$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: PuCWwVpGWOG5qxcGN+dvE65tZoSY4ahhqCCSVdfg2Pg= Subject key identifier: BC:4C:E7:51:A3:97:EC:99:BB:35:8C:EC:0A:15:E1:2C:9E:8C:22:00 Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 078A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0777 Signing time: Tue 04 Nov 2025 21:42:54 +0000 Manifest this update: Tue 04 Nov 2025 21:42:54 +0000 Manifest next update: Tue 11 Nov 2025 21:42:54 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: Oav4E/5AmoOa86K212TEtdf5+9LwN5vOEZa2ADSgHsY=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1930 (0x78a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Nov 4 21:42:54 2025 GMT Not After : Nov 11 21:42:54 2025 GMT Subject: CN=690a735e-7870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:ad:19:14:40:22:ed:69:8c:14:75:0d:99: 94:ec:72:36:6d:ed:45:c5:5d:e3:74:23:db:a9:e9: 76:e6:23:65:5b:41:a6:5d:df:2a:6e:5b:ee:08:c9: aa:9f:81:60:f5:a2:43:ea:25:28:14:5e:7a:5f:0a: f1:ea:8b:c0:1e:b0:d3:28:28:82:90:92:b3:12:9f: 61:92:26:44:4b:b7:30:9b:23:85:81:82:d2:13:00: 3a:c6:81:cc:e8:11:d2:66:87:42:8b:8e:32:1a:d4: 11:1b:ed:9e:40:6f:53:46:99:0e:70:70:2a:1b:6a: 1e:72:78:43:e1:c6:6d:a7:b4:32:cc:72:95:47:70: 45:ba:83:88:aa:f7:4b:68:01:e9:8c:50:6d:b0:9f: 6e:b4:dc:22:71:3d:b6:80:c9:23:2b:53:f9:18:c4: b0:38:47:4f:e7:c1:0c:b8:a6:f2:cd:1b:b3:d9:06: 40:30:51:b8:eb:b0:40:82:cb:f0:f0:e7:8c:c0:b6: 4a:57:38:e8:26:51:9f:7b:c2:06:bc:2d:66:5c:b4: 43:5a:c3:df:08:e8:2e:f6:98:4b:94:a0:e9:45:55: 07:5d:36:f8:d9:90:09:c4:0a:87:8f:99:20:12:89: fa:bc:d2:a8:a5:27:f0:4f:40:e0:35:f5:e2:fe:19: 2f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4C:E7:51:A3:97:EC:99:BB:35:8C:EC:0A:15:E1:2C:9E:8C:22:00 X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b5:24:d7:20:0e:a4:18:db:b5:b8:78:5f:46:27:44:04:c0: ad:11:74:08:51:4b:32:36:cb:01:8a:78:87:89:6f:ad:3e:49: 35:c6:17:27:6a:dd:31:72:0d:a5:9a:ac:79:18:a1:29:ad:bf: f9:a5:e3:7c:52:d1:67:8c:31:c6:60:34:c2:2f:af:9e:8b:21: 5c:7e:4b:ab:f9:15:3d:31:96:09:06:3a:cb:9a:35:ec:aa:f7: 62:63:45:81:19:82:93:48:33:f3:82:14:c2:a9:17:13:c4:ad: 23:01:be:20:8a:bd:e5:f4:60:0d:77:13:76:9b:cd:5f:da:18: 7e:1d:7a:1a:70:83:0e:02:92:ba:fd:27:72:34:90:0d:db:ab: 6e:d9:a3:0b:cb:ff:66:85:52:e4:05:46:1d:51:d4:f1:87:87: df:02:fa:db:69:23:ae:0c:a9:4f:86:e8:6c:5c:f0:8d:03:7b: 8a:c2:eb:d6:1a:f2:11:0f:77:12:99:aa:2c:d5:9a:11:d2:5b: 7a:bb:0c:6b:e6:37:0e:e8:3e:1b:84:1a:42:3f:ad:fe:38:1c: e8:97:b5:f7:37:fb:bf:4c:fa:50:79:6a:74:6f:94:05:3e:54: 41:58:99:83:2b:c6:7c:0e:24:58:1e:75:83:f2:76:50:b9:6d: b6:cb:11:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUxMTA0MjE0MjU0WhcNMjUxMTExMjE0MjU0WjAYMRYwFAYD VQQDEw02OTBhNzM1ZS03ODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1GtGRRAIu1pjBR1DZmU7HI2be1FxV3jdCPbqel25iNlW0GmXd8qblvuCMmq n4Fg9aJD6iUoFF56Xwrx6ovAHrDTKCiCkJKzEp9hkiZES7cwmyOFgYLSEwA6xoHM 6BHSZodCi44yGtQRG+2eQG9TRpkOcHAqG2oecnhD4cZtp7QyzHKVR3BFuoOIqvdL aAHpjFBtsJ9utNwicT22gMkjK1P5GMSwOEdP58EMuKbyzRuz2QZAMFG467BAgsvw 8OeMwLZKVzjoJlGfe8IGvC1mXLRDWsPfCOgu9phLlKDpRVUHXTb42ZAJxAqHj5kg Eon6vNKopSfwT0DgNfXi/hkvNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxM51Gj l+yZuzWM7AoV4SyejCIAMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCltSTXIA6kGNu1uHhfRidEBMCtEXQIUUsyNssBiniHiW+tPkk1xhcn at0xcg2lmqx5GKEprb/5peN8UtFnjDHGYDTCL6+eiyFcfkur+RU9MZYJBjrLmjXs qvdiY0WBGYKTSDPzghTCqRcTxK0jAb4gir3l9GANdxN2m81f2hh+HXoacIMOApK6 /SdyNJAN26tu2aMLy/9mhVLkBUYdUdTxh4ffAvrbaSOuDKlPhuhsXPCNA3uKwuvW GvIRD3cSmaos1ZoR0lt6uwxr5jcO6D4bhBpCP63+OBzol7X3N/u/TPpQeWp0b5QF PlRBWJmDK8Z8DiRYHnWD8nZQuW22yxFE -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:36 2025 by rpki-client