$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft File: GmByWuQEWJbjBAgwAyE-6pUmfs8.mft (raw, json) Hash identifier: Ql+VrbkFLyjvHHKqO6fwxo1xoIzeIS6yWpiWZHMfwxY= Subject key identifier: 9C:F7:57:2D:2D:78:B1:EF:A4:D5:94:2E:14:EB:B2:86:A9:46:78:B2 Authority key identifier: 1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF Certificate issuer: /CN=A91BB35A/serialNumber=1A60725AE4045896E304083003213EEA95267ECF Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft Manifest number: 01A5 Signing time: Wed 05 Nov 2025 03:25:30 +0000 Manifest this update: Wed 05 Nov 2025 03:25:30 +0000 Manifest next update: Wed 12 Nov 2025 03:25:30 +0000 Files and hashes: 1: GmByWuQEWJbjBAgwAyE-6pUmfs8.crl (hash: l3sbxNOPH4x6KN3ocEo1ixdvoxPujIIOrzKT5CryiMc=) 2: 1779BD7C3B2311EE91010B3EC4F9AE02.roa (hash: xUYqVtjGT/IbCxMgEDoRhm8Anp7a4X1koMkSJ4n38OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB35A, serialNumber=1A60725AE4045896E304083003213EEA95267ECF Validity Not Before: Nov 5 03:25:30 2025 GMT Not After : Nov 12 03:25:30 2025 GMT Subject: CN=690ac3aa-07fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:c7:3b:69:a2:b8:1c:28:10:ac:cb:7c:a5: 2a:17:7f:c1:a9:fa:2f:90:07:e8:3e:5c:e7:c0:ce: 5c:ec:fa:3a:04:1a:cf:af:d3:c8:12:72:ab:dc:50: 29:46:91:a0:ff:ad:a4:27:99:cf:5a:1a:61:06:01: 71:67:58:a1:5a:e8:73:24:c0:7b:35:95:af:77:e4: 75:65:57:e3:24:33:86:d4:da:8b:9b:66:74:f0:d2: a4:95:f8:a5:83:29:21:7f:0f:6f:45:f1:86:f0:c5: 9d:2c:af:36:6d:03:3c:0b:ee:c6:dc:09:c1:10:c8: 51:3f:83:c2:1f:69:b9:21:30:3e:45:e3:71:9f:f5: 69:31:ca:72:d6:b7:db:d8:3e:05:0f:89:c7:e1:db: 55:dd:5f:68:62:4f:60:80:4b:bc:13:0a:58:18:c9: 35:fe:ed:3c:4d:f2:33:ef:29:16:61:8f:0d:46:3c: 38:14:14:c4:47:9a:86:12:94:a4:cf:bb:f8:97:16: 52:78:1e:2d:e6:02:c6:27:a4:86:95:fc:07:24:31: 38:54:83:9f:82:d0:98:12:57:a4:9e:c2:a8:bb:cf: 2e:8a:04:bf:34:40:af:7b:28:a5:df:06:05:68:97: 06:c6:9f:3d:ce:e5:2c:9c:4b:0c:fe:b2:fd:28:96: 7b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F7:57:2D:2D:78:B1:EF:A4:D5:94:2E:14:EB:B2:86:A9:46:78:B2 X509v3 Authority Key Identifier: keyid:1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d0:05:ca:f5:34:06:83:ce:45:fc:e8:e2:80:8f:cc:f8:bb: 5d:f2:3f:c9:9b:92:58:4c:16:57:be:aa:02:32:92:80:72:0b: 97:51:6e:8a:43:e3:6b:b6:ba:97:f0:a0:aa:9d:09:db:8b:75: e2:a8:75:aa:32:14:3c:2e:bf:ab:a8:a6:fe:51:a7:73:df:a6: ce:94:cf:a4:40:20:6d:ca:f0:d7:39:fa:47:36:e3:44:b1:76: 19:44:8c:f5:85:35:66:34:05:eb:44:6b:05:1c:db:71:ca:e4: 94:26:49:a4:4f:53:10:61:46:0b:f9:89:18:fb:30:4e:47:6a: 23:91:1d:30:7f:1e:a8:82:26:4a:a1:ec:c6:48:ba:f5:27:56: 8b:9d:b7:25:dd:b4:dc:ff:94:21:db:13:20:45:a2:dc:eb:d3: e3:94:80:57:aa:26:8e:7c:e1:c6:20:1b:df:db:65:23:a4:cb: e9:f3:40:0d:7c:45:84:5b:33:ef:01:13:55:0e:9b:87:0d:af: c6:7f:40:72:d6:94:bd:cd:94:3a:9e:8b:45:e0:1e:45:c6:9f: 3a:7f:ef:a8:a6:d8:e5:d9:3a:34:5c:56:89:7a:82:4f:ff:9b: 78:e1:4e:db:e7:74:e0:99:54:9c:39:e1:54:2c:0a:b9:53:31: 83:13:80:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIzNUExMTAvBgNVBAUTKDFBNjA3MjVBRTQwNDU4OTZFMzA0MDgzMDAzMjEzRUVB OTUyNjdFQ0YwHhcNMjUxMTA1MDMyNTMwWhcNMjUxMTEyMDMyNTMwWjAYMRYwFAYD VQQDEw02OTBhYzNhYS0wN2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmPHO2miuBwoEKzLfKUqF3/BqfovkAfoPlznwM5c7Po6BBrPr9PIEnKr3FAp RpGg/62kJ5nPWhphBgFxZ1ihWuhzJMB7NZWvd+R1ZVfjJDOG1NqLm2Z08NKklfil gykhfw9vRfGG8MWdLK82bQM8C+7G3AnBEMhRP4PCH2m5ITA+ReNxn/VpMcpy1rfb 2D4FD4nH4dtV3V9oYk9ggEu8EwpYGMk1/u08TfIz7ykWYY8NRjw4FBTER5qGEpSk z7v4lxZSeB4t5gLGJ6SGlfwHJDE4VIOfgtCYEleknsKou88uigS/NECveyil3wYF aJcGxp89zuUsnEsM/rL9KJZ7IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz3Vy0t eLHvpNWULhTrsoapRniyMB8GA1UdIwQYMBaAFBpgclrkBFiW4wQIMAMhPuqVJn7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjM1QS8wMDZDRDk0QTNC MjExMUVFODA0QzYzODNDNEY5QUUwMi9HbUJ5V3VRRVdKYmpCQWd3QXlFLTZwVW1m czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtQnlXdVFFV0piakJBZ3dBeUUtNnBVbWZzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjM1QS8wMDZDRDk0QTNCMjExMUVFODA0QzYzODNDNEY5QUUwMi9HbUJ5V3VRRVdK YmpCQWd3QXlFLTZwVW1mczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv0AXK9TQGg85F/OjigI/M+Ltd8j/Jm5JYTBZXvqoCMpKAcguXUW6K Q+NrtrqX8KCqnQnbi3XiqHWqMhQ8Lr+rqKb+Uadz36bOlM+kQCBtyvDXOfpHNuNE sXYZRIz1hTVmNAXrRGsFHNtxyuSUJkmkT1MQYUYL+YkY+zBOR2ojkR0wfx6ogiZK oezGSLr1J1aLnbcl3bTc/5Qh2xMgRaLc69PjlIBXqiaOfOHGIBvf22UjpMvp80AN fEWEWzPvARNVDpuHDa/Gf0By1pS9zZQ6notF4B5Fxp86f++optjl2To0XFaJeoJP /5t44U7b53TgmVScOeFULAq5UzGDE4Cs -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:19 2025 by rpki-client