$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: zRA5rmHbjkKkvas8Q/HK1LHjU/fdg7u0lnXDybeAWAY= Subject key identifier: 46:24:FC:CC:99:C7:D6:CE:33:E6:DA:D2:6E:F0:F4:AA:1A:90:02:3E Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 051F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 051A Signing time: Mon 27 Oct 2025 00:33:57 +0000 Manifest this update: Mon 27 Oct 2025 00:33:56 +0000 Manifest next update: Mon 03 Nov 2025 00:33:56 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: IuOrs3NTqG8ruoPYEOTt7ZxtKDUKj2x/ehNBgEZZLaI=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1311 (0x51f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Oct 27 00:33:56 2025 GMT Not After : Nov 3 00:33:56 2025 GMT Subject: CN=68febdf4-1cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d3:4b:9a:7c:34:a9:bc:05:42:0f:7d:42:77: cb:20:85:3d:0e:e9:20:ca:32:34:68:00:65:8e:fd: 7a:7f:99:ed:13:d5:cd:91:87:18:27:7a:82:7d:8d: 52:dd:90:5d:8c:05:01:0b:04:8a:1a:30:7e:a8:99: c0:94:87:0c:f7:4e:32:04:3b:10:cb:80:b8:a7:f7: 67:de:1e:76:e9:e9:8d:69:63:8e:6e:d1:57:b7:1e: 1d:38:29:8f:18:bf:31:f7:9f:65:6a:51:e7:91:66: 32:91:1a:b9:58:93:b6:37:57:76:9f:f4:c2:1c:19: af:80:0e:a2:99:d4:2c:ea:00:cc:d6:84:f1:ca:6f: 49:f8:dc:3a:49:bb:9b:2d:52:50:2e:51:9f:db:40: 97:ef:db:37:7c:3a:98:1d:4e:85:d9:5f:80:89:a0: d7:2d:a4:90:fe:38:e3:3b:b4:5c:89:1b:ba:cf:b3: 4f:54:ad:94:f9:94:03:34:f4:cd:db:b0:94:be:46: 3d:52:f8:fb:c8:1d:28:8b:ce:e6:4c:66:81:0e:b3: 5c:b1:e9:f6:45:cb:43:0d:2d:ff:a0:34:d8:06:c7: 78:fc:86:ff:86:93:21:1a:59:2b:46:a0:81:e9:bf: 1f:2c:e3:98:f8:41:8e:34:51:91:08:f4:3d:79:50: 09:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:24:FC:CC:99:C7:D6:CE:33:E6:DA:D2:6E:F0:F4:AA:1A:90:02:3E X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:00:05:f3:7e:df:fd:63:f7:d7:3c:c7:1b:16:bb:47:a6:2a: 22:d3:86:df:a7:37:cf:fb:26:1a:fd:2c:f8:0e:6c:0b:67:2b: e9:34:fd:99:46:bd:a9:f7:55:98:c3:17:04:57:3c:8d:2e:62: 5f:72:f6:92:c1:22:4c:9d:6d:17:78:41:5e:f1:a5:af:9b:db: f8:8e:e6:38:9b:83:5d:cf:9f:ab:77:01:95:5c:44:c4:63:68: e1:eb:2d:e9:0b:74:57:d4:72:45:e0:ef:ba:dd:78:3c:d7:5d: 6e:cd:19:88:37:d6:34:4e:f3:39:27:bc:23:e4:49:18:2b:11: e9:dc:cb:65:28:63:fe:55:d5:a8:88:f0:9c:40:fe:8c:08:e7: 92:a6:d9:70:43:d2:b3:28:80:d8:2a:46:bb:f3:02:ba:a5:d9: 3d:a6:5d:4e:d5:8c:47:c4:f9:8b:ed:3f:14:ab:10:bf:06:19: f5:bc:28:a5:3a:e7:77:e5:63:cd:31:58:67:2f:9b:fb:8f:d3: 46:41:d0:84:6a:b3:d0:c7:aa:ea:88:3c:c9:37:36:29:3c:96: ce:07:ad:37:5b:de:b3:cc:2b:22:ee:95:54:40:5f:bd:00:34: be:f3:36:e8:de:4d:07:55:c4:a5:d9:8e:c1:d9:ea:b0:4f:3e: 8d:58:5b:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUxMDI3MDAzMzU2WhcNMjUxMTAzMDAzMzU2WjAYMRYwFAYD VQQDEw02OGZlYmRmNC0xY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tNLmnw0qbwFQg99QnfLIIU9DukgyjI0aABljv16f5ntE9XNkYcYJ3qCfY1S 3ZBdjAUBCwSKGjB+qJnAlIcM904yBDsQy4C4p/dn3h526emNaWOObtFXtx4dOCmP GL8x959lalHnkWYykRq5WJO2N1d2n/TCHBmvgA6imdQs6gDM1oTxym9J+Nw6Sbub LVJQLlGf20CX79s3fDqYHU6F2V+AiaDXLaSQ/jjjO7RciRu6z7NPVK2U+ZQDNPTN 27CUvkY9Uvj7yB0oi87mTGaBDrNcsen2RctDDS3/oDTYBsd4/Ib/hpMhGlkrRqCB 6b8fLOOY+EGONFGRCPQ9eVAJIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYk/MyZ x9bOM+ba0m7w9KoakAI+MB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhAAXzft/9Y/fXPMcbFrtHpioi04bfpzfP+yYa/Sz4DmwLZyvpNP2Z Rr2p91WYwxcEVzyNLmJfcvaSwSJMnW0XeEFe8aWvm9v4juY4m4Ndz5+rdwGVXETE Y2jh6y3pC3RX1HJF4O+63Xg8111uzRmIN9Y0TvM5J7wj5EkYKxHp3MtlKGP+VdWo iPCcQP6MCOeSptlwQ9KzKIDYKka78wK6pdk9pl1O1YxHxPmL7T8UqxC/Bhn1vCil Oud35WPNMVhnL5v7j9NGQdCEarPQx6rqiDzJNzYpPJbOB603W96zzCsi7pVUQF+9 ADS+8zbo3k0HVcSl2Y7B2eqwTz6NWFtO -----END CERTIFICATE-----Generated at Tue Oct 28 12:41:11 2025 by rpki-client