$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: 0HV5J+p3KdeNMrtIQ6VothcqJ6LCYI5nNwi6Q1waQs8= Subject key identifier: AA:E0:A4:82:EB:96:0E:57:AF:C1:E3:63:31:BF:6C:D8:F7:61:4F:9D Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D07 Signing time: Sat 28 Jun 2025 16:03:33 +0000 Manifest this update: Sat 28 Jun 2025 16:03:33 +0000 Manifest next update: Sat 05 Jul 2025 16:03:33 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: bGNbIDIEhTlcQNRQ7o5WQthpOGx1XQbkJUkUYNQZq/Q=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7494 (0x1d46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Jun 28 16:03:33 2025 GMT Not After : Jul 5 16:03:33 2025 GMT Subject: CN=68601255-edc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ff:47:fb:0b:a2:02:e9:b7:10:6c:0a:81:34: 5e:7a:47:59:2a:7c:64:b3:c3:b5:c5:f5:3a:9e:fc: b8:e9:5a:e3:d8:52:45:a3:76:0c:fb:de:1a:ce:e1: aa:49:c1:e7:dc:cd:f3:58:48:7a:3b:05:c0:6a:4d: 20:3d:80:9b:47:70:c6:b9:e1:0f:8e:a2:99:f9:48: 20:8c:de:93:de:21:52:26:6d:3d:fa:44:43:d5:f5: bd:c8:af:bc:f4:b0:84:f6:70:2c:eb:9e:34:4a:9f: 94:88:1c:a9:be:17:7b:58:7f:1d:93:ee:3d:36:2d: e4:d2:0c:38:96:9d:ce:54:c6:56:88:19:3a:5b:a0: 44:14:4e:8a:33:33:5b:f7:4b:10:8e:0e:14:c4:bf: 68:2d:8f:2b:f8:49:86:ea:f1:3b:21:fc:df:62:e5: 9a:65:2b:fa:62:0e:c2:69:e9:f4:97:50:f3:d8:11: ee:1a:42:73:d5:5a:9c:29:47:f2:ba:50:bf:4e:a5: f8:fe:75:cb:e9:de:a4:5d:56:9d:e8:1f:e8:ce:9a: 38:32:48:b3:d9:3a:e2:75:3f:9c:a8:01:04:7a:9d: 94:a3:3f:7c:96:81:f0:28:5d:fa:d5:cf:2a:05:c5: 9e:72:d6:de:23:90:c6:52:2e:b5:33:c5:58:07:4b: 86:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E0:A4:82:EB:96:0E:57:AF:C1:E3:63:31:BF:6C:D8:F7:61:4F:9D X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fc:f5:da:e5:98:88:06:08:fe:f5:5a:b4:a4:3a:a9:e0:91: 4d:46:19:30:d0:ea:02:76:a4:7d:6a:a3:e8:86:d6:43:25:5b: 05:5a:44:50:cc:28:29:d8:a1:db:37:9b:53:51:60:b1:f1:c1: f5:77:1e:5d:7d:ac:b0:45:f4:1e:ab:a4:34:17:e9:67:3a:e0: c5:b3:d1:65:aa:28:3b:23:8f:67:fd:b1:84:e4:95:74:94:c8: 44:f7:8f:a3:af:4f:1a:b9:64:6f:85:35:a6:81:08:8d:3d:64: 8f:11:3e:c2:05:be:16:a1:19:f9:96:82:ee:81:26:f1:78:de: 8d:2f:af:d5:69:83:6c:f7:b1:25:51:2f:70:e3:95:4e:67:96: eb:dd:cd:ce:d3:9e:59:40:fa:fc:33:f0:51:7b:fe:ab:17:32: ac:9b:79:12:b8:2c:99:60:bb:02:09:c4:14:9e:48:85:22:2e: ad:2c:2b:01:b2:cf:ad:74:43:b4:3c:c8:17:da:fc:e6:d6:ff: 40:46:f2:63:a6:35:45:50:b2:91:6e:fa:1d:6e:62:07:1f:82: 1d:7e:2a:a8:35:6c:3b:24:8b:04:44:0b:bb:44:40:eb:63:83: 09:b0:37:de:d8:78:e9:97:20:0b:5b:e3:2d:74:77:ec:76:a5: ff:ce:00:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwNjI4MTYwMzMzWhcNMjUwNzA1MTYwMzMzWjAYMRYwFAYD VQQDEw02ODYwMTI1NS1lZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0f9H+wuiAum3EGwKgTReekdZKnxks8O1xfU6nvy46Vrj2FJFo3YM+94azuGq ScHn3M3zWEh6OwXAak0gPYCbR3DGueEPjqKZ+UggjN6T3iFSJm09+kRD1fW9yK+8 9LCE9nAs6540Sp+UiBypvhd7WH8dk+49Ni3k0gw4lp3OVMZWiBk6W6BEFE6KMzNb 90sQjg4UxL9oLY8r+EmG6vE7IfzfYuWaZSv6Yg7Caen0l1Dz2BHuGkJz1VqcKUfy ulC/TqX4/nXL6d6kXVad6B/ozpo4Mkiz2TridT+cqAEEep2Uoz98loHwKF361c8q BcWectbeI5DGUi61M8VYB0uG0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrgpILr lg5Xr8HjYzG/bNj3YU+dMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/PXa5ZiIBgj+9Vq0pDqp4JFNRhkw0OoCdqR9aqPohtZDJVsFWkRQ zCgp2KHbN5tTUWCx8cH1dx5dfaywRfQeq6Q0F+lnOuDFs9Flqig7I49n/bGE5JV0 lMhE94+jr08auWRvhTWmgQiNPWSPET7CBb4WoRn5loLugSbxeN6NL6/VaYNs97El US9w45VOZ5br3c3O055ZQPr8M/BRe/6rFzKsm3kSuCyZYLsCCcQUnkiFIi6tLCsB ss+tdEO0PMgX2vzm1v9ARvJjpjVFULKRbvodbmIHH4IdfiqoNWw7JIsERAu7REDr Y4MJsDfe2HjplyALW+MtdHfsdqX/zgDQ -----END CERTIFICATE-----Generated at Mon Jun 30 16:12:49 2025 by rpki-client