$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: OAsSKzCDkH6bsfYXGhd2w7dXXx431D5iQ7oEG1H86ZE= Subject key identifier: 68:61:9A:99:BC:D9:2B:09:82:49:6A:2B:55:63:34:4A:FD:99:13:E1 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 152B Signing time: Thu 30 Oct 2025 16:48:16 +0000 Manifest this update: Thu 30 Oct 2025 16:48:16 +0000 Manifest next update: Thu 06 Nov 2025 16:48:16 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: Jf/4p2DduxxOf/1u+RjEM47uY79ZYpAswUPqrgfwge0=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 16:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5430 (0x1536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Oct 30 16:48:16 2025 GMT Not After : Nov 6 16:48:16 2025 GMT Subject: CN=690396d0-a03e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c6:3a:ed:9a:a3:a4:fd:a0:9e:2c:b1:ad:77: fe:b5:cf:62:fa:7d:59:21:a7:c3:9d:b2:4d:c1:ae: 27:d7:c8:76:c4:61:c9:73:48:44:26:fa:82:40:21: 74:c2:ce:23:ac:9e:46:8a:10:3e:52:40:67:97:97: c7:2c:c3:47:e2:5a:e4:ea:d9:67:e9:b7:c6:81:da: c1:86:e5:71:81:b4:d3:05:5d:0d:02:55:4e:94:bc: 33:b0:8c:b0:52:6c:cf:4e:0f:c8:51:ef:b7:fb:f3: ea:fb:20:16:26:0b:d0:0f:55:1d:c7:8c:67:f0:6d: d1:46:cf:4d:ea:8b:b0:c8:9b:a2:94:22:08:06:b4: 4d:84:50:f4:94:a9:5e:fe:87:10:00:da:4e:79:8b: 8a:7e:1f:08:d7:12:c4:32:9f:bd:fd:c4:41:b6:c6: 52:be:2c:50:d9:dd:43:91:f7:b0:88:0b:25:c4:9f: 2f:79:9d:03:2d:a5:6e:cd:0c:7a:17:5c:72:96:7d: 72:dd:56:e8:42:4d:65:2b:99:13:42:2c:3e:7b:2b: bb:5b:32:bb:8c:0b:0e:0c:39:89:15:cc:8a:81:ce: f3:1a:5e:85:07:14:48:0a:c5:3d:32:96:e7:b9:fc: b0:68:ae:d9:4c:ac:b1:f8:b6:1b:20:4c:bb:e4:d0: a4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:61:9A:99:BC:D9:2B:09:82:49:6A:2B:55:63:34:4A:FD:99:13:E1 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d5:3a:67:58:91:0d:77:dd:a4:9f:ba:f6:66:99:75:d4:2f: 81:c5:8d:6b:83:48:69:c5:90:d4:8e:27:9f:e6:55:63:98:eb: 34:85:45:93:30:ed:d7:a4:3c:a8:d7:6e:31:b8:82:3b:6a:c4: 0f:85:a7:37:91:51:4f:02:b3:e5:ba:af:7a:17:4f:75:01:e5: 3d:0e:99:18:7f:ec:57:39:73:f3:b3:be:fa:4a:8b:01:53:1b: db:2a:fa:c3:a9:a1:1f:94:51:6c:27:ca:cf:83:63:4e:71:78: 06:fd:a2:10:23:01:72:07:09:bf:e1:30:5b:c7:6d:b6:1b:a6: bb:3c:7d:3a:1e:1b:db:cb:a0:53:e1:94:39:d7:6a:d2:e5:90: 94:d4:32:bd:f0:d4:e6:bb:26:2d:2a:52:dc:9a:55:67:71:64: 2c:a5:4e:d8:c6:9d:a3:6c:b2:dc:0a:6e:78:dc:bb:fc:69:ad: 3f:80:98:18:0e:cd:fc:88:39:e7:72:6f:33:ec:32:37:79:f1: 8e:32:0e:9b:86:4b:2e:e0:78:e1:99:3b:6e:13:64:2e:cd:c9: 04:a9:25:7a:e3:a8:93:d8:58:7f:06:56:73:2b:c7:54:68:b2: 46:73:96:b0:b4:07:6c:a4:b1:b9:fe:db:55:5f:6a:0d:a8:a8: bb:77:7c:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUxMDMwMTY0ODE2WhcNMjUxMTA2MTY0ODE2WjAYMRYwFAYD VQQDEw02OTAzOTZkMC1hMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sY67ZqjpP2gniyxrXf+tc9i+n1ZIafDnbJNwa4n18h2xGHJc0hEJvqCQCF0 ws4jrJ5GihA+UkBnl5fHLMNH4lrk6tln6bfGgdrBhuVxgbTTBV0NAlVOlLwzsIyw UmzPTg/IUe+3+/Pq+yAWJgvQD1Udx4xn8G3RRs9N6ouwyJuilCIIBrRNhFD0lKle /ocQANpOeYuKfh8I1xLEMp+9/cRBtsZSvixQ2d1DkfewiAslxJ8veZ0DLaVuzQx6 F1xyln1y3VboQk1lK5kTQiw+eyu7WzK7jAsODDmJFcyKgc7zGl6FBxRICsU9Mpbn ufywaK7ZTKyx+LYbIEy75NCkzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhhmpm8 2SsJgklqK1VjNEr9mRPhMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1TpnWJENd92kn7r2Zpl11C+BxY1rg0hpxZDUjief5lVjmOs0hUWT MO3XpDyo124xuII7asQPhac3kVFPArPluq96F091AeU9DpkYf+xXOXPzs776SosB UxvbKvrDqaEflFFsJ8rPg2NOcXgG/aIQIwFyBwm/4TBbx222G6a7PH06Hhvby6BT 4ZQ512rS5ZCU1DK98NTmuyYtKlLcmlVncWQspU7Yxp2jbLLcCm543Lv8aa0/gJgY Ds38iDnncm8z7DI3efGOMg6bhksu4HjhmTtuE2QuzckEqSV646iT2Fh/BlZzK8dU aLJGc5awtAdspLG5/ttVX2oNqKi7d3wX -----END CERTIFICATE-----Generated at Fri Oct 31 07:57:18 2025 by rpki-client