$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: 16Vz7tL0LIk2MBg5GwdWPQ/PvmIVyWGqoLlafH8GOAQ= Subject key identifier: 70:D7:F5:00:DE:85:38:B1:A7:1A:90:B3:B1:77:CF:4A:7D:F9:44:F9 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 35 Signing time: Sun 19 Oct 2025 11:04:09 +0000 Manifest this update: Sun 19 Oct 2025 11:04:09 +0000 Manifest next update: Sun 26 Oct 2025 11:04:09 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: sfCgvKN/RknwtycYwPuKAgcvneJwovVGpnDBua2ZHxw=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Oct 19 11:04:09 2025 GMT Not After : Oct 26 11:04:09 2025 GMT Subject: CN=68f4c5a9-de82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1d:6a:b7:ee:ad:cf:60:4a:30:bf:f2:21:24: cd:c9:c6:85:97:c7:74:17:1f:a0:84:8e:65:af:bf: 01:d5:82:ea:63:a1:7c:0c:68:92:07:11:f8:f2:53: e9:bf:47:a3:6c:63:08:c0:6d:e4:86:63:6c:65:d1: 99:e6:46:1e:37:e2:98:71:a1:0b:a9:10:25:7d:3a: 0f:bf:49:9c:9a:fd:89:13:21:24:2d:ce:22:9d:b5: e3:83:54:8e:ef:91:d2:4b:b3:9d:45:47:75:5e:13: 72:ab:fc:59:50:5b:cb:db:59:85:f6:7d:f2:a4:7c: 9a:95:e0:a5:6c:98:d7:c5:59:84:b3:04:ed:9c:41: ac:31:49:db:4e:48:e0:33:70:9b:22:3c:55:90:1a: e4:fa:b1:b8:fd:8f:51:4b:96:95:48:06:98:d8:20: f1:02:d4:f8:6f:0a:b1:9d:eb:3f:34:ee:ee:97:86: 2a:0c:2d:69:a0:fd:90:db:45:e4:6a:e8:f5:38:33: bb:14:26:8e:32:30:bc:43:13:a1:8f:c2:57:0c:17: 2f:21:00:dc:3c:2f:71:f9:89:e9:90:67:24:f7:41: 41:ba:90:a7:49:fd:59:49:a0:19:ae:c5:34:ea:74: 8c:9a:4d:d3:8f:26:bd:73:86:c5:36:51:12:40:56: d6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D7:F5:00:DE:85:38:B1:A7:1A:90:B3:B1:77:CF:4A:7D:F9:44:F9 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:27:da:2d:e9:8d:d7:fc:60:e6:c1:b0:0c:24:a6:57:ed:69: d6:92:64:9c:0f:d9:ba:46:39:22:b1:05:7a:72:30:e7:d9:73: 57:7f:70:f1:a6:19:e9:48:51:0d:c7:bc:7f:94:60:9d:20:ee: fc:2f:df:4f:38:38:bc:5e:5c:f2:0f:c5:07:67:aa:f9:ee:d6: b4:98:b1:a5:fd:85:16:1a:15:b9:ce:1a:29:71:6f:8c:db:49: e7:de:a5:a3:0a:9f:f5:ea:72:2e:e6:0c:27:eb:03:e9:bb:59: 15:1d:50:5a:cb:70:89:1a:55:90:e0:7b:86:53:99:0d:32:8b: 19:b9:10:1d:fc:62:60:b3:36:43:35:a6:2c:02:1a:3b:41:4b: aa:fc:93:6e:24:4a:91:52:28:e9:fc:2b:a3:b2:08:cc:3e:ea: b2:ff:2b:7d:e3:c8:17:ef:65:f7:4e:90:e2:9e:65:3b:6f:34: bb:2a:08:86:73:15:bd:ba:80:ee:16:03:fa:a4:6d:57:6d:2e: 5f:3d:de:22:3d:21:ce:e6:c1:1c:89:93:65:b0:c1:a8:1d:a2: 6d:e3:73:e3:51:ed:9a:25:2f:66:5b:3c:51:48:ff:7d:4c:71: c9:46:82:50:9d:14:ff:4d:21:d5:1f:0b:f0:79:3d:90:7b:18: d0:f3:e8:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTEwMTkxMTA0MDlaFw0yNTEwMjYxMTA0MDlaMBgxFjAUBgNV BAMTDTY4ZjRjNWE5LWRlODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeHWq37q3PYEowv/IhJM3JxoWXx3QXH6CEjmWvvwHVgupjoXwMaJIHEfjyU+m/ R6NsYwjAbeSGY2xl0ZnmRh434phxoQupECV9Og+/SZya/YkTISQtziKdteODVI7v kdJLs51FR3VeE3Kr/FlQW8vbWYX2ffKkfJqV4KVsmNfFWYSzBO2cQawxSdtOSOAz cJsiPFWQGuT6sbj9j1FLlpVIBpjYIPEC1PhvCrGd6z807u6XhioMLWmg/ZDbReRq 6PU4M7sUJo4yMLxDE6GPwlcMFy8hANw8L3H5iemQZyT3QUG6kKdJ/VlJoBmuxTTq dIyaTdOPJr1zhsU2URJAVtYTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcNf1AN6F OLGnGpCzsXfPSn35RPkwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF0n2i3pjdf8YObBsAwkplftadaSZJwP2bpGOSKxBXpyMOfZc1d/cPGm GelIUQ3HvH+UYJ0g7vwv3084OLxeXPIPxQdnqvnu1rSYsaX9hRYaFbnOGilxb4zb SefepaMKn/Xqci7mDCfrA+m7WRUdUFrLcIkaVZDge4ZTmQ0yixm5EB38YmCzNkM1 piwCGjtBS6r8k24kSpFSKOn8K6OyCMw+6rL/K33jyBfvZfdOkOKeZTtvNLsqCIZz Fb26gO4WA/qkbVdtLl893iI9Ic7mwRyJk2Wwwagdom3jc+NR7ZolL2ZbPFFI/31M cclGglCdFP9NIdUfC/B5PZB7GNDz6F8= -----END CERTIFICATE-----Generated at Mon Oct 20 21:23:36 2025 by rpki-client