5:91:c6:6f: c5:f2:fd:f9:da:e2:bd:b7:e1:0c:b6:97:25:bd:16:7c:bd:4b: 43:3d:31:f0:d9:1a:81:e5:8e:f4:0e:d3:55:b8:68:45:e6:1e: be:67:3c:55:92:ca:ce:c4:0b:e7:e4:d1:3d:2f:11:42:ce:28: a7:2f:0d:9a:ee:d4:af:7a:b1:51:28:f6:ea:6f:0b:fc:16:9e: eb:06:b0:32:70:f7:6e:49:36:a3:e9:f9:08:8c:4b:3d:64:1b: 4f:f6:32:48:69:a1:95:5a:c6:63:79:57:7c:0c:42:7a:44:a0: f5:7c:a9:23:8b:cb:aa:96:c2:ce:21:1f:b7:b3:69:7b:a6:60: f3:bf:72:3a:9e:78:c7:f7:f9:92:64:d1:b7:70:2c:82:d4:89: 2c:41:2b:31:6f:9f:77:a6:00:19:40:94:04:82:7b:bc:2b:8d: 4c:78:60:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwOTA4MTYwOTE4WhcNMjUwOTE1MTYwOTE4WjAYMRYwFAYD VQQDEw02OGJlZmZhZS1kOGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yqdUW9JaBNrPI/hJSsm2XYwtFMy/xSEbBzZJd62O54o3jlRv3hkD9ypfptE h4q/6C6Yq4KUqbD5l7eNqoaDYXKFnDR8ZfMkCsB7XPUVUdvLccC6AMR+QMsjug6D KcjzvLnCElK2GzhTy9OI5T9cuIuo24QlEqwbMzrhWTeF+miW8Uqjb0HTYRNbv3qg sq0lMP+aaoqLLOV/B2z4VSEfSGEFj8S+HxRL5BXq7tWLV9OUfI2jTJwTIUmBL4Ir yqvx33KjSZoaX2k+L+aNHZ4rP08G4kCxaAgGMsl5vvJvja0CNsFgYn5QgnJcj8Jc h8Tfm2gY+behioS5kuk88k73MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMXsFym wVObpFm9Zx1CrKmMPS6eMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDn96h/oH/drj2Kv77YYBpJmtHPyIrVnORg2PBbDmlWjNHINywjs0D YOTVrSVrAqSoxojHowmrOSM0CKG86UZH3z0Nv3/BnH3APrNeuI4rte95TJG83eWR xm/F8v352uK9t+EMtpclvRZ8vUtDPTHw2RqB5Y70DtNVuGhF5h6+ZzxVksrOxAvn 5NE9LxFCziinLw2a7tSverFRKPbqbwv8Fp7rBrAycPduSTaj6fkIjEs9ZBtP9jJI aaGVWsZjeVd8DEJ6RKD1fKkji8uqlsLOIR+3s2l7pmDzv3I6nnjH9/mSZNG3cCyC 1IksQSsxb593pgAZQJQEgnu8K41MeGD/ -----END CERTIFICATE-----Generated at Tue Sep 9 07:49:02 2025 by rpki-client