$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: ZRJp4Ykfqv/k0I9L719SFR0ADdukznIzHcB4cZ+okRE= Subject key identifier: FB:E7:19:65:83:62:16:28:DE:3E:97:97:E7:DB:E2:75:92:FB:4F:6F Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 0347 Signing time: Mon 03 Nov 2025 00:58:45 +0000 Manifest this update: Mon 03 Nov 2025 00:58:45 +0000 Manifest next update: Mon 10 Nov 2025 00:58:45 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: /WsYJKdrz/QsGgK2SlFbwkf2hzQTuXNNQ5I40ppkPeU=) 2: 4E8DA224547711EF9EDD014DC4F9AE02.roa (hash: 4Q9eSoyybwKkbe+OvPprVAkVlq22srO6Z2iGnnSJ3hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: Nov 3 00:58:45 2025 GMT Not After : Nov 10 00:58:45 2025 GMT Subject: CN=6907fe45-b1e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:4e:d4:8d:b9:39:52:e9:29:f4:04:88:15: dd:43:f6:5e:cc:f8:62:99:46:90:43:fd:ca:c3:f3: fb:71:88:5b:56:3c:e2:e6:37:c0:7e:ff:5c:da:ce: 43:87:90:63:8e:61:c2:d3:08:39:63:b5:83:6a:c3: 74:59:c3:fd:8b:b4:99:9c:0d:9f:06:83:2b:1f:83: 0c:35:37:62:72:d4:0d:66:e4:a7:67:5d:92:41:af: 1d:40:3c:f8:21:28:b8:2a:07:25:18:5e:03:4a:90: 9d:5f:67:30:09:9f:9e:89:7e:59:0a:42:f8:47:29: 46:40:d4:fe:ed:7b:d2:b1:15:3c:bb:9a:08:3e:2c: 70:98:b6:d3:63:9a:b1:aa:31:7f:53:10:5c:83:a7: 99:7d:a7:7c:c8:aa:65:71:26:75:0d:d7:82:4b:77: a4:ef:4c:d5:ec:5b:dd:4a:c5:de:de:d9:30:83:5b: 6a:0e:9b:ce:71:ff:0e:f0:d2:1b:ce:fe:3c:e4:d3: 3c:a4:8d:24:4c:79:b0:55:75:a7:61:f5:dd:7a:6a: 23:22:be:04:59:bb:2e:2c:87:65:4b:50:69:2c:2f: 1a:da:e4:5a:39:2a:0c:f4:68:d2:7c:c2:7c:ca:23: d9:e1:1c:d4:31:b7:61:5e:0d:83:b5:ba:c4:bf:33: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E7:19:65:83:62:16:28:DE:3E:97:97:E7:DB:E2:75:92:FB:4F:6F X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a3:f1:ab:ce:03:cd:34:1f:07:f1:8b:5f:e8:52:6e:93:73: 1f:c6:3d:39:bc:55:ef:93:8a:bd:c8:3a:0f:83:7f:fe:1a:b7: e0:61:02:c5:9f:0d:46:eb:3c:bc:27:59:59:9b:c6:72:d6:7c: e8:ad:a1:d0:0a:aa:d4:13:eb:c0:46:42:08:1b:3c:1f:9b:7f: d6:9e:5f:71:e8:a6:d1:1b:ad:25:dc:b0:7d:ed:c9:c0:88:9b: 27:d1:38:9e:11:a6:66:6d:70:fe:04:33:ba:75:c0:a0:80:86: 55:c6:6e:8a:6a:8d:ce:4d:c7:3f:2a:79:ed:f1:99:66:75:56: f1:a6:a3:6c:14:49:25:9d:d3:df:7a:b4:ae:ee:f8:6a:82:4d: a9:9a:be:cf:57:3d:3f:43:f0:eb:bd:f3:fb:ad:27:72:bd:a9: 28:f6:55:bd:7a:8f:89:cf:54:d8:0b:61:84:ef:ad:06:9d:cb: 14:b0:20:98:4a:e2:c4:d8:e9:26:de:16:62:fc:08:3b:15:89: f6:c1:2b:9c:00:1f:64:74:fc:fa:e6:2c:fd:f1:31:eb:5e:07: 9f:e8:ad:07:d5:09:01:f8:11:4d:7f:97:7c:27:0d:6c:e0:fc: 01:8a:2d:90:ad:d6:eb:9c:11:c7:a4:90:51:7e:2b:5d:d7:97: fd:9f:c6:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUxMTAzMDA1ODQ1WhcNMjUxMTEwMDA1ODQ1WjAYMRYwFAYD VQQDEw02OTA3ZmU0NS1iMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVNO1I25OVLpKfQEiBXdQ/ZezPhimUaQQ/3Kw/P7cYhbVjzi5jfAfv9c2s5D h5BjjmHC0wg5Y7WDasN0WcP9i7SZnA2fBoMrH4MMNTdictQNZuSnZ12SQa8dQDz4 ISi4KgclGF4DSpCdX2cwCZ+eiX5ZCkL4RylGQNT+7XvSsRU8u5oIPixwmLbTY5qx qjF/UxBcg6eZfad8yKplcSZ1DdeCS3ek70zV7FvdSsXe3tkwg1tqDpvOcf8O8NIb zv485NM8pI0kTHmwVXWnYfXdemojIr4EWbsuLIdlS1BpLC8a2uRaOSoM9GjSfMJ8 yiPZ4RzUMbdhXg2DtbrEvzO7OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvnGWWD YhYo3j6Xl+fb4nWS+09vMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAho/GrzgPNNB8H8Ytf6FJuk3Mfxj05vFXvk4q9yDoPg3/+GrfgYQLF nw1G6zy8J1lZm8Zy1nzoraHQCqrUE+vARkIIGzwfm3/Wnl9x6KbRG60l3LB97cnA iJsn0TieEaZmbXD+BDO6dcCggIZVxm6Kao3OTcc/Knnt8ZlmdVbxpqNsFEklndPf erSu7vhqgk2pmr7PVz0/Q/DrvfP7rSdyvako9lW9eo+Jz1TYC2GE760GncsUsCCY SuLE2Okm3hZi/Ag7FYn2wSucAB9kdPz65iz98THrXgef6K0H1QkB+BFNf5d8Jw1s 4PwBii2QrdbrnBHHpJBRfitd15f9n8Z/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:02 2025 by rpki-client