$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: zm8S45OgW0e8Q8DNbFeeqohVcrQpZsYhY6XdDwtc3rk= Subject key identifier: 1E:E9:6D:E9:B8:18:D9:DA:6E:3B:32:9A:CE:F8:00:01:98:E8:72:41 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 0824 Signing time: Mon 20 Oct 2025 21:14:12 +0000 Manifest this update: Mon 20 Oct 2025 21:14:11 +0000 Manifest next update: Mon 27 Oct 2025 21:14:11 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: KuwPZhJqcvvJk8Yl+VbQPK2A/VlzOxc88cDYAnSe8cQ=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: jfAjvDFneg9TxfVOqlYPDujvfvVSOSgnFYEvXUOG5OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Oct 20 21:14:11 2025 GMT Not After : Oct 27 21:14:11 2025 GMT Subject: CN=68f6a623-c9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:10:c1:fc:c9:c6:ff:5d:b5:03:ac:af:c0: ea:4c:6e:74:25:68:be:b0:9c:35:a9:03:bc:c0:00: e7:67:85:4e:9e:d3:03:c1:ad:5d:5a:d6:56:64:c0: 58:04:e1:62:a8:e4:a3:f8:27:f7:10:0d:3f:46:d2: a4:be:fa:ab:c1:05:3f:4c:c2:cf:c5:21:f5:03:37: 2a:58:ee:f7:59:90:a6:f9:99:e9:43:2a:bf:21:49: 95:f2:14:82:fc:e5:4f:c3:b9:d3:2d:b4:91:4d:e1: 3b:a0:19:21:b8:97:31:69:e8:21:d3:94:81:f3:52: 97:88:cc:e5:e9:4e:1b:51:05:9b:58:c6:22:cc:f7: 5b:e0:ab:13:65:88:b8:2b:f2:11:55:1a:00:01:17: d6:36:86:e5:64:31:02:0f:30:3b:35:cb:6b:58:41: 40:b6:f5:86:f1:93:9c:aa:08:97:20:00:a2:aa:fd: 8d:da:e2:ae:c8:33:35:fc:96:3c:f4:12:40:c0:9a: 58:e2:65:6e:30:1d:5a:90:04:b4:4d:8b:1a:a5:0c: fa:dc:6c:56:2b:12:b4:7d:53:cd:91:59:8e:b6:4a: 60:dd:1e:95:4f:d1:af:45:7e:08:2b:05:eb:fd:59: 41:63:3f:fb:11:c9:1f:1a:6a:a3:52:37:b3:e3:99: a0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E9:6D:E9:B8:18:D9:DA:6E:3B:32:9A:CE:F8:00:01:98:E8:72:41 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:01:01:2a:8a:68:31:9d:44:d3:2b:c6:21:b5:02:06:54:f3: d8:09:19:07:c8:f0:5e:82:26:76:35:03:1f:fa:8e:ae:63:12: 03:7c:80:0c:df:0f:d1:e2:4d:1d:fd:0b:90:dd:5d:94:e1:7e: 34:d5:ad:87:9e:66:2e:f7:3f:fe:36:04:c9:81:8d:0f:d0:1a: 90:32:c3:1d:d7:9a:0e:e5:bb:c3:74:25:8e:9f:5e:93:46:9d: e5:fc:a1:1a:ad:ad:51:84:4a:5a:80:6f:69:00:69:5c:72:44: 06:31:9d:c6:fb:df:c9:87:13:20:4f:0b:0d:54:13:93:12:bc: 9d:ef:0f:ee:ea:1c:14:ca:94:cb:47:d5:f3:20:4c:10:14:d6: bf:3d:8f:33:3c:84:3c:ea:fc:d4:7b:33:ea:8f:01:ec:78:9a: 3e:c5:81:cc:88:d6:2e:53:ba:75:5c:fc:6d:18:fe:ae:c6:8f: d4:9d:78:cf:61:40:38:c3:6b:1f:a7:90:1e:a5:4f:bc:f2:04: 7b:e2:32:20:08:df:df:fc:30:6d:1b:dc:cd:60:18:cd:ab:f4: 4d:10:ec:ac:ce:13:02:d8:9d:86:69:77:8d:39:16:16:4b:85: 3c:33:d0:89:b8:f1:85:c2:cd:6b:0f:e0:74:ce:49:b1:8b:cc: f0:cb:0e:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjUxMDIwMjExNDExWhcNMjUxMDI3MjExNDExWjAYMRYwFAYD VQQDEw02OGY2YTYyMy1jOWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqsQwfzJxv9dtQOsr8DqTG50JWi+sJw1qQO8wADnZ4VOntMDwa1dWtZWZMBY BOFiqOSj+Cf3EA0/RtKkvvqrwQU/TMLPxSH1AzcqWO73WZCm+ZnpQyq/IUmV8hSC /OVPw7nTLbSRTeE7oBkhuJcxaegh05SB81KXiMzl6U4bUQWbWMYizPdb4KsTZYi4 K/IRVRoAARfWNoblZDECDzA7NctrWEFAtvWG8ZOcqgiXIACiqv2N2uKuyDM1/JY8 9BJAwJpY4mVuMB1akAS0TYsapQz63GxWKxK0fVPNkVmOtkpg3R6VT9GvRX4IKwXr /VlBYz/7EckfGmqjUjez45mgXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7pbem4 GNnabjsyms74AAGY6HJBMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7AQEqimgxnUTTK8YhtQIGVPPYCRkHyPBegiZ2NQMf+o6uYxIDfIAM 3w/R4k0d/QuQ3V2U4X401a2HnmYu9z/+NgTJgY0P0BqQMsMd15oO5bvDdCWOn16T Rp3l/KEara1RhEpagG9pAGlcckQGMZ3G+9/JhxMgTwsNVBOTEryd7w/u6hwUypTL R9XzIEwQFNa/PY8zPIQ86vzUezPqjwHseJo+xYHMiNYuU7p1XPxtGP6uxo/UnXjP YUA4w2sfp5AepU+88gR74jIgCN/f/DBtG9zNYBjNq/RNEOyszhMC2J2GaXeNORYW S4U8M9CJuPGFws1rD+B0zkmxi8zwyw6u -----END CERTIFICATE-----Generated at Wed Oct 22 02:50:35 2025 by rpki-client