$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: wwZzOgh4EQOqiIGTAe+lCazf88sl155Da937AFrFcI8= Subject key identifier: 58:6F:9F:07:07:EE:64:78:D1:EC:3F:89:D3:74:9F:AE:B4:6A:BA:F3 Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 0672 Signing time: Fri 22 Aug 2025 22:38:14 +0000 Manifest this update: Fri 22 Aug 2025 22:38:13 +0000 Manifest next update: Fri 29 Aug 2025 22:38:13 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: VoqgeuGU99iCPbd5tQhkX7h/7i/P6eb8fgG71oa4zJ4=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Aug 22 22:38:13 2025 GMT Not After : Aug 29 22:38:13 2025 GMT Subject: CN=68a8f156-915f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:5d:50:b5:4c:1f:28:a0:6f:0f:8c:7a:d9: 1c:90:22:7b:7c:1c:8f:4f:87:f7:5d:ac:15:5d:56: b7:fe:67:e0:da:f4:53:3e:7e:f8:5a:ef:8a:b8:6e: ef:8f:86:d1:d2:84:60:0e:74:cd:10:60:9e:c2:91: 52:28:55:2e:7b:18:dc:a4:cf:b1:b7:09:80:ac:c7: b4:54:b1:1d:01:8a:dd:3c:18:e1:98:1d:18:b0:be: e8:05:14:84:a3:8c:53:8c:02:1a:4e:3b:96:5a:66: a7:d0:fc:ac:9f:33:bc:d9:a0:dc:57:c8:3e:ed:a7: bd:61:5d:1d:27:9d:4e:28:a6:0a:b1:0c:93:f8:b9: ef:97:e0:5a:94:1c:8f:62:ff:06:0a:37:fc:84:f6: 92:19:c7:aa:a8:c7:98:02:b8:42:f8:68:c6:ad:80: 70:a9:42:f8:93:b7:40:8c:59:c9:54:a7:65:1c:b2: 0c:5f:28:75:b4:49:d4:d5:28:5f:d4:22:21:bf:9d: 88:cb:a3:05:37:0b:02:bb:48:c8:a2:f2:b3:57:fb: 2f:e4:ae:6f:cb:ca:22:9b:8f:16:c9:f9:dc:75:2f: e3:28:5e:02:7d:2c:fa:bf:97:cd:03:da:25:ca:c6: 43:1b:fb:62:42:aa:88:13:c5:d0:62:12:e6:8d:91: 0b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:6F:9F:07:07:EE:64:78:D1:EC:3F:89:D3:74:9F:AE:B4:6A:BA:F3 X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ae:da:f2:97:c9:e6:e2:19:f4:59:40:ab:24:34:7f:30:bf: 5b:d4:e9:5d:5f:48:d5:bb:ca:77:39:2b:bb:e5:88:9a:4d:43: 5e:5e:a8:ed:16:86:2c:76:ea:c0:38:84:72:f9:4e:96:2f:71: 72:5f:9e:ec:4d:c6:b7:e6:75:06:cc:c6:70:d6:a6:62:c6:91: e9:07:16:cb:19:78:60:51:7b:79:04:f0:e1:b5:81:05:4f:24: 9b:5e:66:f8:5e:22:d9:1a:b8:fd:3e:29:2a:e0:6b:61:8a:13: a7:41:5d:b0:40:04:ad:db:cc:73:6b:51:d5:60:e7:07:0b:61: cb:c0:57:12:e5:04:67:c2:12:ae:10:67:06:4c:60:6b:bc:d0: 35:d0:11:87:da:4f:c8:47:d1:cf:13:ca:eb:c8:c7:78:dd:5b: 6b:1a:cb:26:99:2b:44:dd:3c:14:60:0c:8c:a8:14:38:cf:0d: 5f:62:9a:29:73:f1:bb:70:e0:06:06:6b:f1:a6:a4:e3:82:53: 52:3d:a2:75:e7:0e:a9:54:ab:17:82:ec:5c:a2:31:6b:4e:3b: 74:f7:bf:e0:cf:7a:3a:d2:5f:5b:ce:7e:55:f9:19:eb:e4:a7: 87:71:d7:9d:ee:b0:d8:2b:00:06:18:32:82:72:f5:9e:24:e1: 31:ab:cb:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwODIyMjIzODEzWhcNMjUwODI5MjIzODEzWjAYMRYwFAYD VQQDEw02OGE4ZjE1Ni05MTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiNdULVMHyigbw+MetkckCJ7fByPT4f3XawVXVa3/mfg2vRTPn74Wu+KuG7v j4bR0oRgDnTNEGCewpFSKFUuexjcpM+xtwmArMe0VLEdAYrdPBjhmB0YsL7oBRSE o4xTjAIaTjuWWman0PysnzO82aDcV8g+7ae9YV0dJ51OKKYKsQyT+Lnvl+BalByP Yv8GCjf8hPaSGceqqMeYArhC+GjGrYBwqUL4k7dAjFnJVKdlHLIMXyh1tEnU1Shf 1CIhv52Iy6MFNwsCu0jIovKzV/sv5K5vy8oim48WyfncdS/jKF4CfSz6v5fNA9ol ysZDG/tiQqqIE8XQYhLmjZELcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhvnwcH 7mR40ew/idN0n660arrzMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyrtryl8nm4hn0WUCrJDR/ML9b1OldX0jVu8p3OSu75YiaTUNeXqjt FoYsdurAOIRy+U6WL3FyX57sTca35nUGzMZw1qZixpHpBxbLGXhgUXt5BPDhtYEF TySbXmb4XiLZGrj9Pikq4GthihOnQV2wQASt28xza1HVYOcHC2HLwFcS5QRnwhKu EGcGTGBrvNA10BGH2k/IR9HPE8rryMd43VtrGssmmStE3TwUYAyMqBQ4zw1fYpop c/G7cOAGBmvxpqTjglNSPaJ15w6pVKsXguxcojFrTjt097/gz3o60l9bzn5V+Rnr 5KeHcded7rDYKwAGGDKCcvWeJOExq8ur -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:54 2025 by rpki-client