$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft File: GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft (raw, json) Hash identifier: AGpN9nANlnHJsFfWRNQz43rqguTF2ScPFxpCcEYALG4= Subject key identifier: C4:DA:A6:AD:59:73:B8:8C:9D:3B:A4:2F:43:9A:6C:A0:B1:01:5B:48 Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft Manifest number: 02BD Signing time: Mon 03 Nov 2025 01:24:21 +0000 Manifest this update: Mon 03 Nov 2025 01:24:21 +0000 Manifest next update: Mon 10 Nov 2025 01:24:21 +0000 Files and hashes: 1: GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl (hash: BdZVvrXKXCVzdOjfcZBqD2HtXz/9oYeHDzglR4hjXVw=) 2: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (hash: e8WAY0Y3CoS5+B8mQdHDLApUCt8COdKCwX61EjEYzJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C, serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: Nov 3 01:24:21 2025 GMT Not After : Nov 10 01:24:21 2025 GMT Subject: CN=69080445-3e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4a:fa:7b:d7:fd:49:42:db:06:28:90:11:64: 0e:6b:50:d1:f7:da:d5:c6:62:e3:87:87:40:c2:9c: d9:b4:86:6d:87:55:eb:80:ff:9d:ef:a4:36:8a:d8: 4f:88:78:24:db:c9:b3:b9:92:ad:93:4e:1d:49:2d: 7c:e0:5c:99:91:1c:24:93:5b:41:f7:f1:4e:c2:e9: db:62:cf:bc:c4:64:b4:2b:46:e4:5d:1b:e7:e6:80: 93:a8:2b:00:2a:05:af:9f:c7:ff:85:36:af:fa:ca: b5:5f:f3:f8:45:90:a5:1a:50:a9:ee:b9:4b:3f:fd: 2d:04:e5:77:ae:86:d6:ed:0a:fe:46:ab:9b:99:f6: 0b:98:01:b3:c5:08:01:4a:5f:27:ea:40:69:4e:e9: c4:3a:7f:06:12:6a:ff:dd:69:ca:08:c0:37:58:16: c4:b3:d8:81:17:59:c5:59:d3:8c:50:92:5c:d4:da: f7:b7:b4:15:ae:6b:66:ba:48:16:e5:62:50:b2:8d: 37:1f:09:3b:54:c8:7c:c2:1d:ae:36:ae:79:33:a7: 82:23:5f:f5:9c:77:2b:e7:78:6b:43:f4:63:c9:62: 67:15:1c:ad:15:bc:1c:cc:6e:30:cc:e3:19:22:66: 5c:97:16:c1:d9:89:bd:ec:48:d2:5b:e3:0c:75:5b: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DA:A6:AD:59:73:B8:8C:9D:3B:A4:2F:43:9A:6C:A0:B1:01:5B:48 X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ad:30:ea:2c:46:2e:ec:1c:d7:7c:3a:06:2e:c7:58:d8:39: d0:0d:b9:8f:a9:06:3c:55:fa:22:51:c9:c3:df:4d:1b:ca:53: d7:c0:b7:21:8c:44:1f:1c:13:1f:d9:10:6f:c8:6a:45:23:69: f9:53:74:49:97:e2:cc:54:e3:50:97:cd:3d:af:26:cd:0f:fa: 6b:71:97:53:e9:14:5d:3d:3d:95:76:a5:ef:03:c8:75:02:5f: 1e:d8:2a:52:64:81:86:cd:01:c2:64:78:b6:d0:aa:fe:69:a5: 20:89:de:93:1c:4e:09:a1:ee:b0:d5:3a:88:dc:85:0b:bf:74: af:f9:7f:42:84:10:c6:3b:3a:b5:c1:c2:ce:97:6c:7d:bd:cf: 60:bc:04:10:15:54:aa:45:b3:88:42:9a:6a:2c:2a:04:e1:cd: 16:f6:7e:94:3f:dc:bd:67:cc:69:b5:b8:e6:ec:88:25:bf:49: 2d:7f:bd:4b:22:1e:49:42:c8:55:ea:63:17:e5:e6:d1:61:11: ea:bf:a5:d7:8f:0c:b6:2c:26:c5:b6:ff:6d:0b:27:b5:4b:fb: 36:ea:89:20:f9:c9:49:99:c5:e0:1e:a2:1d:ab:82:72:ba:0a: a7:f5:df:f3:ee:4c:1f:dc:8a:93:cd:66:95:f1:a9:fb:4d:69: 5f:17:31:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjUxMTAzMDEyNDIxWhcNMjUxMTEwMDEyNDIxWjAYMRYwFAYD VQQDEw02OTA4MDQ0NS0zZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Er6e9f9SULbBiiQEWQOa1DR99rVxmLjh4dAwpzZtIZth1XrgP+d76Q2ithP iHgk28mzuZKtk04dSS184FyZkRwkk1tB9/FOwunbYs+8xGS0K0bkXRvn5oCTqCsA KgWvn8f/hTav+sq1X/P4RZClGlCp7rlLP/0tBOV3robW7Qr+RqubmfYLmAGzxQgB Sl8n6kBpTunEOn8GEmr/3WnKCMA3WBbEs9iBF1nFWdOMUJJc1Nr3t7QVrmtmukgW 5WJQso03Hwk7VMh8wh2uNq55M6eCI1/1nHcr53hrQ/RjyWJnFRytFbwczG4wzOMZ ImZclxbB2Ym97EjSW+MMdVv85QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTapq1Z c7iMnTukL0OabKCxAVtIMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTY5Qy85RUIwNzk5ODEyN0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9L T20xSXp3UWp4YlJpTUFXZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkrTDqLEYu7BzXfDoGLsdY2DnQDbmPqQY8VfoiUcnD300bylPXwLch jEQfHBMf2RBvyGpFI2n5U3RJl+LMVONQl809rybND/prcZdT6RRdPT2VdqXvA8h1 Al8e2CpSZIGGzQHCZHi20Kr+aaUgid6THE4Joe6w1TqI3IULv3Sv+X9ChBDGOzq1 wcLOl2x9vc9gvAQQFVSqRbOIQppqLCoE4c0W9n6UP9y9Z8xptbjm7Iglv0ktf71L Ih5JQshV6mMX5ebRYRHqv6XXjwy2LCbFtv9tCye1S/s26okg+clJmcXgHqIdq4Jy ugqn9d/z7kwf3IqTzWaV8an7TWlfFzGS -----END CERTIFICATE-----Generated at Tue Nov 4 01:08:20 2025 by rpki-client