$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: aZglhCoW0LmEsAzyEx5v1Sa9DEv5hlGV/g+ezpWp10I= Subject key identifier: 99:80:FD:9F:99:1F:68:6B:A8:56:38:E1:51:88:0A:CF:A2:44:84:41 Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 7B Signing time: Wed 05 Nov 2025 06:58:09 +0000 Manifest this update: Wed 05 Nov 2025 06:58:09 +0000 Manifest next update: Wed 12 Nov 2025 06:58:09 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: jI7EyviiB36eEU6EC1uGs/s81mDEHftL0WuiXvn6xwY=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: Nov 5 06:58:09 2025 GMT Not After : Nov 12 06:58:09 2025 GMT Subject: CN=690af581-4943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:79:f0:ed:f0:0d:52:52:93:a4:05:8b:f2:49: 76:84:74:ae:a3:fc:5a:f2:54:6f:6f:ee:e8:0c:25: cb:be:4b:a8:9e:3b:9d:a9:2a:d2:e5:88:a3:33:69: 68:33:22:98:05:b0:12:fe:40:5e:d6:3d:6c:c0:cc: d0:b1:ac:27:21:f2:17:a7:e8:20:24:56:2e:d6:73: 9c:9c:a3:a3:d2:a7:a6:9d:62:b9:0c:e9:61:d0:2b: ab:2c:ab:67:79:5b:56:da:fe:17:48:72:e3:83:98: 15:b0:4d:ba:b2:f6:99:3a:e1:ff:58:57:70:06:b0: b6:08:49:f6:e9:6e:4b:cc:7f:d1:39:99:32:d8:24: 6d:29:d0:3e:26:e2:93:79:76:60:d3:34:e7:39:4e: 45:44:d7:a6:07:86:3c:0c:c5:2b:a4:a7:40:34:81: 80:8f:f1:9d:58:33:08:cd:af:b4:21:6e:4e:b7:2d: fc:7a:5c:11:3d:31:9c:74:01:66:28:aa:85:5d:58: a4:3a:57:a0:9f:4d:99:8e:58:48:06:62:65:8f:6e: c2:22:93:4a:92:a0:5f:28:27:a2:78:66:0b:7c:52: f7:c9:14:7d:a5:55:6a:86:62:6b:20:fc:ef:a4:c9: e0:e5:ba:14:20:f7:03:28:76:33:35:05:27:0e:57: 6c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:80:FD:9F:99:1F:68:6B:A8:56:38:E1:51:88:0A:CF:A2:44:84:41 X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:04:b6:1f:be:89:e1:10:27:eb:66:aa:84:73:f7:b7:55:9d: a5:18:11:0e:21:16:e2:cc:dc:a2:03:4c:02:c3:c1:a0:7b:e5: 83:00:15:a7:fe:30:f7:7b:be:bc:c6:47:8d:a3:21:67:05:23: d9:53:7c:e4:2f:3f:b5:1d:fe:0a:b5:f0:25:99:1f:5e:a9:33: d4:0c:ef:00:d5:58:f9:8b:81:d6:9e:8b:d9:d9:00:7f:7b:8f: eb:96:46:94:a6:20:65:e5:2e:e9:6e:bf:21:19:68:05:07:e1: 54:4f:d8:db:8f:cb:37:8c:34:21:15:09:db:48:e4:0a:24:e9: 89:a7:a1:4c:a1:f7:89:71:4a:e2:cd:b4:b2:10:95:77:7f:a7: cb:7e:a4:c0:cb:76:07:58:c6:55:d4:3a:fd:3a:4d:b5:5c:7e: 3c:dc:85:10:08:a0:e7:9e:dd:d6:11:cf:8b:0d:83:60:61:92: 30:98:50:55:c6:9e:25:34:14:18:cd:b8:1e:0e:cb:c2:33:bb: 82:3d:a3:80:4d:9d:5a:88:04:57:d9:73:b7:e8:ef:36:de:f4: 5e:8d:fa:66:08:d8:f8:62:d7:d5:fe:de:0b:65:ea:6b:6b:22: 55:41:34:27:d2:a4:0c:d0:f0:77:8b:28:66:cc:de:07:f5:e1: 91:75:12:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTExMDUwNjU4MDlaFw0yNTExMTIwNjU4MDlaMBgxFjAUBgNV BAMTDTY5MGFmNTgxLTQ5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNefDt8A1SUpOkBYvySXaEdK6j/FryVG9v7ugMJcu+S6ieO52pKtLliKMzaWgz IpgFsBL+QF7WPWzAzNCxrCch8hen6CAkVi7Wc5yco6PSp6adYrkM6WHQK6ssq2d5 W1ba/hdIcuODmBWwTbqy9pk64f9YV3AGsLYISfbpbkvMf9E5mTLYJG0p0D4m4pN5 dmDTNOc5TkVE16YHhjwMxSukp0A0gYCP8Z1YMwjNr7Qhbk63Lfx6XBE9MZx0AWYo qoVdWKQ6V6CfTZmOWEgGYmWPbsIik0qSoF8oJ6J4Zgt8UvfJFH2lVWqGYmsg/O+k yeDluhQg9wModjM1BScOV2zFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmYD9n5kf aGuoVjjhUYgKz6JEhEEwHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFoEth++ieEQJ+tmqoRz97dVnaUYEQ4hFuLM3KIDTALDwaB75YMAFaf+ MPd7vrzGR42jIWcFI9lTfOQvP7Ud/gq18CWZH16pM9QM7wDVWPmLgdaei9nZAH97 j+uWRpSmIGXlLuluvyEZaAUH4VRP2NuPyzeMNCEVCdtI5Aok6YmnoUyh94lxSuLN tLIQlXd/p8t+pMDLdgdYxlXUOv06TbVcfjzchRAIoOee3dYRz4sNg2BhkjCYUFXG niU0FBjNuB4Oy8Izu4I9o4BNnVqIBFfZc7fo7zbe9F6N+mYI2Phi19X+3gtl6mtr IlVBNCfSpAzQ8HeLKGbM3gf14ZF1Eg8= -----END CERTIFICATE-----Generated at Wed Nov 5 16:39:36 2025 by rpki-client