$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: XXHwY0Cr4sjpRjpCAUjRbw3xIPgcNJF5QWgawnlQjMM= Subject key identifier: 67:82:3E:A0:BA:65:41:90:E7:44:D7:60:AB:0E:D9:C7:2A:F1:9D:9C Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 0581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 057A Signing time: Sun 02 Nov 2025 23:16:27 +0000 Manifest this update: Sun 02 Nov 2025 23:16:26 +0000 Manifest next update: Sun 09 Nov 2025 23:16:26 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: CJYp1imalOJWxuJiJjams87F8t9afePHik3HcJzrrd4=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: KrqWlA/SDiqH7tPY3/giTqCFhbQU+NxKtLCfFdknyhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7, serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: Nov 2 23:16:26 2025 GMT Not After : Nov 9 23:16:26 2025 GMT Subject: CN=6907e64b-7b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:a4:01:f4:42:12:c2:6a:17:b6:8d:2b:fe: 14:7f:7c:46:a2:23:64:8d:5c:52:4e:ea:84:b9:be: 04:12:2d:44:b4:41:c5:c1:d7:7a:53:b1:e5:39:cf: d6:be:6c:18:bb:8f:81:61:03:6c:79:36:d8:1a:9d: b4:f1:60:a5:45:7b:a4:2b:0d:8b:7b:5a:2f:7a:38: fc:8c:a7:24:22:e8:73:4a:6a:bd:38:5f:3b:86:0d: 6a:e8:15:66:c2:64:33:69:ed:a1:69:57:a1:cf:e4: e3:ef:97:8d:d5:4a:52:b7:8a:8a:88:fc:f4:1b:b7: 79:8a:85:5d:f0:3a:33:07:4d:63:fb:65:e8:f5:24: 85:f5:58:dc:ac:59:69:09:93:5c:6a:04:70:8b:62: 57:12:23:bf:10:b8:d9:cc:b3:4d:00:9a:59:f6:a1: 99:c5:d7:12:d6:aa:5a:56:bd:f9:d3:41:1c:3f:98: 7b:d6:99:a6:48:6d:cf:a2:97:a3:ed:83:87:45:42: 95:54:0e:69:81:22:a2:56:f6:90:2c:87:87:c8:fe: 5f:76:ff:74:0e:e1:f9:08:18:1d:fd:3f:94:6b:3b: 94:a1:72:c9:a1:7e:98:05:55:70:73:24:61:04:98: 89:06:06:85:d7:fd:58:98:32:4d:b7:f2:f5:3a:3a: ab:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:82:3E:A0:BA:65:41:90:E7:44:D7:60:AB:0E:D9:C7:2A:F1:9D:9C X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:48:f9:ae:fe:a1:d5:b7:5a:d4:76:d9:2b:03:7b:8a:93:d3: e2:4b:83:6c:39:75:5f:86:48:00:3c:80:52:57:0a:26:8f:15: e0:d4:13:1e:f0:11:ab:14:00:09:09:c9:d1:2a:08:62:6d:14: 92:40:10:63:6a:ef:f0:d1:06:0e:1f:1f:d3:92:11:d8:99:af: 7e:c0:7f:ab:0a:91:47:a8:53:d4:5c:b9:5c:7e:99:d6:db:4b: f0:bc:49:64:8e:11:68:e9:22:7f:07:d8:fc:5a:bb:6d:ff:e4: 52:a9:3e:2b:08:19:35:bb:e3:a6:fb:0c:b4:d5:b7:7c:db:97: a6:6f:f3:b5:a6:f4:20:9a:a3:b7:07:17:93:f3:a3:dd:c9:ab: c2:e1:06:4d:9d:e3:51:b4:f4:14:07:3d:67:12:f6:57:82:9d: 14:aa:da:40:c2:c4:9b:e5:05:a9:9d:66:e9:d1:07:c0:dc:94: 13:8b:bf:e5:a1:57:28:d0:47:f4:00:dd:e1:18:34:7b:17:15: 61:71:71:aa:9d:06:04:e9:26:f3:ae:ee:97:c8:d5:e2:9f:b9: a2:90:63:79:62:34:5d:3c:26:53:cd:01:ac:a4:6b:ad:0a:5a: d7:3e:b4:1e:8b:1a:66:9f:f1:6f:75:47:d0:10:18:af:b0:3d: 06:d1:1a:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjUxMTAyMjMxNjI2WhcNMjUxMTA5MjMxNjI2WjAYMRYwFAYD VQQDEw02OTA3ZTY0Yi03YjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGSkAfRCEsJqF7aNK/4Uf3xGoiNkjVxSTuqEub4EEi1EtEHFwdd6U7HlOc/W vmwYu4+BYQNseTbYGp208WClRXukKw2Le1ovejj8jKckIuhzSmq9OF87hg1q6BVm wmQzae2haVehz+Tj75eN1UpSt4qKiPz0G7d5ioVd8DozB01j+2Xo9SSF9VjcrFlp CZNcagRwi2JXEiO/ELjZzLNNAJpZ9qGZxdcS1qpaVr3500EcP5h71pmmSG3Popej 7YOHRUKVVA5pgSKiVvaQLIeHyP5fdv90DuH5CBgd/T+UazuUoXLJoX6YBVVwcyRh BJiJBgaF1/1YmDJNt/L1OjqrnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeCPqC6 ZUGQ50TXYKsO2ccq8Z2cMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2SPmu/qHVt1rUdtkrA3uKk9PiS4NsOXVfhkgAPIBSVwomjxXg1BMe 8BGrFAAJCcnRKghibRSSQBBjau/w0QYOHx/TkhHYma9+wH+rCpFHqFPUXLlcfpnW 20vwvElkjhFo6SJ/B9j8Wrtt/+RSqT4rCBk1u+Om+wy01bd825emb/O1pvQgmqO3 BxeT86PdyavC4QZNneNRtPQUBz1nEvZXgp0UqtpAwsSb5QWpnWbp0QfA3JQTi7/l oVco0Ef0AN3hGDR7FxVhcXGqnQYE6Sbzru6XyNXin7mikGN5YjRdPCZTzQGspGut ClrXPrQeixpmn/FvdUfQEBivsD0G0RoI -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:39 2025 by rpki-client