$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: WDjpZRoRkygdmZ5cjXQDukstp2zbcWccWhyJGJ1ORNA= Subject key identifier: 97:3E:33:8F:73:65:74:83:77:2C:67:92:34:C1:97:56:70:C9:E9:5C Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 02A3 Signing time: Sat 23 Aug 2025 01:48:19 +0000 Manifest this update: Sat 23 Aug 2025 01:48:19 +0000 Manifest next update: Sat 30 Aug 2025 01:48:19 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: pbMe2a/UptdbUNc7TxYtkBtzRpeTzv02y3AupfeU4Bw=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Aug 23 01:48:19 2025 GMT Not After : Aug 30 01:48:19 2025 GMT Subject: CN=68a91de3-5690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c1:11:60:e1:55:e8:05:76:23:bd:4a:94:35: 0a:5f:bb:56:44:21:7e:a3:d6:e3:46:47:f7:95:21: 41:b9:46:06:ec:46:a1:ff:35:f0:98:10:28:0f:10: 52:b6:e5:f7:07:44:fd:c5:b6:92:43:62:0f:ec:5c: 7d:a3:9a:91:73:f1:b7:94:f5:ac:f3:ec:de:e9:47: 04:ec:31:85:58:9b:f8:6f:23:91:28:70:6d:0b:3d: be:9f:9d:08:1c:15:64:e0:57:46:c0:c1:c5:c2:19: 1c:cb:ed:ab:8a:a4:3d:00:da:03:a8:a1:a4:3a:32: ea:4c:79:9c:67:f9:d0:37:17:31:02:53:16:6e:bc: c7:fa:78:08:90:c0:8d:c5:4b:ea:40:b8:c9:e7:f7: 7e:ae:9d:14:d0:2b:60:07:81:86:3b:1c:56:a4:d5: c8:16:01:7c:0e:20:fc:01:d8:b3:ce:f8:18:1a:60: af:ab:75:a4:ae:2f:e9:b5:05:be:63:98:3a:d0:13: 68:79:fd:5e:21:be:e8:4d:93:7f:d3:18:4d:ea:25: 5e:33:ae:7b:76:f0:f4:d0:9e:95:b2:71:3b:02:da: 89:46:0c:2a:6c:ab:77:41:22:06:d3:9f:fa:6e:c2: ae:fb:7d:77:39:dd:c2:e7:22:9e:c0:36:53:28:20: 05:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3E:33:8F:73:65:74:83:77:2C:67:92:34:C1:97:56:70:C9:E9:5C X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:4a:79:e3:36:7a:ca:45:40:5e:73:2a:46:65:00:05:8a:ce: 41:c2:85:78:91:6b:b6:ba:8e:4d:53:bb:7e:d5:df:5e:fb:41: c0:f1:f2:02:93:f8:43:4a:74:82:1b:2c:80:71:71:ba:2f:0d: c0:e6:f4:09:b7:65:62:5c:10:66:0c:8e:bc:d0:67:e3:d1:de: 8b:03:9d:4b:3e:c9:8f:2e:ac:04:34:af:2e:96:45:70:fd:23: 3e:ee:7e:4f:5b:1e:dd:5b:e9:cc:d9:7a:10:b7:42:82:35:35: b3:4e:83:9c:68:6b:f5:d5:ac:1f:9c:c3:47:44:c6:51:56:57: 0f:82:05:bc:66:15:5f:98:66:12:e0:bc:70:5b:7f:29:cf:ed: 10:37:a4:3f:ff:3c:77:75:76:bd:af:d0:ef:36:f8:b3:8a:31: 7b:d9:44:45:62:af:83:f7:81:21:ad:fb:0e:71:3b:28:5e:0a: a6:b6:59:21:08:b6:3c:8a:20:ce:93:99:64:e2:ea:ab:61:2e: 48:d5:d8:4a:9d:d7:2c:19:9d:73:dc:e9:a1:35:a9:b4:ec:3d: 6e:25:3c:c1:4e:11:b0:46:b9:93:05:d0:9a:98:95:37:f2:2a: 84:63:0c:c9:33:64:a7:58:76:4c:1c:97:2d:49:8b:67:fc:e3: 92:28:87:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUwODIzMDE0ODE5WhcNMjUwODMwMDE0ODE5WjAYMRYwFAYD VQQDEw02OGE5MWRlMy01NjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMERYOFV6AV2I71KlDUKX7tWRCF+o9bjRkf3lSFBuUYG7Eah/zXwmBAoDxBS tuX3B0T9xbaSQ2IP7Fx9o5qRc/G3lPWs8+ze6UcE7DGFWJv4byORKHBtCz2+n50I HBVk4FdGwMHFwhkcy+2riqQ9ANoDqKGkOjLqTHmcZ/nQNxcxAlMWbrzH+ngIkMCN xUvqQLjJ5/d+rp0U0CtgB4GGOxxWpNXIFgF8DiD8AdizzvgYGmCvq3Wkri/ptQW+ Y5g60BNoef1eIb7oTZN/0xhN6iVeM657dvD00J6VsnE7AtqJRgwqbKt3QSIG05/6 bsKu+313Od3C5yKewDZTKCAFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJc+M49z ZXSDdyxnkjTBl1ZwyelcMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVSnnjNnrKRUBecypGZQAFis5BwoV4kWu2uo5NU7t+1d9e+0HA8fIC k/hDSnSCGyyAcXG6Lw3A5vQJt2ViXBBmDI680Gfj0d6LA51LPsmPLqwENK8ulkVw /SM+7n5PWx7dW+nM2XoQt0KCNTWzToOcaGv11awfnMNHRMZRVlcPggW8ZhVfmGYS 4LxwW38pz+0QN6Q//zx3dXa9r9DvNvizijF72URFYq+D94EhrfsOcTsoXgqmtlkh CLY8iiDOk5lk4uqrYS5I1dhKndcsGZ1z3OmhNam07D1uJTzBThGwRrmTBdCamJU3 8iqEYwzJM2SnWHZMHJctSYtn/OOSKIdy -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:55 2025 by rpki-client