$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft File: gja7zXAtSCL93VuwVmDPEDjsjH4.mft (raw, json) Hash identifier: YdEWCWPA9P2foxs0fvanIDOzTf9Y/lHgsbRgDcAK0Tk= Subject key identifier: 26:4C:C3:95:08:1C:8F:3B:5B:AD:4F:00:FF:05:A6:0D:82:25:B7:C9 Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft Manifest number: 087D Signing time: Sun 02 Nov 2025 20:33:55 +0000 Manifest this update: Sun 02 Nov 2025 20:33:54 +0000 Manifest next update: Sun 09 Nov 2025 20:33:54 +0000 Files and hashes: 1: gja7zXAtSCL93VuwVmDPEDjsjH4.crl (hash: MQ1SG+32+NBN2HrXi8ESsuoL0MNyk4+SB/F5xuKSvyc=) 2: 3ABFAC2231E211EFA341983CC4F9AE02.roa (hash: UaoBno6EmWaBFcw5TBVRPYFiWGMBoSDzhu3pQGtDygg=) 3: 63B7CB76D0E511EA9916E053C4F9AE02.roa (hash: 4fGi9gJaC/oEbDcGBoBEInsd7LIWjlkoV1ytai5f/QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B, serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Nov 2 20:33:54 2025 GMT Not After : Nov 9 20:33:54 2025 GMT Subject: CN=6907c032-1c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cb:f5:9f:b8:47:ab:a3:1d:32:75:0d:fe:f3: 85:52:d1:2f:28:06:20:93:d9:82:8f:16:76:d5:a5: 69:d9:97:ad:c7:db:ba:d3:89:1e:00:3c:73:1a:62: 8f:ed:95:35:bd:ab:72:46:56:75:64:d1:39:8f:4c: 55:76:73:1c:2d:7d:e6:76:a9:a7:35:c7:e9:be:9a: b1:81:34:11:74:25:8a:4f:15:e7:1f:32:7d:a7:2f: 9a:78:bc:f4:87:33:c5:a7:ac:7d:ef:55:39:29:1c: 98:73:a4:9e:de:78:09:54:cf:39:44:78:73:fc:46: 98:7e:e9:8e:06:d9:54:6a:eb:9f:2c:9f:c8:71:63: 2e:af:cc:6c:16:91:4b:42:ff:da:e3:b1:40:dc:b7: 9d:24:6b:40:93:f1:18:38:b2:4d:0f:df:e0:b7:3a: a9:2e:95:83:88:6c:9d:c3:ea:cc:7c:87:25:fc:87: 02:47:b3:74:11:d1:bb:bd:bd:a4:32:81:c1:e3:0c: 19:93:b4:86:ce:51:de:89:cf:67:a6:ff:16:75:21: ac:5e:b9:72:9c:75:52:f3:8a:39:e8:c5:76:96:da: 05:2e:c2:0b:e7:f4:d8:09:8b:13:ea:87:e0:f4:e4: 21:34:71:ce:c4:4c:1e:1f:5a:e3:3f:86:17:32:17: 81:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4C:C3:95:08:1C:8F:3B:5B:AD:4F:00:FF:05:A6:0D:82:25:B7:C9 X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:27:e2:c3:28:ff:c2:ef:b3:2f:64:d5:02:33:2d:f8:88:b5: 6e:08:93:00:79:b9:c3:18:99:de:59:a9:af:98:6b:bf:d5:d0: f8:be:2b:f1:d2:b5:6f:e1:0f:83:34:97:36:bc:30:03:b2:ee: eb:fa:c0:38:a5:fa:c1:40:5a:3c:d6:49:62:db:c7:6c:89:54: d7:f5:22:b0:ed:83:00:4c:19:0a:4c:ac:fe:c7:5a:d8:2f:71: 97:f4:7d:00:62:dd:33:67:aa:01:f2:f7:87:6f:09:ac:54:86: c7:15:d2:e1:af:66:d7:58:00:f5:ef:7c:db:5d:22:e7:ed:39: 49:a7:ff:81:6a:cb:a2:6b:f6:0f:a9:a2:66:77:ac:7d:d1:69: 53:c7:5a:c5:16:de:c1:68:e2:d3:ed:b1:21:c6:f1:6c:f1:b5: ab:a9:70:aa:0e:ca:05:03:88:b4:51:ed:3a:e0:5a:36:58:28: 29:ae:c4:44:5a:39:a8:9b:c4:e0:20:37:b3:9e:8f:b1:a5:6d: 22:61:79:5f:ab:d7:e9:d5:ea:c6:f6:3e:65:b6:2a:d7:3b:65: e6:c5:9c:3b:ad:71:bb:b7:f4:cb:58:a9:42:48:ba:40:b0:23: d0:4b:9b:0f:56:f1:b0:a7:3c:6d:c8:da:99:34:cd:dc:c2:96: 5f:41:a0:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjUxMTAyMjAzMzU0WhcNMjUxMTA5MjAzMzU0WjAYMRYwFAYD VQQDEw02OTA3YzAzMi0xYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcv1n7hHq6MdMnUN/vOFUtEvKAYgk9mCjxZ21aVp2Zetx9u604keADxzGmKP 7ZU1vatyRlZ1ZNE5j0xVdnMcLX3mdqmnNcfpvpqxgTQRdCWKTxXnHzJ9py+aeLz0 hzPFp6x971U5KRyYc6Se3ngJVM85RHhz/EaYfumOBtlUauufLJ/IcWMur8xsFpFL Qv/a47FA3LedJGtAk/EYOLJND9/gtzqpLpWDiGydw+rMfIcl/IcCR7N0EdG7vb2k MoHB4wwZk7SGzlHeic9npv8WdSGsXrlynHVS84o56MV2ltoFLsIL5/TYCYsT6ofg 9OQhNHHOxEweH1rjP4YXMheBLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZMw5UI HI87W61PAP8Fpg2CJbfJMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0Qi8yNEE2OEU5Q0QwRTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFND TDkzVnV3Vm1EUEVEanNqSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWJ+LDKP/C77MvZNUCMy34iLVuCJMAebnDGJneWamvmGu/1dD4vivx 0rVv4Q+DNJc2vDADsu7r+sA4pfrBQFo81kli28dsiVTX9SKw7YMATBkKTKz+x1rY L3GX9H0AYt0zZ6oB8veHbwmsVIbHFdLhr2bXWAD173zbXSLn7TlJp/+Basuia/YP qaJmd6x90WlTx1rFFt7BaOLT7bEhxvFs8bWrqXCqDsoFA4i0Ue064Fo2WCgprsRE Wjmom8TgIDezno+xpW0iYXlfq9fp1erG9j5ltirXO2XmxZw7rXG7t/TLWKlCSLpA sCPQS5sPVvGwpzxtyNqZNM3cwpZfQaAz -----END CERTIFICATE-----Generated at Tue Nov 4 08:29:07 2025 by rpki-client