$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: nvT/M3z5shDb1PjKSd+F4NEATrd/93Tkm0c1XcGiOlA= Subject key identifier: 20:69:5A:42:07:FC:43:E4:51:39:17:EE:A2:66:EC:E1:DE:90:96:EF Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0D42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0CF4 Signing time: Mon 03 Nov 2025 14:37:06 +0000 Manifest this update: Mon 03 Nov 2025 14:37:06 +0000 Manifest next update: Mon 10 Nov 2025 14:37:06 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: gzxMdAmvdw/lbqNaGlr0LVFLY3nsBNIhHvKjMv8oz80=) 2: 6BD78854828411F099E2E925C4F9AE02.roa (hash: 9j0RVXeWOTqtCIIu8pRWvFaGzaYiOgKNK4oM1aL4Rcw=) 3: 566800AE193C11F094773636C4F9AE02.roa (hash: LDxBzmswdwsw+9v/l/93CJjumlDe/PyvRMs7ZjDXsiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 14:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3394 (0xd42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Nov 3 14:37:06 2025 GMT Not After : Nov 10 14:37:06 2025 GMT Subject: CN=6908be12-b019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cd:2e:60:56:de:b9:12:66:ea:c9:5a:ec:56: e6:7e:b9:22:4d:32:b3:3b:08:53:2e:cf:c5:b2:86: 0a:85:7e:6b:a7:49:4f:00:e9:3d:ef:31:6d:7a:9a: 3c:c5:20:ed:14:fe:26:d9:86:d8:0f:9c:08:a2:73: 23:9c:46:1f:a1:02:23:28:98:07:80:a7:e9:6a:a6: a5:36:27:b2:11:9a:e0:f2:32:f0:ea:10:76:ca:4e: d3:52:15:72:2a:cd:81:15:25:e2:65:0c:8e:52:fb: 61:73:3d:af:bc:0a:5f:b7:c9:4e:03:f8:8f:25:9c: 8e:af:99:5c:fc:a1:11:94:22:4a:77:8d:52:b1:49: 0d:11:6a:a5:87:3b:8e:8c:94:6c:19:19:8a:22:d7: bd:c2:ab:46:17:8e:d6:f1:c4:22:bd:ad:c1:96:14: 35:70:a5:1b:25:a2:6a:c4:68:55:8b:d5:81:83:3d: 2a:60:b9:21:df:1a:0d:f2:b9:50:11:e2:df:d5:1c: ff:49:b9:80:75:27:f4:97:f7:9a:dd:cc:f9:eb:13: 26:47:31:ef:54:da:e0:c4:6e:1e:aa:37:60:9f:26: 62:87:90:e4:77:aa:2e:6e:15:38:b1:ba:59:ae:c5: 28:b9:15:34:da:df:48:41:ff:0d:6a:46:1c:06:ab: 52:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:69:5A:42:07:FC:43:E4:51:39:17:EE:A2:66:EC:E1:DE:90:96:EF X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a6:3a:e7:69:16:df:d7:80:d7:30:f4:c1:e3:77:d8:c5:23: 8d:c0:f9:6e:4e:df:17:c5:0c:d2:06:da:e7:ab:08:b8:da:74: 2e:cf:30:78:b9:b9:c8:1f:9c:b1:b2:16:7c:83:0a:7e:ca:f2: cc:da:6b:d6:2b:6d:6e:53:cd:74:1a:75:80:35:f5:ad:2e:92: 15:c5:3f:f7:ad:e6:2a:e2:95:d1:7d:9d:a2:60:74:fd:c2:2f: 3c:cd:69:e0:d1:86:d4:8a:b5:f8:46:76:fd:e7:c7:08:f3:7e: 73:47:9d:50:be:92:4f:3c:8b:53:10:b7:30:ad:64:ff:76:9c: 5b:4c:7a:4a:75:58:31:c7:25:85:9e:ce:a5:7a:37:57:5b:5e: 40:48:d6:a0:fd:ad:52:73:43:01:e2:53:3a:d1:e7:9e:e6:b6: 56:43:dd:40:93:38:11:d6:54:a6:13:06:5f:9e:06:a2:9e:e0: 63:f4:ae:a7:a3:42:22:c0:22:45:2b:77:ad:69:ee:84:06:08: a0:af:dc:c9:55:e2:18:b8:65:a5:c7:8f:65:0a:46:29:4c:34: 5b:e3:06:9b:6d:96:a6:a1:28:b8:46:c9:38:f0:4b:15:36:a5: e3:07:98:e1:da:7f:34:59:eb:f4:2f:e9:55:ef:52:fa:cc:8c: 9a:eb:7e:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjUxMTAzMTQzNzA2WhcNMjUxMTEwMTQzNzA2WjAYMRYwFAYD VQQDEw02OTA4YmUxMi1iMDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsM0uYFbeuRJm6sla7FbmfrkiTTKzOwhTLs/FsoYKhX5rp0lPAOk97zFtepo8 xSDtFP4m2YbYD5wIonMjnEYfoQIjKJgHgKfpaqalNieyEZrg8jLw6hB2yk7TUhVy Ks2BFSXiZQyOUvthcz2vvApft8lOA/iPJZyOr5lc/KERlCJKd41SsUkNEWqlhzuO jJRsGRmKIte9wqtGF47W8cQiva3BlhQ1cKUbJaJqxGhVi9WBgz0qYLkh3xoN8rlQ EeLf1Rz/SbmAdSf0l/ea3cz56xMmRzHvVNrgxG4eqjdgnyZih5Dkd6oubhU4sbpZ rsUouRU02t9IQf8NakYcBqtSKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBpWkIH /EPkUTkX7qJm7OHekJbvMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmpjrnaRbf14DXMPTB43fYxSONwPluTt8XxQzSBtrnqwi42nQuzzB4 ubnIH5yxshZ8gwp+yvLM2mvWK21uU810GnWANfWtLpIVxT/3reYq4pXRfZ2iYHT9 wi88zWng0YbUirX4Rnb958cI835zR51QvpJPPItTELcwrWT/dpxbTHpKdVgxxyWF ns6lejdXW15ASNag/a1Sc0MB4lM60eee5rZWQ91AkzgR1lSmEwZfngainuBj9K6n o0IiwCJFK3etae6EBgigr9zJVeIYuGWlx49lCkYpTDRb4wabbZamoSi4Rsk48EsV NqXjB5jh2n80Wev0L+lV71L6zIya636k -----END CERTIFICATE-----Generated at Tue Nov 4 13:18:15 2025 by rpki-client