$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: z0d13yQnIQ75FBsXsy1i+jj+WC1PcNiqRwIjTH0o4mo= Subject key identifier: FD:1F:81:F4:CF:AB:6D:E8:48:65:81:5A:A3:88:79:B2:85:8E:A6:42 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 40 Signing time: Fri 17 Oct 2025 11:11:34 +0000 Manifest this update: Fri 17 Oct 2025 11:11:33 +0000 Manifest next update: Fri 24 Oct 2025 11:11:33 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: jKccWseb8A2UZWh0mmdrOvODILwmDGuhaGIEXHvwsyk=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 6vL95HASIeMq5sE95QjJyODMvxYaOtsSaHmjFpdm+bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Oct 17 11:11:33 2025 GMT Not After : Oct 24 11:11:33 2025 GMT Subject: CN=68f22465-bbf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:43:37:99:18:7c:b8:6a:c6:1d:8c:67:e8: 37:bd:91:94:90:3b:12:de:f4:53:94:86:4c:4b:6e: a0:59:d1:86:cd:cd:93:0e:6a:1e:25:19:95:b8:5a: 3b:3b:51:00:af:d4:81:d3:31:0f:34:cb:f0:4c:ca: b4:62:ba:25:c7:18:b9:68:0a:29:2b:79:4f:8b:69: a6:92:b7:40:56:16:92:e1:ee:53:a6:bd:82:95:a8: 3b:c5:0e:9d:87:c1:40:dd:cd:8c:04:a9:28:45:e5: af:d1:80:aa:c2:88:1c:0b:e3:a8:3c:81:fe:59:e8: b3:e6:32:0d:c9:41:ca:f1:85:3f:47:75:95:03:f0: ed:7b:82:88:0a:a7:25:ce:23:25:b9:ab:89:9a:13: 00:28:c3:9f:41:17:3e:5c:66:2e:f6:d8:8e:b1:4a: f1:dc:4a:89:53:bb:ce:a2:ac:b0:9c:e3:96:24:28: 98:22:71:1d:99:00:33:65:96:f6:4d:09:b9:3b:a1: 7c:ac:47:8b:9c:22:bb:e9:f3:c8:5a:0f:8b:fc:02: ee:c8:87:67:81:48:2a:69:d3:52:da:d4:ff:44:04: 6b:8b:d2:b5:7c:57:df:f8:83:94:d2:b5:a4:3c:88: f8:81:c7:2d:0e:cc:23:17:c1:49:21:b4:a2:bf:0a: 3b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1F:81:F4:CF:AB:6D:E8:48:65:81:5A:A3:88:79:B2:85:8E:A6:42 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:21:15:38:1d:a1:ba:95:4d:2f:36:36:e4:2c:ac:bd:89:7f: 5e:0d:ae:6d:ba:fe:6b:fd:f0:3b:a3:82:0d:10:7d:33:f7:30: 9f:a8:f4:2d:65:cc:8e:91:4b:5a:09:5c:d1:63:9f:01:07:6a: b8:a6:8d:16:b9:3a:94:80:e5:8b:71:62:a7:cb:1b:88:3b:86: ad:99:12:91:ce:70:cc:90:04:78:93:79:7a:8c:76:53:79:f7: 08:7c:d5:52:dc:24:9a:93:19:9a:69:4b:3e:fc:30:c7:f6:ed: 45:88:fb:ac:e7:93:bb:3d:6f:da:bc:6a:f0:e0:a0:21:d4:6c: 5f:16:3a:b9:9b:99:d4:4d:24:b9:d5:42:60:24:f9:b1:be:08: e2:60:ae:9b:7a:79:7a:23:49:3f:f1:8b:20:53:74:af:b8:6e: 22:7d:5f:7f:25:63:df:d6:09:e8:48:45:d2:15:1e:8e:43:2a: 56:af:9c:6c:4a:be:75:53:82:8c:75:41:79:07:54:e7:8c:2d: 7e:21:ce:7a:a2:15:ff:d0:90:03:a8:eb:77:e6:f3:35:94:7a: e4:a4:1d:0e:78:f4:aa:55:3a:5a:9c:a6:16:22:02:d2:b8:53: 14:d2:4b:50:2f:41:6c:61:5c:c0:6d:06:64:fe:4c:49:d5:23: e2:6c:74:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNTEwMTcxMTExMzNaFw0yNTEwMjQxMTExMzNaMBgxFjAUBgNV BAMTDTY4ZjIyNDY1LWJiZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq20M3mRh8uGrGHYxn6De9kZSQOxLe9FOUhkxLbqBZ0YbNzZMOah4lGZW4Wjs7 UQCv1IHTMQ80y/BMyrRiuiXHGLloCikreU+LaaaSt0BWFpLh7lOmvYKVqDvFDp2H wUDdzYwEqShF5a/RgKrCiBwL46g8gf5Z6LPmMg3JQcrxhT9HdZUD8O17gogKpyXO IyW5q4maEwAow59BFz5cZi722I6xSvHcSolTu86irLCc45YkKJgicR2ZADNllvZN Cbk7oXysR4ucIrvp88haD4v8Au7Ih2eBSCpp01La1P9EBGuL0rV8V9/4g5TStaQ8 iPiBxy0OzCMXwUkhtKK/CjsbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/R+B9M+r behIZYFao4h5soWOpkIwHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzM2NDBDQjk0NTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdy VXZEckdrdmxsdHhkS1dPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN4hFTgdobqVTS82NuQsrL2Jf14Nrm26/mv98Dujgg0QfTP3MJ+o9C1l zI6RS1oJXNFjnwEHarimjRa5OpSA5YtxYqfLG4g7hq2ZEpHOcMyQBHiTeXqMdlN5 9wh81VLcJJqTGZppSz78MMf27UWI+6znk7s9b9q8avDgoCHUbF8WOrmbmdRNJLnV QmAk+bG+COJgrpt6eXojST/xiyBTdK+4biJ9X38lY9/WCehIRdIVHo5DKlavnGxK vnVTgox1QXkHVOeMLX4hznqiFf/QkAOo63fm8zWUeuSkHQ549KpVOlqcphYiAtK4 UxTSS1AvQWxhXMBtBmT+TEnVI+JsdME= -----END CERTIFICATE-----Generated at Sat Oct 18 23:38:45 2025 by rpki-client