$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: YspeJJrikOHgxDTkTeZ1gkzz5PEfagIp9cJSGFt6HHw= Subject key identifier: E2:E7:3A:E1:B6:0B:54:2F:4D:02:BC:31:94:F3:86:7F:1F:08:F8:3F Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D40 Signing time: Sat 18 Oct 2025 16:27:37 +0000 Manifest this update: Sat 18 Oct 2025 16:27:36 +0000 Manifest next update: Sat 25 Oct 2025 16:27:36 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: 45lnF9jYNsUKXUwzZtSTJxOMUSy6TL0/pMh1tSOiFK8=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7551 (0x1d7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Oct 18 16:27:36 2025 GMT Not After : Oct 25 16:27:36 2025 GMT Subject: CN=68f3bff9-cc90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ff:27:49:c8:73:30:f9:91:6b:26:e7:2f:2d: 1b:1c:9a:ed:c0:6e:ef:91:15:7a:54:6e:c8:f7:e1: b9:1b:51:3c:5f:b7:12:cc:e2:ed:3b:dc:7e:70:8c: 89:80:54:27:73:e3:fe:4a:d5:d9:8c:09:4d:cc:d0: 60:94:b8:81:b6:6c:fb:c9:93:ab:68:20:d4:f0:01: 86:62:f7:8d:7b:e7:40:ab:57:bf:7d:0f:a7:71:af: ff:19:58:7d:e9:a7:7d:f1:87:79:65:4f:12:df:0b: 3a:3d:a6:14:d7:37:14:8c:5c:11:0c:1a:ed:0a:4b: c5:ba:57:ae:de:8e:7a:24:91:3d:95:2f:4d:bb:63: cd:de:d0:cb:0e:e8:b9:78:50:97:e1:f0:4e:24:3f: 0b:4f:5a:30:9d:d1:0d:37:5f:b1:5e:31:e5:69:9c: be:88:c3:4c:b1:d7:72:fa:2b:fb:7d:79:7a:88:1b: d4:1d:7d:ea:a2:76:98:85:dd:c2:36:c1:ed:fb:7e: 69:b4:c8:d4:11:e3:dc:e0:b8:2c:2e:6b:58:d7:3e: 4f:0b:f6:1e:0e:37:7c:18:59:c6:f8:f7:4e:b3:4a: c2:10:2b:ca:c8:f2:1c:54:0c:b2:04:00:4e:7a:f4: 94:19:b3:5d:82:87:6f:32:68:e0:68:13:f9:63:4d: 39:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E7:3A:E1:B6:0B:54:2F:4D:02:BC:31:94:F3:86:7F:1F:08:F8:3F X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:9d:92:58:a3:a9:e3:32:6c:8e:c0:e6:03:31:59:37:9e:1c: a7:c2:a6:44:e9:11:de:1d:57:33:7b:15:c9:38:e7:64:75:18: 69:2a:46:14:40:6d:e4:27:71:61:83:a7:73:d9:5d:f8:04:01: 16:60:d8:37:2f:71:be:a1:ee:62:6d:ec:f5:62:03:7e:34:2e: 8d:47:01:6b:f1:0b:10:27:3a:29:7d:e9:ad:84:38:f2:73:88: 84:c3:dd:a9:83:ec:8d:8a:69:cc:8e:64:e9:5d:18:dd:4d:b4: 98:30:0a:6a:a2:4f:63:45:13:ae:8c:e7:05:73:7f:22:02:f2: 78:6c:74:77:e2:90:9f:1c:45:8e:65:91:70:66:1b:bf:7d:f8: 6c:61:68:6e:53:4f:3e:ab:0f:f3:e0:2d:46:7f:a5:cb:93:75: 45:5b:a0:56:d8:0b:0b:e1:99:c2:53:09:1c:b4:74:9f:71:98: 12:42:25:9d:b0:02:81:eb:34:f1:52:09:3a:ce:14:19:c4:d5: c3:2d:43:cd:ab:66:9e:6b:82:22:ff:2a:e2:36:f6:eb:0a:fc: 55:db:ca:f9:93:0f:68:90:6d:64:4b:a4:9a:83:07:58:f8:06: 6a:36:11:2b:00:f7:b3:8d:0c:41:18:af:a4:51:e1:83:39:07: ae:29:e1:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUxMDE4MTYyNzM2WhcNMjUxMDI1MTYyNzM2WjAYMRYwFAYD VQQDEw02OGYzYmZmOS1jYzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/8nSchzMPmRaybnLy0bHJrtwG7vkRV6VG7I9+G5G1E8X7cSzOLtO9x+cIyJ gFQnc+P+StXZjAlNzNBglLiBtmz7yZOraCDU8AGGYveNe+dAq1e/fQ+nca//GVh9 6ad98Yd5ZU8S3ws6PaYU1zcUjFwRDBrtCkvFuleu3o56JJE9lS9Nu2PN3tDLDui5 eFCX4fBOJD8LT1owndENN1+xXjHlaZy+iMNMsddy+iv7fXl6iBvUHX3qonaYhd3C NsHt+35ptMjUEePc4LgsLmtY1z5PC/YeDjd8GFnG+PdOs0rCECvKyPIcVAyyBABO evSUGbNdgodvMmjgaBP5Y005AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLnOuG2 C1QvTQK8MZTzhn8fCPg/MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXnZJYo6njMmyOwOYDMVk3nhynwqZE6RHeHVczexXJOOdkdRhpKkYU QG3kJ3Fhg6dz2V34BAEWYNg3L3G+oe5ibez1YgN+NC6NRwFr8QsQJzopfemthDjy c4iEw92pg+yNimnMjmTpXRjdTbSYMApqok9jRROujOcFc38iAvJ4bHR34pCfHEWO ZZFwZhu/ffhsYWhuU08+qw/z4C1Gf6XLk3VFW6BW2AsL4ZnCUwkctHSfcZgSQiWd sAKB6zTxUgk6zhQZxNXDLUPNq2aea4Ii/yriNvbrCvxV28r5kw9okG1kS6SagwdY +AZqNhErAPezjQxBGK+kUeGDOQeuKeHX -----END CERTIFICATE-----Generated at Mon Oct 20 03:40:37 2025 by rpki-client