$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft File: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft (raw, json) Hash identifier: 5w5ptdSw6HZ3gut+qXhvmKD8EfBWTB0WS7XKX+WKzPs= Subject key identifier: 76:66:2B:C6:3F:D9:FC:F4:D3:8A:11:0E:AC:17:11:DD:EB:BE:1A:C2 Authority key identifier: 1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C Certificate issuer: /CN=A917B4EE/serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft Manifest number: 067B Signing time: Tue 04 Nov 2025 22:34:06 +0000 Manifest this update: Tue 04 Nov 2025 22:34:06 +0000 Manifest next update: Tue 11 Nov 2025 22:34:06 +0000 Files and hashes: 1: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl (hash: FyQsbIOvDUcvj0ax5NlFLpskW+6Jn9vCCUhWWZwWPmI=) 2: 851D827C977511EBA99DCE72C4F9AE02.roa (hash: hQ/sXLdGqM267Zz0nlBpIRPhMJ+xIknpNjyonr+GXWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4EE, serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Validity Not Before: Nov 4 22:34:06 2025 GMT Not After : Nov 11 22:34:06 2025 GMT Subject: CN=690a7f5e-19fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:eb:09:45:17:ae:06:06:da:6a:2a:db:a4:05: 1e:c2:51:72:5c:7b:42:75:5e:09:07:15:57:f7:62: a7:3f:cb:77:02:b3:a5:08:74:98:7b:51:2f:36:0e: 55:08:14:20:36:94:5d:93:4b:8a:44:82:71:19:f4: fd:64:58:16:f3:30:30:8b:33:28:0e:bf:d8:c9:1c: 9f:d7:e3:0f:0c:e5:48:a8:bc:24:56:35:78:c5:eb: 9c:04:f8:85:1b:eb:3d:10:70:38:8c:5b:7d:82:0f: b1:dc:00:b3:20:f2:9c:ed:f4:71:7f:38:fe:5c:0d: 78:51:d9:ef:23:de:f0:d2:5e:14:27:0d:91:40:21: 75:3b:83:47:33:4a:ac:81:4a:9d:ad:df:0d:76:43: 18:5d:18:44:fc:97:5c:70:cc:92:48:b6:da:76:63: b7:b4:a0:53:97:32:d8:ad:33:4d:5a:5d:ff:c8:da: 87:25:04:8e:9e:02:6b:e2:50:87:c4:98:67:9a:7a: 9e:ee:4c:b9:d8:22:d1:9f:2a:74:28:2c:f4:27:73: 7e:de:cc:fc:0c:50:70:82:98:7d:e5:94:1b:e6:81: c8:6b:d0:eb:fe:62:aa:c2:f3:9b:9d:fc:b8:be:30: 0c:5a:a2:e2:9f:2c:53:42:94:81:8c:c8:85:8e:c3: b1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:66:2B:C6:3F:D9:FC:F4:D3:8A:11:0E:AC:17:11:DD:EB:BE:1A:C2 X509v3 Authority Key Identifier: keyid:1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:12:5a:80:67:fe:c1:55:24:71:90:fc:58:c0:a3:a5:1c:74: fd:4e:c6:42:d9:c0:78:15:b2:f5:68:4c:f0:68:96:5f:aa:2d: b7:9c:93:55:17:95:5a:ef:30:9d:19:db:fb:78:16:7a:db:57: 28:0b:70:cc:4e:89:bc:69:2c:59:60:3b:5e:c8:6c:e9:06:84: 97:6b:92:55:dd:21:d1:01:37:70:b0:fd:b0:10:ea:3f:4c:d0: eb:e1:be:f5:a7:9a:d3:f1:1d:b6:6a:0d:76:45:f5:81:ac:8e: 8c:02:64:7e:3d:22:c8:ad:a4:c9:cf:b6:bf:cf:a7:cd:f7:70: 26:89:00:84:e2:a4:a2:55:e1:14:e7:d5:cd:74:15:e4:e6:11: 74:4b:7e:94:e5:75:fc:23:fa:4f:bb:a3:96:e2:e9:32:33:51: 54:40:9c:c0:0e:0f:64:dc:2d:c7:b7:f6:11:78:2d:1f:c6:c6: 42:f3:57:74:4c:96:c1:a0:a2:11:70:05:07:35:05:4f:0a:2c: 6c:86:0d:d1:56:67:13:f1:34:f9:6d:6d:ae:7c:ad:cc:15:0d: e6:ee:95:33:b3:51:4d:1a:a6:7f:c6:e0:1a:14:0f:b2:0f:fe: 77:3f:95:5f:84:9e:17:ab:e3:c7:fc:45:d8:c0:ed:fc:62:a1: 53:98:ff:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0RUUxMTAvBgNVBAUTKDFBNEQzMTRDMUZEMDEwNjIyRTg3NDkxQ0U0ODI3QjYy Mzk2NjcwOUMwHhcNMjUxMTA0MjIzNDA2WhcNMjUxMTExMjIzNDA2WjAYMRYwFAYD VQQDEw02OTBhN2Y1ZS0xOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2esJRReuBgbaairbpAUewlFyXHtCdV4JBxVX92KnP8t3ArOlCHSYe1EvNg5V CBQgNpRdk0uKRIJxGfT9ZFgW8zAwizMoDr/YyRyf1+MPDOVIqLwkVjV4xeucBPiF G+s9EHA4jFt9gg+x3ACzIPKc7fRxfzj+XA14UdnvI97w0l4UJw2RQCF1O4NHM0qs gUqdrd8NdkMYXRhE/JdccMySSLbadmO3tKBTlzLYrTNNWl3/yNqHJQSOngJr4lCH xJhnmnqe7ky52CLRnyp0KCz0J3N+3sz8DFBwgph95ZQb5oHIa9Dr/mKqwvObnfy4 vjAMWqLinyxTQpSBjMiFjsOxjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZmK8Y/ 2fz004oRDqwXEd3rvhrCMB8GA1UdIwQYMBaAFBpNMUwf0BBiLodJHOSCe2I5ZnCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRFRS8zQTcyN0M3RTk3 NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVHSXVoMGtjNUlKN1lqbG1j SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drMHhUQl9RRUdJdWgwa2M1SUo3WWpsbWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRFRS8zQTcyN0M3RTk3NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVH SXVoMGtjNUlKN1lqbG1jSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOElqAZ/7BVSRxkPxYwKOlHHT9TsZC2cB4FbL1aEzwaJZfqi23nJNV F5Va7zCdGdv7eBZ621coC3DMTom8aSxZYDteyGzpBoSXa5JV3SHRATdwsP2wEOo/ TNDr4b71p5rT8R22ag12RfWBrI6MAmR+PSLIraTJz7a/z6fN93AmiQCE4qSiVeEU 59XNdBXk5hF0S36U5XX8I/pPu6OW4ukyM1FUQJzADg9k3C3Ht/YReC0fxsZC81d0 TJbBoKIRcAUHNQVPCixshg3RVmcT8TT5bW2ufK3MFQ3m7pUzs1FNGqZ/xuAaFA+y D/53P5VfhJ4Xq+PH/EXYwO38YqFTmP/Y -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:44 2025 by rpki-client