$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: HikNREz/jxtQNaYOSEWEp3wbibATePC22XZDO0iyB4s= Subject key identifier: 76:E6:41:E7:D1:DF:4C:62:E2:16:BB:4E:A0:AF:AC:25:26:81:E1:0A Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C69 Signing time: Fri 22 Aug 2025 16:15:51 +0000 Manifest this update: Fri 22 Aug 2025 16:15:51 +0000 Manifest next update: Fri 29 Aug 2025 16:15:51 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: kEgBFZsWo1cH2RFX3xWISwWrDrfVYuYC379R3PFcC2Y=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7289 (0x1c79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Aug 22 16:15:51 2025 GMT Not After : Aug 29 16:15:51 2025 GMT Subject: CN=68a897b7-b92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:26:fa:20:cc:62:c0:db:3c:7d:cb:0d:45:4e: ab:e8:d8:8b:2d:b0:15:e9:d2:49:fa:15:53:fa:7b: a3:39:09:f5:ce:c7:b0:fc:bd:20:7f:14:37:7d:ca: ea:57:71:2b:0d:3b:3c:f2:66:8c:ec:47:91:4d:b4: 01:f4:fb:e1:ac:4b:27:0e:8e:63:da:4b:70:ea:75: ab:c6:af:ff:1c:cd:31:95:bf:26:29:52:c6:1b:d5: 56:12:e9:3b:07:65:d7:df:e3:6c:43:74:6a:ec:a6: df:8b:2b:51:ed:3a:86:bb:ad:c0:60:14:ac:bd:72: 83:55:0d:51:d1:1c:ce:07:4b:ed:bd:7e:06:4a:82: e4:32:af:91:9d:5d:6a:f3:78:b9:c9:76:0e:a7:3f: 7e:9f:51:2f:21:6c:c5:55:ca:db:2b:f1:a6:49:51: d7:85:f3:61:5f:e6:35:9c:b3:d3:0e:3a:74:a3:d2: 22:b5:71:64:1b:99:fe:6e:53:08:e4:2a:fd:fa:87: 86:e9:92:ab:1d:3e:35:c9:1a:ea:9b:78:20:72:94: 81:63:2a:2d:7f:8e:43:44:c9:d4:f0:b5:ab:63:b2: 48:61:32:a6:7f:22:26:1b:19:84:e9:45:ba:ba:b5: 55:7b:f0:88:ef:f1:19:a5:b7:9d:09:4e:d3:01:f1: 7a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E6:41:E7:D1:DF:4C:62:E2:16:BB:4E:A0:AF:AC:25:26:81:E1:0A X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ef:a5:cf:ed:8e:ac:67:37:e2:2f:28:3d:64:78:4c:97:21: f6:be:d3:54:6f:29:0c:c7:9a:2f:8f:06:8e:7e:ca:63:3f:a3: ff:5c:0f:c1:79:f3:90:1a:f8:01:dd:7b:25:44:43:53:73:b5: 09:bb:16:61:ae:34:35:fa:18:23:35:e8:cf:a7:eb:85:24:19: ae:81:b7:5d:87:57:60:53:d8:09:c4:d2:9c:04:3b:8e:f9:d5: 0f:2c:b1:bf:94:f6:14:57:8d:15:11:7d:f5:49:f3:2d:32:ef: 27:c7:f4:02:89:be:f3:84:3f:60:16:77:36:29:1c:0f:c4:88: cc:b0:fd:4b:7c:20:b4:dc:66:28:f8:6e:3c:60:a6:30:25:11: cd:e5:73:03:a7:d7:6c:dc:9d:31:fa:fb:a5:ab:01:c8:02:da: 2a:23:2f:ab:7d:0b:37:d2:98:ab:b4:d5:e4:a9:4d:05:ab:8f: e1:e6:5f:32:67:83:ee:80:60:8a:0d:ed:7e:b5:f7:6c:e7:62: e2:9c:1d:67:74:01:22:73:59:54:52:1e:fe:2f:cc:f8:b9:df: 1e:b2:00:ab:f6:c4:6f:e0:b6:64:aa:14:77:84:c1:3b:f9:99: 11:15:e6:06:69:50:b2:8e:5d:fb:fd:13:51:1b:dd:18:ac:95: 8e:52:03:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUwODIyMTYxNTUxWhcNMjUwODI5MTYxNTUxWjAYMRYwFAYD VQQDEw02OGE4OTdiNy1iOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ib6IMxiwNs8fcsNRU6r6NiLLbAV6dJJ+hVT+nujOQn1zsew/L0gfxQ3fcrq V3ErDTs88maM7EeRTbQB9PvhrEsnDo5j2ktw6nWrxq//HM0xlb8mKVLGG9VWEuk7 B2XX3+NsQ3Rq7KbfiytR7TqGu63AYBSsvXKDVQ1R0RzOB0vtvX4GSoLkMq+RnV1q 83i5yXYOpz9+n1EvIWzFVcrbK/GmSVHXhfNhX+Y1nLPTDjp0o9IitXFkG5n+blMI 5Cr9+oeG6ZKrHT41yRrqm3ggcpSBYyotf45DRMnU8LWrY7JIYTKmfyImGxmE6UW6 urVVe/CI7/EZpbedCU7TAfF6PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbmQefR 30xi4ha7TqCvrCUmgeEKMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA976XP7Y6sZzfiLyg9ZHhMlyH2vtNUbykMx5ovjwaOfspjP6P/XA/B efOQGvgB3XslRENTc7UJuxZhrjQ1+hgjNejPp+uFJBmugbddh1dgU9gJxNKcBDuO +dUPLLG/lPYUV40VEX31SfMtMu8nx/QCib7zhD9gFnc2KRwPxIjMsP1LfCC03GYo +G48YKYwJRHN5XMDp9ds3J0x+vulqwHIAtoqIy+rfQs30pirtNXkqU0Fq4/h5l8y Z4PugGCKDe1+tfds52LinB1ndAEic1lUUh7+L8z4ud8esgCr9sRv4LZkqhR3hME7 +ZkRFeYGaVCyjl37/RNRG90YrJWOUgOj -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:02 2025 by rpki-client