$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: O2oFnpsiwLjFleQw/0uRvdlNYBBPZEXSFBTxBEUq8i4= Subject key identifier: 83:BE:4B:37:71:21:AF:2A:4C:A8:5D:0B:F0:59:D1:02:7E:26:51:9B Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 030F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 0306 Signing time: Mon 03 Nov 2025 01:09:19 +0000 Manifest this update: Mon 03 Nov 2025 01:09:19 +0000 Manifest next update: Mon 10 Nov 2025 01:09:19 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: NzcQK4evkBApqwAZNhYmS8QnvNrXwjzHuhsx3/PME4o=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 783 (0x30f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Nov 3 01:09:19 2025 GMT Not After : Nov 10 01:09:19 2025 GMT Subject: CN=690800bf-122b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:70:34:42:7f:16:9d:4f:d0:07:d2:64:79:d4: 80:04:9e:04:3c:8f:22:bc:2c:2b:8d:fb:75:2c:29: 2d:7e:ee:89:c8:d8:f5:46:79:f6:b1:a6:07:db:66: e0:a8:b3:b3:e1:b2:e6:14:64:c4:b1:94:f4:56:32: f1:c2:ce:6d:52:4f:72:9c:45:1a:11:18:a1:62:7c: 74:73:06:cf:86:4a:c7:6f:a3:b5:87:47:d9:ae:ad: 26:16:5c:db:fc:b6:7a:81:ef:9c:68:b5:cb:c4:b1: 07:08:85:a5:c4:24:aa:00:ad:ff:96:e5:e6:74:9b: 70:b8:7a:24:5f:75:a9:3a:86:e0:b4:db:9d:2d:0c: c8:0d:ff:8e:39:5f:48:29:f9:c8:3d:c8:6f:a6:d8: 6d:c8:16:39:e9:71:7d:66:73:e7:a8:fb:41:7f:5a: ab:d0:76:1d:07:07:52:ad:6c:e8:c9:36:71:33:49: b7:e7:0b:2a:02:70:c4:84:2b:06:a9:48:3e:8e:f7: 89:d2:7b:d8:79:e9:21:d2:db:da:9d:0f:15:db:53: a8:b7:5e:a3:c3:03:1a:fa:76:d9:78:f2:d6:74:3e: 9d:47:70:5f:99:e7:e0:29:00:53:b8:92:21:d2:1f: 42:49:c4:15:b7:79:dd:e4:13:e9:55:7f:19:52:46: 8f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BE:4B:37:71:21:AF:2A:4C:A8:5D:0B:F0:59:D1:02:7E:26:51:9B X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:a3:34:d4:ec:d0:21:40:34:49:13:10:a7:10:79:46:a3:f9: 66:82:43:12:ca:68:c6:80:48:15:d7:4f:94:78:1c:9f:4d:cd: fb:17:f4:3a:93:3e:4d:24:f9:1e:ff:8d:f2:89:ef:8d:eb:57: 61:13:16:14:a9:a7:0e:52:c8:64:2d:99:1a:d0:bf:99:21:a7: 04:05:f3:de:0a:3e:ee:69:02:f1:d6:66:0e:84:88:3c:f4:b5: 64:f0:86:95:a6:09:c5:03:eb:ab:03:25:ec:ba:d0:3a:03:62: d4:9d:e8:b0:6d:ba:af:c6:66:16:57:ab:95:77:d2:86:c8:ba: e1:c6:ea:46:1f:13:9e:1d:32:f2:08:e3:cc:47:65:e1:f8:1c: 0f:93:8e:00:f0:65:78:32:9a:2e:4c:a8:47:64:a6:d0:6d:72: 4d:de:96:fe:bb:0a:48:79:d6:31:f0:27:ef:4f:a3:32:50:0e: a4:2e:cc:f7:21:be:52:48:cf:53:63:7c:88:52:7f:63:c1:6d: 9e:96:be:ba:ba:a4:3e:cf:a6:d3:12:99:05:9e:d2:37:0c:44: 47:f1:a1:da:ee:46:a1:e4:db:2a:b1:d9:ef:21:56:5f:00:b0: 5c:2a:9c:fe:1d:89:da:b6:6b:52:bf:56:89:b4:ee:f8:0c:c9: 65:cd:06:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUxMTAzMDEwOTE5WhcNMjUxMTEwMDEwOTE5WjAYMRYwFAYD VQQDEw02OTA4MDBiZi0xMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nA0Qn8WnU/QB9JkedSABJ4EPI8ivCwrjft1LCktfu6JyNj1Rnn2saYH22bg qLOz4bLmFGTEsZT0VjLxws5tUk9ynEUaERihYnx0cwbPhkrHb6O1h0fZrq0mFlzb /LZ6ge+caLXLxLEHCIWlxCSqAK3/luXmdJtwuHokX3WpOobgtNudLQzIDf+OOV9I KfnIPchvpthtyBY56XF9ZnPnqPtBf1qr0HYdBwdSrWzoyTZxM0m35wsqAnDEhCsG qUg+jveJ0nvYeekh0tvanQ8V21Oot16jwwMa+nbZePLWdD6dR3BfmefgKQBTuJIh 0h9CScQVt3nd5BPpVX8ZUkaPsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIO+Szdx Ia8qTKhdC/BZ0QJ+JlGbMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIozTU7NAhQDRJExCnEHlGo/lmgkMSymjGgEgV10+UeByfTc37F/Q6 kz5NJPke/43yie+N61dhExYUqacOUshkLZka0L+ZIacEBfPeCj7uaQLx1mYOhIg8 9LVk8IaVpgnFA+urAyXsutA6A2LUneiwbbqvxmYWV6uVd9KGyLrhxupGHxOeHTLy COPMR2Xh+BwPk44A8GV4MpouTKhHZKbQbXJN3pb+uwpIedYx8CfvT6MyUA6kLsz3 Ib5SSM9TY3yIUn9jwW2elr66uqQ+z6bTEpkFntI3DERH8aHa7kah5NsqsdnvIVZf ALBcKpz+HYnatmtSv1aJtO74DMllzQYl -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:16 2025 by rpki-client