$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: O2JM/5QuOC+IDCtS172JWq8d7u35OYq3S++d4m9WGq0= Subject key identifier: A0:18:7E:E5:7D:8A:6F:8A:1A:FB:8F:8A:C1:10:51:80:C2:55:84:B5 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 065B Signing time: Sun 02 Nov 2025 22:37:03 +0000 Manifest this update: Sun 02 Nov 2025 22:37:02 +0000 Manifest next update: Sun 09 Nov 2025 22:37:02 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: Tm3D6q6WoEjz9x9rMBpKFcWNVLpIPMb4WKcgrKkSFXs=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Nov 2 22:37:02 2025 GMT Not After : Nov 9 22:37:02 2025 GMT Subject: CN=6907dd0e-8e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dd:e2:2c:82:aa:4e:3b:1b:ac:67:ea:37:6d: 22:ab:f6:59:65:3b:65:2e:33:39:81:84:5d:28:89: 26:b1:da:22:16:37:e5:6a:95:ed:dd:f4:83:ee:b9: 60:5b:65:38:f4:e9:21:a6:74:4b:3c:13:6d:0d:43: 06:bf:56:4f:b6:4b:78:60:d5:ee:4e:d1:0a:be:1b: c8:c9:46:21:79:d7:7a:11:34:b7:b1:71:6a:fd:4b: 2d:ad:48:09:fb:c0:ec:da:36:f0:7b:81:e2:ad:e7: 33:2a:69:ab:9a:fe:e2:d7:0a:cb:3d:f9:91:0e:88: c2:d0:cf:01:8c:28:43:d0:96:7e:ac:45:fb:ef:fa: 3c:b1:10:37:89:92:c8:d5:d2:7a:3b:ee:2d:be:2a: bf:b4:28:d5:40:71:5e:b8:11:ab:d9:8b:8e:25:c3: 0f:2a:60:64:34:a8:ae:6c:d1:a7:09:00:e3:e5:6c: e3:93:6c:ce:90:a7:ee:32:64:63:e2:6e:44:51:e9: 54:7d:01:04:7b:5c:d8:a9:2f:4d:26:7c:38:d2:90: 1d:b5:0b:ec:84:7a:48:79:1b:39:05:26:20:fe:f6: 29:c9:16:2c:07:f7:4e:af:31:76:f4:fd:72:f6:fb: 5a:4f:ff:4b:93:f8:e9:e4:83:3e:7e:ed:94:fb:6a: 82:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:18:7E:E5:7D:8A:6F:8A:1A:FB:8F:8A:C1:10:51:80:C2:55:84:B5 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a7:35:49:cb:ab:b5:08:50:08:c2:3d:69:11:84:1f:d4:3d: 74:66:58:6f:52:c0:03:32:fa:d3:8a:ae:06:83:04:22:50:5f: 6a:cc:d1:88:a2:d0:0d:46:e5:14:35:b5:7c:69:27:6f:69:ef: 5a:e8:97:b4:58:14:32:f1:38:d0:4b:0c:84:0e:d1:e7:2a:07: 42:05:68:09:ab:88:55:68:fc:0e:20:bc:65:80:1a:0a:9d:60: 2a:a6:a8:1f:46:e1:84:06:a2:37:a7:c1:1d:c3:17:1e:9c:8f: 63:cf:7d:3d:13:04:38:00:35:ba:1e:be:fc:25:d4:f6:e6:23: 09:9a:bd:96:13:7b:88:9c:65:2a:b0:a6:89:d4:c3:e5:45:2e: dc:35:c7:f4:3e:9e:22:3f:68:95:51:12:48:89:29:ed:15:c2: 26:8c:3a:72:e2:b0:69:62:5a:72:b5:63:aa:2b:2d:68:95:0e: 5f:c9:09:78:62:07:a2:0f:f9:58:63:2b:5d:f9:98:33:fc:6e: 53:a0:bc:93:56:6b:85:ae:af:61:41:28:20:b4:ab:c9:7e:73: 05:a8:a6:3d:42:e6:13:8c:67:1d:a4:db:06:53:be:09:e4:b5: 47:6b:21:5e:2a:e4:8f:e6:11:c9:a8:b0:34:97:dd:b2:e3:3c: 48:22:a5:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUxMTAyMjIzNzAyWhcNMjUxMTA5MjIzNzAyWjAYMRYwFAYD VQQDEw02OTA3ZGQwZS04ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA393iLIKqTjsbrGfqN20iq/ZZZTtlLjM5gYRdKIkmsdoiFjflapXt3fSD7rlg W2U49OkhpnRLPBNtDUMGv1ZPtkt4YNXuTtEKvhvIyUYhedd6ETS3sXFq/UstrUgJ +8Ds2jbwe4HireczKmmrmv7i1wrLPfmRDojC0M8BjChD0JZ+rEX77/o8sRA3iZLI 1dJ6O+4tviq/tCjVQHFeuBGr2YuOJcMPKmBkNKiubNGnCQDj5Wzjk2zOkKfuMmRj 4m5EUelUfQEEe1zYqS9NJnw40pAdtQvshHpIeRs5BSYg/vYpyRYsB/dOrzF29P1y 9vtaT/9Lk/jp5IM+fu2U+2qCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAYfuV9 im+KGvuPisEQUYDCVYS1MB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABpzVJy6u1CFAIwj1pEYQf1D10ZlhvUsADMvrTiq4GgwQiUF9qzNGI otANRuUUNbV8aSdvae9a6Je0WBQy8TjQSwyEDtHnKgdCBWgJq4hVaPwOILxlgBoK nWAqpqgfRuGEBqI3p8EdwxcenI9jz309EwQ4ADW6Hr78JdT25iMJmr2WE3uInGUq sKaJ1MPlRS7cNcf0Pp4iP2iVURJIiSntFcImjDpy4rBpYlpytWOqKy1olQ5fyQl4 YgeiD/lYYytd+Zgz/G5ToLyTVmuFrq9hQSggtKvJfnMFqKY9QuYTjGcdpNsGU74J 5LVHayFeKuSP5hHJqLA0l92y4zxIIqVk -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:32 2025 by rpki-client