$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: HodsGJ2sUEC90UeaD13G0dLR4Vj4cWgFkulP0XouND0= Subject key identifier: 63:CD:C9:EE:1B:96:52:24:06:92:04:55:FA:C6:A6:9C:AC:08:3B:E3 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 76 Signing time: Mon 03 Nov 2025 06:52:37 +0000 Manifest this update: Mon 03 Nov 2025 06:52:37 +0000 Manifest next update: Mon 10 Nov 2025 06:52:37 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: BdSHhwh1ysJ47tn1ssy+ASxBbBiL9qeZBbk2obTXZZM=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Nov 3 06:52:37 2025 GMT Not After : Nov 10 06:52:37 2025 GMT Subject: CN=69085135-c2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:79:75:09:a7:bf:c1:59:8f:72:6d:f8:c1:35: 06:1b:ef:d5:0c:fd:44:3e:a0:c2:2d:46:bc:31:46: 8c:59:6c:49:4c:83:31:82:81:df:70:a1:00:6f:e2: 58:00:35:15:36:47:cc:14:7e:58:7c:b0:31:3d:ac: cb:7b:05:b8:45:df:a7:26:68:93:d1:81:98:bb:0f: c5:00:04:49:09:6d:94:c3:bc:19:ca:cc:b7:d7:fe: 91:c0:fd:23:44:f7:6e:78:95:2c:83:93:3a:30:bc: ab:4e:5c:65:ec:57:cf:a8:7f:bf:8c:46:f3:1c:a7: 5a:8a:db:40:4c:fe:3e:05:d6:e1:23:dc:77:e2:30: b6:5d:99:19:6f:ec:4d:97:af:6c:e5:85:26:fe:fe: 6b:b2:8f:f5:ea:53:e0:7c:d6:8e:e7:9c:7d:f1:0c: be:2f:06:7b:e0:58:62:3c:2e:13:00:f8:ed:10:56: c9:02:98:d7:fa:88:6a:43:55:41:f1:99:66:e0:be: 20:67:01:45:09:70:9b:ce:f6:63:19:54:b0:49:98: bd:ca:12:fb:ff:3b:56:67:2b:4b:94:28:87:a9:c1: 82:47:40:9b:50:24:86:fc:4c:69:b4:13:14:20:ce: 7c:65:1d:2b:8b:3c:a8:89:28:5f:d2:cd:b7:b2:fb: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CD:C9:EE:1B:96:52:24:06:92:04:55:FA:C6:A6:9C:AC:08:3B:E3 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:31:3a:6c:95:e8:1c:b2:43:6c:b2:32:7d:93:1f:af:8d:95: 43:96:84:ab:ff:ae:2b:85:95:1f:0d:2d:fb:ac:59:37:0e:8d: 83:4b:2a:86:f9:b7:fd:c2:4d:c8:26:47:c7:0a:2e:0d:cb:fb: b7:4b:af:b3:10:33:5a:30:a4:b2:fa:66:99:c2:7b:dd:32:be: f2:aa:9e:ca:c1:9d:54:75:1d:66:7a:58:ba:37:43:9d:e8:d1: 42:26:57:33:f9:fa:97:fa:e4:3a:48:80:dc:98:87:0e:df:41: 1c:17:58:51:42:0f:8e:a5:9b:da:02:d5:96:2f:03:af:1e:b6: 77:dd:72:17:f7:94:a3:d0:73:a2:0f:07:06:61:5b:cd:08:e4: 91:63:32:e8:9a:47:dd:6b:4e:13:cf:e4:2d:20:5f:76:de:de: e3:d2:77:ff:f7:0f:8e:f7:16:fa:79:6c:47:73:27:68:f8:3a: 98:85:91:ec:d5:be:73:43:b7:80:a0:aa:66:56:7a:6f:c0:39: 54:ac:0d:97:9d:dd:c9:22:91:f5:cb:46:86:a5:a6:fc:a6:b3: ba:5b:5f:a2:80:04:a6:83:db:df:5d:d6:d9:08:90:82:96:da: 91:8e:40:3d:91:cc:30:b4:d2:d5:87:e6:75:08:a2:8e:fb:61: 7b:96:6e:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTExMDMwNjUyMzdaFw0yNTExMTAwNjUyMzdaMBgxFjAUBgNV BAMTDTY5MDg1MTM1LWMyYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVeXUJp7/BWY9ybfjBNQYb79UM/UQ+oMItRrwxRoxZbElMgzGCgd9woQBv4lgA NRU2R8wUflh8sDE9rMt7BbhF36cmaJPRgZi7D8UABEkJbZTDvBnKzLfX/pHA/SNE 9254lSyDkzowvKtOXGXsV8+of7+MRvMcp1qK20BM/j4F1uEj3HfiMLZdmRlv7E2X r2zlhSb+/muyj/XqU+B81o7nnH3xDL4vBnvgWGI8LhMA+O0QVskCmNf6iGpDVUHx mWbgviBnAUUJcJvO9mMZVLBJmL3KEvv/O1ZnK0uUKIepwYJHQJtQJIb8TGm0ExQg znxlHSuLPKiJKF/Szbey+51dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY83J7huW UiQGkgRV+samnKwIO+MwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMUxOmyV6ByyQ2yyMn2TH6+NlUOWhKv/riuFlR8NLfusWTcOjYNLKob5 t/3CTcgmR8cKLg3L+7dLr7MQM1owpLL6ZpnCe90yvvKqnsrBnVR1HWZ6WLo3Q53o 0UImVzP5+pf65DpIgNyYhw7fQRwXWFFCD46lm9oC1ZYvA68etnfdchf3lKPQc6IP BwZhW80I5JFjMuiaR91rThPP5C0gX3be3uPSd//3D473Fvp5bEdzJ2j4OpiFkezV vnNDt4CgqmZWem/AOVSsDZed3ckikfXLRoalpvyms7pbX6KABKaD299d1tkIkIKW 2pGOQD2RzDC00tWH5nUIoo77YXuWbh0= -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:13 2025 by rpki-client