$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft File: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json) Hash identifier: 055No66TFu7AFUe0UIeLY+RYCh04u5GffUd71PMpbrs= Subject key identifier: 48:B9:00:74:EA:A4:97:6D:18:46:09:AD:F5:D6:60:51:A9:B8:63:12 Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 0730 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft Manifest number: 072A Signing time: Sun 02 Nov 2025 21:48:25 +0000 Manifest this update: Sun 02 Nov 2025 21:48:25 +0000 Manifest next update: Sun 09 Nov 2025 21:48:25 +0000 Files and hashes: 1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: uSR10AjgwovtFmOlGk6u1hZ579pVDvqqa6GsAAhs2i4=) 2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: B12a5nmb++1idn982o5fMgF1ev9LOoacLfiyTpfrCoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1840 (0x730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF, serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: Nov 2 21:48:25 2025 GMT Not After : Nov 9 21:48:25 2025 GMT Subject: CN=6907d1a9-78e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3e:d9:65:87:c7:14:cd:ff:ea:22:1e:2f:c9: 09:d6:7c:a2:c8:ba:47:0a:30:bd:f4:cb:87:78:af: 47:94:9b:e2:3c:1f:ae:82:8c:98:5d:4b:91:f7:86: 53:4d:9b:06:78:df:38:35:b5:cd:90:b9:f0:e6:a2: 0c:42:8f:62:90:70:99:50:70:bc:53:8e:ff:27:3f: c1:30:2e:d2:cc:64:62:24:d0:b0:5f:f5:97:50:8e: 42:54:38:11:07:e4:e2:cb:e9:9e:6e:39:b7:c0:d4: cc:4e:dc:76:f2:2e:01:e6:db:8a:1e:2d:3f:1f:9a: 20:dd:b8:7f:c6:00:8a:cb:23:28:a8:5a:e3:0e:d1: 60:7a:a9:e3:86:6a:8e:9f:d4:18:84:56:2e:cf:e4: 8c:60:2d:de:a0:58:a6:df:d2:84:e1:10:67:0b:d6: ed:6f:1d:1a:a3:d7:52:f4:cf:71:e8:70:7c:51:da: 3f:23:8b:fd:61:11:e3:8c:46:9e:5b:6d:0a:85:74: 72:24:0a:6a:8a:ef:c7:c8:63:f8:29:db:1d:3d:64: 8a:e8:35:6f:f5:4b:9c:78:17:70:a6:f9:59:81:39: d9:f1:de:37:ee:1a:de:91:94:b5:b1:d6:20:c8:c1: 28:5e:20:02:24:3d:dd:77:15:99:e2:bf:b1:f8:58: 0e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B9:00:74:EA:A4:97:6D:18:46:09:AD:F5:D6:60:51:A9:B8:63:12 X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:10:ef:af:bf:9e:31:e2:5e:99:1b:f6:9b:1e:c8:b8:8b:5f: 6f:52:40:7f:80:72:33:30:7a:a8:85:9a:9b:27:d1:40:ed:66: 6c:ce:e4:a6:3a:4e:fd:ca:7c:88:90:68:2f:c0:93:e2:06:24: 31:33:5d:18:a3:1e:e9:18:95:c0:9e:58:e3:9d:80:52:9a:db: 25:20:5a:97:2b:0e:b2:ac:51:1d:96:af:f5:da:bb:8f:b4:b4: 39:16:91:db:7d:df:ec:43:85:d7:31:99:ab:59:d4:37:df:2d: c6:92:47:81:be:eb:60:e8:28:64:35:23:f5:79:39:5f:74:79: 8c:66:28:c7:84:36:e5:44:49:1e:de:fe:f2:b0:c3:58:68:cc: e8:a9:24:9a:fb:68:a8:40:55:99:e7:64:f9:78:df:94:0b:65: ee:6f:27:61:91:fa:f4:c9:eb:18:7c:29:a5:03:bb:43:cc:0a: 3e:5d:ac:18:8f:b6:38:e3:0f:9e:0f:dd:d0:f6:41:09:bc:50: 01:74:57:49:36:6f:4c:dc:1b:e6:36:55:e6:a6:01:61:f8:90: ae:7d:ad:d7:f1:b9:06:e4:cd:49:1d:2d:06:7c:be:0d:3a:ea: 26:da:e4:fe:25:58:e7:80:ab:36:f3:76:d5:8c:4e:29:a7:5b: 89:6b:82:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjUxMTAyMjE0ODI1WhcNMjUxMTA5MjE0ODI1WjAYMRYwFAYD VQQDEw02OTA3ZDFhOS03OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5T7ZZYfHFM3/6iIeL8kJ1nyiyLpHCjC99MuHeK9HlJviPB+ugoyYXUuR94ZT TZsGeN84NbXNkLnw5qIMQo9ikHCZUHC8U47/Jz/BMC7SzGRiJNCwX/WXUI5CVDgR B+Tiy+mebjm3wNTMTtx28i4B5tuKHi0/H5og3bh/xgCKyyMoqFrjDtFgeqnjhmqO n9QYhFYuz+SMYC3eoFim39KE4RBnC9btbx0ao9dS9M9x6HB8Udo/I4v9YRHjjEae W20KhXRyJApqiu/HyGP4KdsdPWSK6DVv9UuceBdwpvlZgTnZ8d437hrekZS1sdYg yMEoXiACJD3ddxWZ4r+x+FgOFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEi5AHTq pJdtGEYJrfXWYFGpuGMSMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MThBRi9ENzkyRjQ3NDU2QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZ dERfVlExaVRqZEh6R2hhUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsEO+vv54x4l6ZG/abHsi4i19vUkB/gHIzMHqohZqbJ9FA7WZszuSm Ok79ynyIkGgvwJPiBiQxM10Yox7pGJXAnljjnYBSmtslIFqXKw6yrFEdlq/12ruP tLQ5FpHbfd/sQ4XXMZmrWdQ33y3GkkeBvutg6ChkNSP1eTlfdHmMZijHhDblREke 3v7ysMNYaMzoqSSa+2ioQFWZ52T5eN+UC2Xubydhkfr0yesYfCmlA7tDzAo+XawY j7Y44w+eD93Q9kEJvFABdFdJNm9M3BvmNlXmpgFh+JCufa3X8bkG5M1JHS0GfL4N Ouom2uT+JVjngKs283bVjE4pp1uJa4JS -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:14 2025 by rpki-client