$ rpki-client -vvf rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft File: GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft (raw, json) Hash identifier: 6bc2locHHVgMnkMhslocZfGd4bGCBLRTLNypxMaAvGw= Subject key identifier: E3:48:F1:4E:3F:32:5F:F8:85:CD:E0:7B:53:92:84:99:50:79:68:A0 Authority key identifier: 19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 Certificate issuer: /CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft Manifest number: 065D Signing time: Tue 04 Nov 2025 22:42:31 +0000 Manifest this update: Tue 04 Nov 2025 22:42:31 +0000 Manifest next update: Tue 11 Nov 2025 22:42:31 +0000 Files and hashes: 1: GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl (hash: vHst3xVp8cB5yhSszAQpsIMtv12sp5wm+iOrPadur10=) 2: B945FB7A386011F0A5422D16C4F9AE02.roa (hash: SZrDdn156862qKjcsqUSXFw0VIWLJHX0aKveUMI7Crc=) 3: 3D83702E66CB11EFA2A66984C4F9AE02.roa (hash: yvSBH+mrjORJ3IfyqCLbdhmcmwjpugy8guoGWStrajY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919400C, serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Validity Not Before: Nov 4 22:42:31 2025 GMT Not After : Nov 11 22:42:31 2025 GMT Subject: CN=690a8157-8c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:1a:5f:75:c5:04:cb:70:69:6a:da:1f:86: dc:9c:91:7c:19:30:74:14:f6:1f:0a:92:85:a1:ef: e9:95:68:32:45:b4:15:62:b0:39:49:9e:1f:d9:21: b0:df:0c:50:c6:66:7f:8a:42:0f:09:c6:8d:36:54: 7a:d5:43:3a:ec:03:17:07:82:eb:dc:28:bc:1c:c5: 49:3e:13:40:44:9f:af:ae:e3:b9:b4:c4:34:6e:5f: e3:7a:a5:a3:71:0c:45:6e:be:55:db:8b:53:a1:d0: 15:a4:4f:50:c0:5e:40:40:fd:bd:85:4b:90:25:34: b4:dd:fe:cf:60:6a:e3:9c:af:d0:33:b2:cf:fd:37: eb:0f:33:d4:9c:8f:c0:42:33:17:40:54:ab:64:88: d0:a5:3b:77:8e:d7:a8:ec:44:c8:a6:d9:a7:95:ad: 61:dc:7e:4a:8d:d9:1a:17:1b:16:af:1f:0f:a6:fd: e8:c6:16:f9:cb:1f:3a:9c:5a:1c:c9:10:a4:ce:b5: 81:ca:c4:05:39:42:71:7d:69:15:85:ff:53:a0:7c: ef:f6:83:97:a4:e0:f1:05:cd:fd:3d:83:37:58:96: 1c:5b:61:74:96:1f:5b:64:14:f8:f5:55:1d:d5:9a: e7:90:25:ef:c0:ba:15:f1:9a:a8:bf:51:89:3e:90: 4c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:48:F1:4E:3F:32:5F:F8:85:CD:E0:7B:53:92:84:99:50:79:68:A0 X509v3 Authority Key Identifier: keyid:19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:5f:93:7d:84:35:7f:96:68:d6:f9:5e:90:ba:dc:62:10:02: 14:38:8f:78:67:69:d2:34:0c:51:1f:44:f3:45:60:d9:82:e4: 9a:8c:36:fe:7c:3e:55:7b:ab:84:f2:fd:b5:8b:d3:7b:fa:7e: 13:be:f1:fc:09:cf:ed:12:6d:6c:88:fd:e2:eb:ed:0f:fd:a3: b2:db:86:2f:bf:98:57:6c:e4:3a:f8:30:a9:86:c8:08:6b:fd: b9:e1:c0:59:fb:c8:2a:e8:f9:2f:a5:2a:bf:43:35:db:ad:e1: 56:1c:2f:e4:15:1f:58:f0:b3:f7:a7:05:9e:ae:54:c5:ae:cd: 2e:5a:11:b2:90:e6:da:92:fd:c1:ba:c5:f8:26:c7:c2:6d:8c: b3:cd:f8:fe:2b:03:93:de:90:63:5b:19:4f:7e:c3:10:97:3d: 3f:b5:7a:31:07:21:ab:68:ab:bc:1e:99:7c:45:2a:31:b4:45: 59:97:93:ed:4f:cb:25:36:3b:dc:34:e7:4d:fe:d9:d4:0f:d7: 71:38:74:29:52:03:c6:5d:ce:e6:1a:be:a8:0a:64:20:cb:e9: 28:22:c6:d8:ab:e1:df:4f:d1:8e:6a:26:8a:ab:6e:64:95:d0: 29:ff:d8:fd:1a:26:99:d7:a9:01:3f:e3:2c:05:1a:a4:8b:65: a5:b9:5c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwMEMxMTAvBgNVBAUTKDE5NUIyNjdENkQxNTNBRjdEMDJCNkJFQjIyQ0UxNTkz RDkyNUI2MzYwHhcNMjUxMTA0MjI0MjMxWhcNMjUxMTExMjI0MjMxWjAYMRYwFAYD VQQDEw02OTBhODE1Ny04YzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNIaX3XFBMtwaWraH4bcnJF8GTB0FPYfCpKFoe/plWgyRbQVYrA5SZ4f2SGw 3wxQxmZ/ikIPCcaNNlR61UM67AMXB4Lr3Ci8HMVJPhNARJ+vruO5tMQ0bl/jeqWj cQxFbr5V24tTodAVpE9QwF5AQP29hUuQJTS03f7PYGrjnK/QM7LP/TfrDzPUnI/A QjMXQFSrZIjQpTt3jteo7ETIptmnla1h3H5KjdkaFxsWrx8Ppv3oxhb5yx86nFoc yRCkzrWBysQFOUJxfWkVhf9ToHzv9oOXpODxBc39PYM3WJYcW2F0lh9bZBT49VUd 1ZrnkCXvwLoV8Zqov1GJPpBMGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONI8U4/ Ml/4hc3ge1OShJlQeWigMB8GA1UdIwQYMBaAFBlbJn1tFTr30Ctr6yLOFZPZJbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDAwQy9DM0VDRDk2OEE2 NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92ZlFLMnZySXM0Vms5a2x0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dWc21mVzBWT3ZmUUsydnJJczRWazlrbHRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDAwQy9DM0VDRDk2OEE2NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92 ZlFLMnZySXM0Vms5a2x0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzX5N9hDV/lmjW+V6QutxiEAIUOI94Z2nSNAxRH0TzRWDZguSajDb+ fD5Ve6uE8v21i9N7+n4TvvH8Cc/tEm1siP3i6+0P/aOy24Yvv5hXbOQ6+DCphsgI a/254cBZ+8gq6PkvpSq/QzXbreFWHC/kFR9Y8LP3pwWerlTFrs0uWhGykObakv3B usX4JsfCbYyzzfj+KwOT3pBjWxlPfsMQlz0/tXoxByGraKu8Hpl8RSoxtEVZl5Pt T8slNjvcNOdN/tnUD9dxOHQpUgPGXc7mGr6oCmQgy+koIsbYq+HfT9GOaiaKq25k ldAp/9j9GiaZ16kBP+MsBRqki2WluVxX -----END CERTIFICATE-----Generated at Wed Nov 5 10:27:41 2025 by rpki-client