$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: QffW+7srjC8ONx9XHi58I+bgxOV5u3lNQoZU+cer8hQ= Subject key identifier: 7C:BD:61:93:8A:45:D4:85:EB:2D:0E:ED:1C:E9:E3:D4:91:3A:86:81 Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: B4 Signing time: Sat 25 Oct 2025 09:53:59 +0000 Manifest this update: Sat 25 Oct 2025 09:53:59 +0000 Manifest next update: Sat 01 Nov 2025 09:53:59 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: L5IRqcTH3Qdiap5m7RFpycZPAGytyM2cQSwSPA1FSKQ=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: iLpw/uJbge7uZ/WmLMuhiuh6b3ClTayyECZNu36JGVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Oct 25 09:53:59 2025 GMT Not After : Nov 1 09:53:59 2025 GMT Subject: CN=68fc9e37-4983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:c2:f8:b9:eb:a9:f3:40:f8:a3:c2:99:0e: 5f:b4:a4:f3:e4:ca:0e:00:9f:8d:7b:1e:76:ae:90: 40:94:4e:a0:55:d3:a9:42:0d:ca:50:c1:7e:6d:f3: 5b:d7:47:08:ea:ff:4b:43:46:ae:fb:4b:ec:73:34: 47:7b:25:68:e6:4f:48:44:d3:4a:02:1a:41:17:6f: 58:36:8a:d2:9d:ac:d3:13:e2:6f:84:59:6e:c4:6b: 6e:b7:6f:48:46:8b:49:17:7b:e1:4b:d3:53:99:fd: 8f:57:21:57:bc:d0:2c:43:6c:2e:35:77:02:e4:ce: 01:0b:f2:58:e2:51:a7:2f:43:1f:5b:21:a0:e6:be: 64:55:03:60:2e:d0:3a:c7:56:58:cc:34:c9:e4:b3: f2:26:e9:19:dd:b1:8f:04:8c:55:27:05:b2:02:64: 5e:d5:fb:3a:01:5f:b9:40:9f:6b:7a:ee:2b:ad:14: cd:f7:8a:7e:a1:a2:08:c9:51:0f:6c:01:1e:da:7e: a8:9b:2b:4a:7f:9b:ce:8c:8c:81:8f:ca:07:63:8a: 95:cd:ab:cc:18:9c:2f:7c:cc:4f:da:de:5b:18:5a: fb:d8:a5:f6:7d:0b:4c:d2:91:8a:b3:ff:73:c6:c9: f9:75:2c:81:80:91:ad:f5:d1:dd:76:81:e7:7e:2f: df:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BD:61:93:8A:45:D4:85:EB:2D:0E:ED:1C:E9:E3:D4:91:3A:86:81 X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d7:91:95:70:77:25:82:64:d6:49:1e:08:a5:74:3e:98:96: ab:46:f6:30:cb:43:1d:86:e3:b6:0f:76:1f:53:56:b6:5d:70: a5:95:51:7b:2a:71:cb:39:db:57:2e:c9:b7:f0:38:b5:17:64: 21:ed:8f:ce:e0:c5:58:db:17:fe:4e:f0:aa:bf:6d:66:97:64: 3a:cb:0d:f6:ad:e9:74:fc:6a:a4:ca:58:02:db:ee:de:27:dd: 0d:69:df:28:09:ec:c4:f7:ab:25:2f:f0:95:ed:61:c1:a6:cf: e0:f7:d7:25:b8:2c:93:7a:cb:53:c5:e9:d5:52:3f:3d:72:80: 88:44:44:a7:4f:4f:a1:3c:19:2f:9f:91:12:c8:7a:d5:27:c3: 06:28:8d:f0:a8:0f:2a:69:97:bb:79:49:22:7b:29:98:d5:5c: 6e:1f:f7:9a:22:d3:01:51:a7:aa:e6:bb:59:ab:2e:68:12:0f: 39:94:4c:dd:4f:4d:20:fe:3a:2e:18:e1:b6:35:31:0f:1d:55: 66:a2:d7:a4:a1:3c:7a:cc:19:f5:d6:69:18:68:fc:48:39:49: 2a:d3:9f:a7:0f:3c:67:2f:aa:f8:b2:af:79:22:cd:57:aa:81: 67:7f:77:10:fa:cc:f2:97:bc:8f:73:44:2e:03:58:e8:ee:87: ed:b7:20:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRTIxMTAvBgNVBAUTKDgwN0U2ODhBQTUwQkQzRTM4QkUzMUI1RDRDNEUwNjA4 MDRFQjE1REMwHhcNMjUxMDI1MDk1MzU5WhcNMjUxMTAxMDk1MzU5WjAYMRYwFAYD VQQDEw02OGZjOWUzNy00OTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPzC+LnrqfNA+KPCmQ5ftKTz5MoOAJ+Nex52rpBAlE6gVdOpQg3KUMF+bfNb 10cI6v9LQ0au+0vsczRHeyVo5k9IRNNKAhpBF29YNorSnazTE+JvhFluxGtut29I RotJF3vhS9NTmf2PVyFXvNAsQ2wuNXcC5M4BC/JY4lGnL0MfWyGg5r5kVQNgLtA6 x1ZYzDTJ5LPyJukZ3bGPBIxVJwWyAmRe1fs6AV+5QJ9reu4rrRTN94p+oaIIyVEP bAEe2n6omytKf5vOjIyBj8oHY4qVzavMGJwvfMxP2t5bGFr72KX2fQtM0pGKs/9z xsn5dSyBgJGt9dHddoHnfi/fcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHy9YZOK RdSF6y0O7Rzp49SROoaBMB8GA1UdIwQYMBaAFIB+aIqlC9Pji+MbXUxOBggE6xXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBFMi8yQjRCQjQyRUEy NUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAtT0w0eHRkVEU0R0NBVHJG ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjBFMi8yQjRCQjQyRUEyNUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAt T0w0eHRkVEU0R0NBVHJGZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF15GVcHclgmTWSR4IpXQ+mJarRvYwy0MdhuO2D3YfU1a2XXCllVF7 KnHLOdtXLsm38Di1F2Qh7Y/O4MVY2xf+TvCqv21ml2Q6yw32rel0/GqkylgC2+7e J90Nad8oCezE96slL/CV7WHBps/g99cluCyTestTxenVUj89coCIRESnT0+hPBkv n5ESyHrVJ8MGKI3wqA8qaZe7eUkieymY1VxuH/eaItMBUaeq5rtZqy5oEg85lEzd T00g/jouGOG2NTEPHVVmotekoTx6zBn11mkYaPxIOUkq05+nDzxnL6r4sq95Is1X qoFnf3cQ+szyl7yPc0QuA1jo7ofttyD5 -----END CERTIFICATE-----Generated at Sun Oct 26 05:36:21 2025 by rpki-client