$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft File: GhajkdMlFwt7hcS_x4VaF300e24.mft (raw, json) Hash identifier: xmReRZGE31Kf7cYF7w+LRAsF8ZC0Sjp76ot5sU9vVDA= Subject key identifier: 31:04:C9:5C:7D:D1:16:C9:29:8E:68:D6:C5:E0:DA:9B:5A:BE:E1:EB Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E Certificate issuer: /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft Manifest number: 3F Signing time: Wed 05 Nov 2025 07:39:43 +0000 Manifest this update: Wed 05 Nov 2025 07:39:42 +0000 Manifest next update: Wed 12 Nov 2025 07:39:42 +0000 Files and hashes: 1: GhajkdMlFwt7hcS_x4VaF300e24.crl (hash: /pW54m9wTU0Stao55YFVm4wJr9cv+z5sIhgAja5Dai0=) 2: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (hash: 92wZUBl6JW7t9Lz6VY8NqyCC30dn+5kR/99dMirbOek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Validity Not Before: Nov 5 07:39:42 2025 GMT Not After : Nov 12 07:39:42 2025 GMT Subject: CN=690aff3e-c543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4b:2c:83:71:9c:a4:71:19:7d:ab:b7:c6:91: 8f:19:61:40:94:b9:fb:32:e6:38:70:af:63:a5:75: 6b:47:24:fa:a4:21:d7:59:38:a7:2f:78:e0:a5:08: b2:43:84:0f:9f:b2:71:ee:b8:8b:84:ee:b9:6a:e0: f7:0f:ac:31:93:53:fc:52:19:42:21:e0:c3:0f:fb: 70:a1:b8:44:34:dd:84:ff:e8:e9:15:99:8f:eb:5a: a6:a9:7a:ff:ba:b8:45:ec:07:20:4a:9a:0c:e5:21: d7:b1:8e:e9:2f:19:fc:b3:18:78:71:9d:fc:ce:b3: 73:70:f2:99:12:c5:70:d6:75:ab:8e:30:c0:d3:b0: 9e:b5:e3:f5:fd:dd:c6:c1:a2:02:85:b9:9b:a4:ba: de:85:27:b2:6e:74:d4:06:f4:8c:36:e2:c1:bc:0e: 51:34:ee:e4:31:93:9a:79:73:34:6f:7f:2e:68:21: bb:47:34:da:09:70:d5:20:e1:95:62:94:3d:44:93: e3:ac:31:77:b6:75:3c:69:8a:ec:59:50:d7:01:25: bf:b4:51:85:93:0e:b6:1e:69:e7:fd:2b:6f:39:7a: 3a:8b:55:f8:31:02:9e:35:2b:f3:7c:35:6b:ee:9a: 21:22:e0:a5:3f:9f:44:f6:5a:ae:aa:07:ed:a9:7a: 58:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:04:C9:5C:7D:D1:16:C9:29:8E:68:D6:C5:E0:DA:9B:5A:BE:E1:EB X509v3 Authority Key Identifier: keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:3f:46:01:b9:68:2a:fb:59:a7:36:7d:fc:83:8d:60:42:93: 80:9b:f4:88:e8:ee:bc:c3:dc:6b:d2:c0:b9:47:24:eb:51:3e: c5:60:f0:22:58:7f:56:b9:ab:d2:3b:7f:7e:af:95:13:1e:e0: 65:b0:33:b6:a2:46:3e:04:0a:f7:ea:18:bd:fa:fe:ff:f5:19: 45:74:b1:d8:87:c2:0d:f5:1b:cb:64:4e:61:01:aa:3a:35:37: 1a:f5:76:6a:24:93:d6:e7:ab:e9:42:29:88:b7:95:4e:74:9f: c8:2d:04:b1:e6:85:b7:f7:c9:f9:cf:69:aa:62:2d:15:3f:d9: 50:21:fe:66:4d:c6:c8:b0:18:cd:c9:f0:93:a2:43:7c:33:25: cc:23:3b:5d:ce:d2:0e:a9:3a:40:17:48:8b:23:21:36:2e:f9: 72:90:e4:fe:c1:75:2d:e2:23:c9:75:f5:1c:31:fe:03:8c:27: 1e:30:14:ff:4a:d0:f9:b4:64:a2:ec:9e:b7:84:d4:82:72:7c: d0:df:ac:90:a4:e3:a1:bb:d7:41:4a:ba:46:5c:3d:3f:13:9d: 47:d7:74:4a:b3:2d:31:fc:83:07:65:c2:1a:65:7d:0b:55:dc: f9:c7:ad:87:a3:cb:26:1a:89:ce:e1:e3:01:02:d9:97:b2:db: 95:b2:fb:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjUxMDExMC8GA1UEBRMoMUExNkEzOTFEMzI1MTcwQjdCODVDNEJGQzc4NTVBMTc3 RDM0N0I2RTAeFw0yNTExMDUwNzM5NDJaFw0yNTExMTIwNzM5NDJaMBgxFjAUBgNV BAMTDTY5MGFmZjNlLWM1NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqSyyDcZykcRl9q7fGkY8ZYUCUufsy5jhwr2OldWtHJPqkIddZOKcveOClCLJD hA+fsnHuuIuE7rlq4PcPrDGTU/xSGUIh4MMP+3ChuEQ03YT/6OkVmY/rWqapev+6 uEXsByBKmgzlIdexjukvGfyzGHhxnfzOs3Nw8pkSxXDWdauOMMDTsJ614/X93cbB ogKFuZukut6FJ7JudNQG9Iw24sG8DlE07uQxk5p5czRvfy5oIbtHNNoJcNUg4ZVi lD1Ek+OsMXe2dTxpiuxZUNcBJb+0UYWTDrYeaef9K285ejqLVfgxAp41K/N8NWvu miEi4KU/n0T2Wq6qB+2peljhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMQTJXH3R FskpjmjWxeDam1q+4eswHwYDVR0jBBgwFoAUGhajkdMlFwt7hcS/x4VaF300e24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNTEwLzE4ODJEMEU2NUQ4 MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0N2hjU194NFZhRjMwMGUy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2hhamtkTWxGd3Q3aGNTX3g0VmFGMzAwZTI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC NTEwLzE4ODJEMEU2NUQ4MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0 N2hjU194NFZhRjMwMGUyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEk/RgG5aCr7Wac2ffyDjWBCk4Cb9Ijo7rzD3GvSwLlHJOtRPsVg8CJY f1a5q9I7f36vlRMe4GWwM7aiRj4ECvfqGL36/v/1GUV0sdiHwg31G8tkTmEBqjo1 Nxr1dmokk9bnq+lCKYi3lU50n8gtBLHmhbf3yfnPaapiLRU/2VAh/mZNxsiwGM3J 8JOiQ3wzJcwjO13O0g6pOkAXSIsjITYu+XKQ5P7BdS3iI8l19Rwx/gOMJx4wFP9K 0Pm0ZKLsnreE1IJyfNDfrJCk46G710FKukZcPT8TnUfXdEqzLTH8gwdlwhplfQtV 3PnHrYejyyYaic7h4wEC2Zey25Wy+xE= -----END CERTIFICATE-----Generated at Wed Nov 5 18:00:27 2025 by rpki-client