$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: 8fM51B06+48Z+1X067EEcCq+Xyk23dxjTaQCzcDD9Tk= Subject key identifier: 6E:18:98:37:3E:34:7B:E5:84:C9:32:23:E7:3C:1D:E0:65:29:88:2F Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: C5 Signing time: Sat 25 Oct 2025 09:37:00 +0000 Manifest this update: Sat 25 Oct 2025 09:36:59 +0000 Manifest next update: Sat 01 Nov 2025 09:36:59 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: K+qq/CuUM4zdH4AwXB/fWKDQ/JgH7p9FknVBXIAzPDE=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Oct 25 09:36:59 2025 GMT Not After : Nov 1 09:36:59 2025 GMT Subject: CN=68fc9a3b-cf77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0e:97:fd:25:5a:57:27:32:89:a3:0a:b8:b6: 4a:a5:68:2a:85:84:ef:a0:2d:4e:aa:3d:06:cc:21: d1:20:b8:10:fe:d7:c9:17:9e:b3:b9:47:20:41:6d: 6e:18:bd:99:2a:fd:88:0d:de:19:f9:ab:66:12:1a: 07:e1:d4:b1:ec:7e:f5:74:90:43:5f:74:b6:7e:f7: 1c:65:8a:68:32:b5:ce:d7:77:b6:7d:a2:88:59:b7: f9:30:c1:45:54:69:cb:8b:e6:07:29:34:ea:37:6d: 01:48:7e:9d:7b:90:2e:68:59:9a:f8:f7:38:ea:f0: 4f:4f:44:cb:47:dd:9d:d3:36:d4:0a:79:36:2e:45: 08:b1:00:d8:48:e2:50:79:fd:d3:4a:40:b4:19:d9: 3e:19:5f:13:ad:c8:39:20:50:69:e9:23:ad:b0:e6: 53:4b:07:5c:e1:24:1f:01:89:d1:66:f1:d3:50:4b: 98:aa:be:21:3d:04:20:45:85:ef:da:8e:ac:f0:21: bc:19:2d:ba:6a:c2:f0:b3:9b:5f:af:ac:33:11:11: 8a:eb:66:0d:4e:81:e9:00:e2:04:b9:56:71:da:cd: f3:9c:cf:63:ca:d3:3e:89:3a:b1:ac:dd:59:18:76: f5:c5:f0:d5:a7:fa:e1:7b:1d:3b:06:1c:07:c7:8e: 70:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:18:98:37:3E:34:7B:E5:84:C9:32:23:E7:3C:1D:E0:65:29:88:2F X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:81:fb:8a:b7:ee:1b:62:e1:0d:55:5f:7f:ba:fe:15:3f:0a: d2:d3:bd:80:d0:3e:0c:9d:43:33:30:cd:6c:47:17:59:55:e3: c6:1f:db:6d:c8:6d:67:89:45:be:ec:24:54:8e:38:8b:2e:14: 09:3d:79:11:7a:8e:fd:51:d1:24:20:21:04:cc:0b:98:fe:08: c6:85:7f:48:b2:a3:6c:b4:3b:67:0e:3d:1b:7b:ab:07:58:5b: de:3d:47:cb:d0:bd:58:55:84:a7:8b:17:ec:2e:0b:da:27:9b: c8:da:35:cb:ba:22:26:6f:30:6d:8d:31:d0:82:51:65:82:a3: f4:ac:c1:d4:9c:18:3c:88:38:92:22:37:25:6a:61:7d:fb:45: e2:6e:03:e2:d5:fc:a4:dc:a7:9a:fd:47:eb:4b:91:d2:48:6c: 2b:6c:20:a5:23:6b:a9:52:44:87:d6:91:0f:82:73:41:7f:7d: 72:5d:2c:61:75:3d:0c:d7:5c:ad:c9:85:d0:72:0f:1d:91:85: 7c:4a:3d:a9:ae:16:3b:22:79:cf:9e:1a:d9:c9:68:63:01:c1: ba:80:06:ab:8e:dc:1c:b6:2a:37:d5:eb:b8:0e:f7:98:04:56: fa:e4:4b:58:c5:c7:f2:70:11:f1:ea:da:ea:5e:d8:ef:55:2d: fc:33:64:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUxMDI1MDkzNjU5WhcNMjUxMTAxMDkzNjU5WjAYMRYwFAYD VQQDEw02OGZjOWEzYi1jZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApg6X/SVaVycyiaMKuLZKpWgqhYTvoC1Oqj0GzCHRILgQ/tfJF56zuUcgQW1u GL2ZKv2IDd4Z+atmEhoH4dSx7H71dJBDX3S2fvccZYpoMrXO13e2faKIWbf5MMFF VGnLi+YHKTTqN20BSH6de5AuaFma+Pc46vBPT0TLR92d0zbUCnk2LkUIsQDYSOJQ ef3TSkC0Gdk+GV8Trcg5IFBp6SOtsOZTSwdc4SQfAYnRZvHTUEuYqr4hPQQgRYXv 2o6s8CG8GS26asLws5tfr6wzERGK62YNToHpAOIEuVZx2s3znM9jytM+iTqxrN1Z GHb1xfDVp/rhex07BhwHx45wBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4YmDc+ NHvlhMkyI+c8HeBlKYgvMB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwgfuKt+4bYuENVV9/uv4VPwrS072A0D4MnUMzMM1sRxdZVePGH9tt yG1niUW+7CRUjjiLLhQJPXkReo79UdEkICEEzAuY/gjGhX9IsqNstDtnDj0be6sH WFvePUfL0L1YVYSnixfsLgvaJ5vI2jXLuiImbzBtjTHQglFlgqP0rMHUnBg8iDiS IjclamF9+0XibgPi1fyk3Kea/UfrS5HSSGwrbCClI2upUkSH1pEPgnNBf31yXSxh dT0M11ytyYXQcg8dkYV8Sj2prhY7InnPnhrZyWhjAcG6gAarjtwctio31eu4DveY BFb65EtYxcfycBHx6trqXtjvVS38M2Qr -----END CERTIFICATE-----Generated at Sat Oct 25 11:24:19 2025 by rpki-client