$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: FRxol7xOIXLyJfe9uZGwt9jbuoghF0UKqK8XmBUCwxU= Subject key identifier: F5:42:A6:A9:96:3D:C0:B3:7A:DD:CB:77:32:C1:D7:0C:17:F5:5D:41 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 04BF Signing time: Mon 03 Nov 2025 00:17:52 +0000 Manifest this update: Mon 03 Nov 2025 00:17:52 +0000 Manifest next update: Mon 10 Nov 2025 00:17:52 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: HeLMpoxqvlKuFP4WYEAN7IWFcas16NTK+87Tqib/TQk=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: O1MkwGdKDfVHdsOhHQrlU/aFTqc21EnEwMBW12Asebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Nov 3 00:17:52 2025 GMT Not After : Nov 10 00:17:52 2025 GMT Subject: CN=6907f4b0-163b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:5c:47:79:70:96:e4:1e:91:f8:a5:ca:be: a9:fa:d8:7e:11:c1:22:8a:ea:ba:8a:9f:98:a4:9d: af:c0:64:2c:6e:28:65:d6:b1:65:4a:f6:bc:7c:90: 9e:e1:f2:12:94:0c:92:c6:d8:de:fb:48:d4:a8:81: 1b:f8:78:3a:ee:23:3e:0e:20:8e:dd:a5:4b:fe:ad: 65:18:b8:7d:bc:a8:e6:e8:21:a8:7c:58:6e:5d:d6: 50:28:17:d6:50:1f:6f:30:2f:29:92:db:3f:86:61: 28:cc:c6:e9:66:32:4b:1d:2b:a7:69:c4:ff:7e:66: 03:6f:33:8d:21:11:f4:f8:9a:24:85:99:d6:b3:3e: b4:0c:17:b7:9a:f9:45:5e:81:31:b7:e0:a9:8a:03: 5b:ba:fd:09:e2:06:d7:f6:e2:69:bf:f1:9b:cd:b8: 17:d4:43:59:c0:45:f7:65:3b:d7:ac:c9:6a:73:cc: c6:7c:3a:0e:14:2c:fb:e2:54:b7:9d:a2:5e:9a:f7: 69:36:73:4c:01:76:06:a0:76:46:4e:3a:c0:48:18: 33:50:b6:00:b8:df:46:8d:14:e5:1e:88:4e:56:df: 63:60:ff:f0:14:10:57:c8:f1:c8:31:d3:c7:96:02: b8:dc:a7:92:31:de:11:94:a6:96:6c:dc:24:1f:d0: 51:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:42:A6:A9:96:3D:C0:B3:7A:DD:CB:77:32:C1:D7:0C:17:F5:5D:41 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a9:a5:d0:05:a8:91:1a:a3:de:50:a9:8c:e3:94:5d:41:42: 56:81:26:86:9c:99:5d:b7:dd:42:b8:cb:8d:d5:ca:02:5e:9b: 69:b5:e0:f8:43:3b:ba:42:0b:7d:eb:40:24:47:b6:a0:67:0f: d9:0c:c0:9b:23:02:62:85:b9:67:a4:a8:77:92:ff:ef:cd:87: be:88:cb:ad:5e:0f:d8:46:a0:57:78:9c:ed:90:19:00:86:22: 77:04:e6:fd:2b:9a:88:ed:74:33:f8:af:e9:c2:58:ca:b4:c6: 05:28:5b:74:23:d0:00:e9:31:da:3a:72:46:91:a0:ea:92:f1: 01:f5:59:28:08:61:17:80:55:13:a8:1c:d6:e4:c5:f2:2d:17: a6:59:e9:90:83:43:f7:d8:3d:9b:c7:56:9b:df:c4:a2:53:ab: c4:e9:d0:46:d6:53:03:64:d3:66:c8:87:98:ec:85:78:14:73: b3:f0:cd:9c:1a:32:26:1a:1a:54:89:08:7e:4a:2f:fd:e3:b7: 64:df:06:3b:83:01:51:39:a2:e7:f0:ec:57:ac:2a:ad:e2:ff: 4a:42:ce:f8:a6:c3:42:da:3f:85:3c:10:8e:30:22:0f:06:34: 9b:1c:a3:b3:6d:56:71:ec:c0:e0:f7:32:94:d5:c8:ef:0a:8c: a8:8d:2c:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKDgyRDgxODg2MURENEE3MEY3NzA4RDIwNUU0Qjg5RTg1 MTRDQTFGNkMwHhcNMjUxMTAzMDAxNzUyWhcNMjUxMTEwMDAxNzUyWjAYMRYwFAYD VQQDEw02OTA3ZjRiMC0xNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQBcR3lwluQekfilyr6p+th+EcEiiuq6ip+YpJ2vwGQsbihl1rFlSva8fJCe 4fISlAySxtje+0jUqIEb+Hg67iM+DiCO3aVL/q1lGLh9vKjm6CGofFhuXdZQKBfW UB9vMC8pkts/hmEozMbpZjJLHSunacT/fmYDbzONIRH0+JokhZnWsz60DBe3mvlF XoExt+CpigNbuv0J4gbX9uJpv/GbzbgX1ENZwEX3ZTvXrMlqc8zGfDoOFCz74lS3 naJemvdpNnNMAXYGoHZGTjrASBgzULYAuN9GjRTlHohOVt9jYP/wFBBXyPHIMdPH lgK43KeSMd4RlKaWbNwkH9BRtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVCpqmW PcCzet3LdzLB1wwX9V1BMB8GA1UdIwQYMBaAFILYGIYd1KcPdwjSBeS4noUUyh9s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3OTNDTklGNUxpZWhSVEtI MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3 OTNDTklGNUxpZWhSVEtIMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7qaXQBaiRGqPeUKmM45RdQUJWgSaGnJldt91CuMuN1coCXptpteD4 Qzu6Qgt960AkR7agZw/ZDMCbIwJihblnpKh3kv/vzYe+iMutXg/YRqBXeJztkBkA hiJ3BOb9K5qI7XQz+K/pwljKtMYFKFt0I9AA6THaOnJGkaDqkvEB9VkoCGEXgFUT qBzW5MXyLRemWemQg0P32D2bx1ab38SiU6vE6dBG1lMDZNNmyIeY7IV4FHOz8M2c GjImGhpUiQh+Si/947dk3wY7gwFROaLn8OxXrCqt4v9KQs74psNC2j+FPBCOMCIP BjSbHKOzbVZx7MDg9zKU1cjvCoyojSy0 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:17 2025 by rpki-client