$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: BYS7PZ4KmWAhkUqLz4kNEWJ4nOnM282B0W6UQCSBzik= Subject key identifier: 3A:23:9F:40:76:58:B8:8A:D7:81:AD:2D:57:74:9B:04:49:66:40:0F Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D23 Signing time: Fri 22 Aug 2025 16:14:12 +0000 Manifest this update: Fri 22 Aug 2025 16:14:11 +0000 Manifest next update: Fri 29 Aug 2025 16:14:11 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: 0deHImRZwNW1+cqj3zQ7XEyozLbOWOw6x8evhh2hyZw=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7522 (0x1d62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Aug 22 16:14:11 2025 GMT Not After : Aug 29 16:14:11 2025 GMT Subject: CN=68a89753-1508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:80:f8:2a:4e:8a:4a:06:a8:22:77:56:0e: d5:e7:94:a7:f4:53:67:b3:55:da:3d:fe:ac:f7:ed: dd:46:b0:15:62:22:a4:b8:f1:dc:7c:f5:3e:fa:61: 4b:6f:85:bd:7e:e5:e4:40:c3:39:73:99:1d:26:c0: 43:b6:71:f3:fd:16:f9:92:48:22:2c:ab:9d:ab:c6: 68:7a:03:f3:63:41:78:09:76:db:0d:ce:90:b9:3d: 0d:24:4b:dd:6e:00:68:cd:12:42:b8:87:94:b1:12: 89:b8:00:1a:74:68:b2:e8:8b:7b:40:92:b6:57:a0: 28:ef:cd:b3:c0:e3:ca:59:6c:4d:ac:56:9e:df:34: 6a:41:1f:a7:6b:cc:cc:8c:56:98:2d:72:5f:9d:9c: 87:4f:cd:c5:96:57:62:43:0d:8c:1f:dc:2f:42:79: 45:a8:a5:e2:5c:db:2c:79:67:d6:b9:ab:a7:f5:ef: 69:8c:c3:83:94:db:79:9e:9c:ba:e8:88:bc:d1:6e: e4:20:76:de:9f:ea:bb:73:84:75:07:1f:db:25:66: 00:ea:74:c2:6d:d6:15:df:32:03:24:67:f2:50:af: 11:4a:4b:8f:58:df:04:ea:f4:43:c4:e2:71:92:b8: 70:d0:3b:ad:ea:8e:6d:0c:e9:b8:53:fd:18:75:03: 46:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:23:9F:40:76:58:B8:8A:D7:81:AD:2D:57:74:9B:04:49:66:40:0F X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:d4:77:97:75:36:4c:23:f0:7f:63:2f:b6:3d:91:30:50:20: 67:eb:55:3a:d1:4b:4b:ab:dd:c9:18:59:0e:e8:35:f2:1e:4b: af:3f:bd:b4:3f:c3:14:de:88:c1:b1:77:03:7f:bb:f0:cf:cf: 6a:86:f1:56:c2:34:b3:c4:89:27:df:99:fc:f2:c4:55:08:9c: 56:39:04:bd:86:b4:15:e9:97:77:7d:47:91:61:8d:8a:93:dc: 12:32:13:d3:0d:43:f8:b2:b6:9d:46:d0:26:5d:1a:6b:fa:3c: a0:39:0d:37:60:93:e3:a3:5f:4b:05:65:21:44:25:ae:49:14: 97:d3:c0:90:f4:f5:23:be:93:d4:3b:81:07:75:5d:7b:80:78: f5:8e:27:e9:1f:82:7b:cf:c7:c0:2a:4e:2c:af:9b:fc:00:ef: 3b:f2:e6:c2:45:ea:91:2b:67:ce:e4:a5:84:f4:62:02:99:fa: a5:28:01:df:92:db:e5:83:10:e3:6d:be:af:49:0f:27:7f:40: 65:73:17:97:c4:2a:b8:c7:b9:34:83:0f:3a:31:93:26:46:da: 4f:c2:47:97:4b:47:86:c5:47:bd:a6:99:04:8e:31:e5:52:bd: 94:9c:4f:f7:12:0f:f3:16:78:b9:85:42:e1:78:b4:72:1f:55: fe:c1:a8:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwODIyMTYxNDExWhcNMjUwODI5MTYxNDExWjAYMRYwFAYD VQQDEw02OGE4OTc1My0xNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsACA+CpOikoGqCJ3Vg7V55Sn9FNns1XaPf6s9+3dRrAVYiKkuPHcfPU++mFL b4W9fuXkQMM5c5kdJsBDtnHz/Rb5kkgiLKudq8ZoegPzY0F4CXbbDc6QuT0NJEvd bgBozRJCuIeUsRKJuAAadGiy6It7QJK2V6Ao782zwOPKWWxNrFae3zRqQR+na8zM jFaYLXJfnZyHT83FlldiQw2MH9wvQnlFqKXiXNsseWfWuaun9e9pjMODlNt5npy6 6Ii80W7kIHben+q7c4R1Bx/bJWYA6nTCbdYV3zIDJGfyUK8RSkuPWN8E6vRDxOJx krhw0Dut6o5tDOm4U/0YdQNGfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDojn0B2 WLiK14GtLVd0mwRJZkAPMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi1HeXdTZMI/B/Yy+2PZEwUCBn61U60UtLq93JGFkO6DXyHkuvP720 P8MU3ojBsXcDf7vwz89qhvFWwjSzxIkn35n88sRVCJxWOQS9hrQV6Zd3fUeRYY2K k9wSMhPTDUP4sradRtAmXRpr+jygOQ03YJPjo19LBWUhRCWuSRSX08CQ9PUjvpPU O4EHdV17gHj1jifpH4J7z8fAKk4sr5v8AO878ubCReqRK2fO5KWE9GICmfqlKAHf ktvlgxDjbb6vSQ8nf0BlcxeXxCq4x7k0gw86MZMmRtpPwkeXS0eGxUe9ppkEjjHl Ur2UnE/3Eg/zFni5hULheLRyH1X+wahG -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:16 2025 by rpki-client