$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: YQaafkpJvh+V0/7/d4JjZ6VdEtuvi1pUHxPBR/gkgwc= Subject key identifier: FF:27:69:2C:82:13:18:3D:97:EC:DC:74:6A:01:91:7F:72:DC:0B:6F Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 0660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 0658 Signing time: Wed 02 Jul 2025 22:50:59 +0000 Manifest this update: Wed 02 Jul 2025 22:50:59 +0000 Manifest next update: Wed 09 Jul 2025 22:50:59 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: 0NUT7LESQ9maNJR8oQ1frQQjX6qhZ6DbWgcB1wG5YCQ=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Jul 2 22:50:59 2025 GMT Not After : Jul 9 22:50:59 2025 GMT Subject: CN=6865b7d3-658a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bf:b0:ca:16:8a:de:a7:1f:bc:e3:ae:02:f2: c2:7c:01:0b:d8:99:20:c0:fc:6a:be:ae:b3:0b:1f: 18:66:2e:27:95:3e:e6:0d:48:d3:19:23:52:63:be: 18:15:85:a4:ca:7c:d7:d7:e7:94:df:f1:e8:d9:0f: 60:7d:59:60:41:9a:9b:a6:b0:d1:39:c5:ee:40:5e: fa:da:ce:fe:a7:25:f1:a5:a7:d4:ad:4f:d1:c6:c9: ff:e9:5a:6e:65:c2:c2:b6:26:24:a2:93:8d:85:31: 1a:86:79:ff:c0:df:83:7b:6a:41:dd:a5:d2:59:f3: c8:4f:22:48:2f:f9:61:35:1e:d7:5c:ed:ea:ae:8c: bc:5d:e0:31:77:5b:87:1f:06:35:bb:88:04:f7:5c: f4:ac:70:3d:c3:67:ea:99:3a:94:f6:4f:75:d8:a6: 95:78:62:13:3a:01:8b:d5:9f:2e:59:bc:bc:4b:3b: c5:77:4f:35:02:64:ae:bd:32:f1:fa:44:4c:46:23: cc:07:b0:18:37:ed:73:c6:3e:6a:51:8b:1b:8b:1a: 2c:c8:9d:cc:8d:7f:76:c7:6d:b4:5f:2a:67:a4:72: 9b:b8:94:85:93:25:e8:7b:90:a8:cf:f8:49:54:40: a5:2e:07:35:de:ac:4a:e7:eb:db:91:7f:a2:93:a4: 26:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:27:69:2C:82:13:18:3D:97:EC:DC:74:6A:01:91:7F:72:DC:0B:6F X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:3a:64:fd:5c:36:4f:25:84:79:76:7e:ee:ef:37:d4:3e:70: 2e:53:12:b9:77:0c:5e:4b:6d:3d:28:e7:3e:96:3d:69:22:33: 09:df:85:f2:ee:e1:fb:ca:f5:8c:f5:ab:b3:2b:b5:70:62:54: 00:ae:8c:89:1f:42:ac:9e:b5:0f:a5:45:79:76:97:74:20:40: ec:82:fc:0b:b8:98:a1:eb:f1:a3:d9:7b:86:b7:3a:77:5f:1e: 7a:e7:9f:76:7b:fd:d0:27:fb:8f:8c:98:b7:f2:43:e1:fc:7a: 6f:cf:67:d2:b3:0f:f8:b4:cf:75:eb:32:4d:63:a0:4c:08:0e: e3:60:27:49:71:d5:52:62:e0:c0:fc:af:94:f6:92:77:de:a4: 1d:c9:ff:e7:c1:9d:09:8a:82:da:fe:7f:51:fb:8c:18:99:e6: 0d:a5:a2:f1:8d:0e:79:97:55:27:48:8e:5d:95:4e:b7:b0:7c: a1:4a:c4:99:a8:04:74:ab:55:ad:02:3c:61:a5:3a:23:db:9c: 85:8e:b3:32:22:63:3d:34:e8:9f:60:6e:7a:9b:df:2e:18:d2: 22:7b:19:18:ac:3d:4d:4c:9d:f6:38:6a:77:0b:4f:49:94:02: 17:b4:88:3e:0b:19:ec:d9:f5:da:5a:f7:31:58:d2:83:a6:90: 1f:4c:a5:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwNzAyMjI1MDU5WhcNMjUwNzA5MjI1MDU5WjAYMRYwFAYD VQQDEw02ODY1YjdkMy02NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b+wyhaK3qcfvOOuAvLCfAEL2JkgwPxqvq6zCx8YZi4nlT7mDUjTGSNSY74Y FYWkynzX1+eU3/Ho2Q9gfVlgQZqbprDROcXuQF762s7+pyXxpafUrU/Rxsn/6Vpu ZcLCtiYkopONhTEahnn/wN+De2pB3aXSWfPITyJIL/lhNR7XXO3qroy8XeAxd1uH HwY1u4gE91z0rHA9w2fqmTqU9k912KaVeGITOgGL1Z8uWby8SzvFd081AmSuvTLx +kRMRiPMB7AYN+1zxj5qUYsbixosyJ3MjX92x220XypnpHKbuJSFkyXoe5Coz/hJ VEClLgc13qxK5+vbkX+ik6QmowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8naSyC Exg9l+zcdGoBkX9y3AtvMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQOmT9XDZPJYR5dn7u7zfUPnAuUxK5dwxeS209KOc+lj1pIjMJ34Xy 7uH7yvWM9auzK7VwYlQAroyJH0KsnrUPpUV5dpd0IEDsgvwLuJih6/Gj2XuGtzp3 Xx565592e/3QJ/uPjJi38kPh/Hpvz2fSsw/4tM916zJNY6BMCA7jYCdJcdVSYuDA /K+U9pJ33qQdyf/nwZ0JioLa/n9R+4wYmeYNpaLxjQ55l1UnSI5dlU63sHyhSsSZ qAR0q1WtAjxhpToj25yFjrMyImM9NOifYG56m98uGNIiexkYrD1NTJ32OGp3C09J lAIXtIg+Cxns2fXaWvcxWNKDppAfTKUE -----END CERTIFICATE-----Generated at Thu Jul 3 09:13:28 2025 by rpki-client