$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: Pxrq99NLEISeQlelJUIqgsH+3VFCaMAij5iJX2cci4Y= Subject key identifier: A8:53:FA:C6:5A:CF:C1:FA:CC:D5:9E:02:EB:6F:8B:62:6E:62:EC:84 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 18 Signing time: Sat 23 Aug 2025 08:11:58 +0000 Manifest this update: Sat 23 Aug 2025 08:11:57 +0000 Manifest next update: Sat 30 Aug 2025 08:11:57 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: aN9Tp2v2zhLicNRrcKrcdd2G8lOBO23iqFmSmoDoFQU=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Aug 23 08:11:57 2025 GMT Not After : Aug 30 08:11:57 2025 GMT Subject: CN=68a977cd-2c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2d:d4:09:08:1a:2d:0b:d7:57:e0:4c:e4:ef: 3b:39:68:35:93:b1:57:ec:68:1e:b6:df:c2:3b:a5: f9:86:3b:f8:8a:ec:a0:f4:1d:57:ba:0c:c6:08:31: af:bf:67:93:a9:1f:3e:21:30:89:73:61:dc:66:58: 54:8b:07:69:87:03:47:77:09:80:3a:f1:28:2c:0b: 4c:df:89:dc:34:79:e1:9e:85:b7:b3:99:91:f2:b3: 48:94:22:2b:ec:a4:41:5e:f2:68:35:aa:df:31:ae: f2:07:71:03:99:2c:bb:20:2a:a5:9a:12:89:89:24: 81:9a:25:10:01:bc:87:61:92:1b:5f:aa:6e:3f:cd: 01:4a:ec:50:fd:29:87:ed:d8:38:ac:bf:cc:dd:73: 71:bd:a5:3a:b4:48:f6:21:4e:2f:5d:4f:5b:ff:82: 30:29:b3:f6:a6:f3:19:8a:16:f4:2a:58:fc:b1:01: 27:8c:32:da:76:78:bd:97:a2:0c:69:9f:83:31:4b: 35:22:17:e1:33:70:38:20:06:f8:61:ac:95:3c:d8: 78:71:4d:d2:bc:af:f1:5a:db:32:0c:5a:67:4c:62: da:a5:b8:35:fd:dc:b9:4b:f8:94:c2:f6:f3:24:5b: 18:e6:a0:6a:ba:6e:fc:61:98:9c:7e:5c:18:68:6d: 6d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:53:FA:C6:5A:CF:C1:FA:CC:D5:9E:02:EB:6F:8B:62:6E:62:EC:84 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:de:42:ee:66:59:1b:b6:bf:2e:9d:32:3b:e6:26:31:3c:ce: b5:24:21:be:33:a7:fc:ef:74:05:85:04:9f:54:98:12:06:28: 1e:91:fa:6b:63:af:a0:6d:b7:68:93:dc:cd:0d:05:97:63:0c: 35:e6:08:0d:e4:1c:06:b3:b2:5e:77:6e:4d:47:25:f8:a8:aa: 3c:65:5c:ad:f5:d7:c2:4a:22:6d:ef:31:ca:19:3b:d5:71:03: 4c:e4:b2:14:b2:19:78:fc:34:b9:16:f7:86:13:ee:8e:d5:e9: 2d:ab:fc:2a:97:3d:b7:64:be:10:01:97:24:d2:e5:c5:6e:2f: 3b:f4:e9:b0:6d:c9:fa:a9:9a:f1:d9:e7:34:92:c0:08:aa:44: 51:8d:b9:a2:5f:a6:0e:33:33:18:73:62:3a:ad:5a:74:de:ee: ff:b3:ae:3a:54:62:fa:cb:49:5b:9b:50:9a:43:f6:7d:ed:97: 9b:f1:d6:d6:5a:04:b3:4c:60:36:38:2f:9d:1b:50:7f:f4:b9: c3:ae:e1:58:17:e6:9b:db:cd:3a:8f:10:dc:72:61:e1:0b:b3: 1b:c5:ce:16:c9:8b:cc:f0:b1:d6:d8:4c:3e:c5:7a:12:a4:73: 63:f3:eb:cf:21:8a:4d:ad:1f:57:b4:de:d7:d4:8c:82:8c:8f: df:a3:2b:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTA4MjMwODExNTdaFw0yNTA4MzAwODExNTdaMBgxFjAUBgNV BAMTDTY4YTk3N2NkLTJjM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnLdQJCBotC9dX4Ezk7zs5aDWTsVfsaB6238I7pfmGO/iK7KD0HVe6DMYIMa+/ Z5OpHz4hMIlzYdxmWFSLB2mHA0d3CYA68SgsC0zfidw0eeGehbezmZHys0iUIivs pEFe8mg1qt8xrvIHcQOZLLsgKqWaEomJJIGaJRABvIdhkhtfqm4/zQFK7FD9KYft 2Disv8zdc3G9pTq0SPYhTi9dT1v/gjAps/am8xmKFvQqWPyxASeMMtp2eL2Xogxp n4MxSzUiF+EzcDggBvhhrJU82HhxTdK8r/Fa2zIMWmdMYtqluDX93LlL+JTC9vMk WxjmoGq6bvxhmJx+XBhobW2TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqFP6xlrP wfrM1Z4C62+LYm5i7IQwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGzeQu5mWRu2vy6dMjvmJjE8zrUkIb4zp/zvdAWFBJ9UmBIGKB6R+mtj r6Btt2iT3M0NBZdjDDXmCA3kHAazsl53bk1HJfioqjxlXK3118JKIm3vMcoZO9Vx A0zkshSyGXj8NLkW94YT7o7V6S2r/CqXPbdkvhABlyTS5cVuLzv06bBtyfqpmvHZ 5zSSwAiqRFGNuaJfpg4zMxhzYjqtWnTe7v+zrjpUYvrLSVubUJpD9n3tl5vx1tZa BLNMYDY4L50bUH/0ucOu4VgX5pvbzTqPENxyYeELsxvFzhbJi8zwsdbYTD7FehKk c2Pz688hik2tH1e03tfUjIKMj9+jK5Q= -----END CERTIFICATE-----Generated at Sat Aug 23 17:24:32 2025 by rpki-client