$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: 2elDhWvvBZwtV6bdb789RUxrb+Pu1vdG2LG5w7IIC10= Subject key identifier: 07:EE:E6:F9:63:A0:F2:94:B8:35:8F:EF:B8:3C:78:B3:66:46:32:E9 Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 07CA Signing time: Tue 04 Nov 2025 21:20:11 +0000 Manifest this update: Tue 04 Nov 2025 21:20:10 +0000 Manifest next update: Tue 11 Nov 2025 21:20:10 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: oXWiJjlKOR5NEEvM19wysXO/dnAUyyPD59ZrsHl3SWY=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: +QmSQmsTCCd4yyTjh5mf70wyqAWPCaGTrX6lQ4meIO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F, serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Nov 4 21:20:10 2025 GMT Not After : Nov 11 21:20:10 2025 GMT Subject: CN=690a6e0a-a379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:17:59:f0:9e:80:12:68:f2:f9:23:1b:bf:b4: 45:86:8b:b4:f9:64:7c:4a:29:e6:05:1f:95:81:bd: 95:fb:0d:ce:9a:4f:8c:fb:60:d6:30:7a:28:09:18: eb:39:1d:c4:cd:90:d4:96:f7:8d:65:82:b4:90:00: ed:33:b1:bc:f5:1f:2f:b3:ac:02:b3:cf:10:ae:bd: b2:ef:5d:39:a0:74:e0:af:40:f2:fd:8e:a3:2a:e2: 18:5c:c3:aa:62:5d:81:57:da:f9:f0:9d:7a:d7:e1: 6d:8d:56:84:3d:ee:88:64:cf:c4:c6:19:ee:d7:aa: 2f:7d:57:24:6d:10:04:62:72:ca:38:a5:a9:84:46: 3d:11:57:31:4b:b4:47:5d:fd:4b:f2:4e:e0:e2:42: 3d:9a:c6:ec:8a:ac:45:8a:44:c8:47:4a:a2:ac:ff: c9:96:9f:08:b0:a7:97:d5:0a:f7:df:52:d8:4a:b7: 2d:46:f4:45:32:6d:47:43:bc:26:94:0d:7a:64:ab: 9e:89:6b:09:76:e1:4a:d3:2f:36:8f:66:bf:da:34: 6b:61:20:81:fb:90:a6:0a:49:c5:27:c8:d6:c0:da: 6d:df:dc:5a:d3:74:ed:62:b6:48:ab:7c:60:f6:28: 30:2c:ef:47:f4:52:b8:b9:04:e9:ae:4c:bb:53:d5: f8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:EE:E6:F9:63:A0:F2:94:B8:35:8F:EF:B8:3C:78:B3:66:46:32:E9 X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f2:f3:53:c6:37:b1:3a:cf:e6:fe:72:d5:c1:30:3c:62:81: 37:46:93:10:ca:87:5d:3a:35:c4:c3:aa:37:79:57:98:9a:5a: 42:49:a6:7f:bd:ae:13:fd:9f:17:2a:41:07:57:29:80:b5:b4: 2e:2c:60:4f:b1:c7:bc:15:1c:60:95:af:0c:69:f2:c2:85:cf: 69:91:1c:68:f5:32:d7:54:75:79:a9:c3:ba:81:55:13:11:35: 8f:01:d9:06:9c:d8:6d:7a:d1:d5:13:5a:45:4c:ca:75:e6:66: 0a:45:9d:8c:59:9c:b0:3a:fb:04:26:d6:ac:fe:2b:80:90:08: ad:1d:bc:25:47:6a:b4:0c:01:3c:18:54:73:2a:a1:3d:8e:42: af:be:33:c0:dd:4c:d4:f4:91:6f:38:b9:e3:a4:cb:85:88:dd: 3a:e5:d9:a2:a8:6b:0c:42:41:0e:82:24:d3:61:31:ed:c5:ad: be:cd:e5:79:3a:60:92:b9:ab:f3:2c:6f:2a:24:f6:c7:7d:55: 1f:f3:9a:a1:e6:bd:e7:a6:2e:2b:93:d4:12:de:bc:07:b9:50: 00:f3:ed:1c:65:af:cb:be:e0:4d:13:89:51:85:b7:aa:fe:e3: 5d:3a:f7:c9:5e:06:c9:24:26:46:ea:15:be:fe:79:71:0c:3a: 3d:66:17:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjUxMTA0MjEyMDEwWhcNMjUxMTExMjEyMDEwWjAYMRYwFAYD VQQDEw02OTBhNmUwYS1hMzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxdZ8J6AEmjy+SMbv7RFhou0+WR8SinmBR+Vgb2V+w3Omk+M+2DWMHooCRjr OR3EzZDUlveNZYK0kADtM7G89R8vs6wCs88Qrr2y7105oHTgr0Dy/Y6jKuIYXMOq Yl2BV9r58J161+FtjVaEPe6IZM/Exhnu16ovfVckbRAEYnLKOKWphEY9EVcxS7RH Xf1L8k7g4kI9msbsiqxFikTIR0qirP/Jlp8IsKeX1Qr331LYSrctRvRFMm1HQ7wm lA16ZKueiWsJduFK0y82j2a/2jRrYSCB+5CmCknFJ8jWwNpt39xa03TtYrZIq3xg 9igwLO9H9FK4uQTprky7U9X4gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfu5vlj oPKUuDWP77g8eLNmRjLpMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk8vNTxjexOs/m/nLVwTA8YoE3RpMQyoddOjXEw6o3eVeYmlpCSaZ/ va4T/Z8XKkEHVymAtbQuLGBPsce8FRxgla8MafLChc9pkRxo9TLXVHV5qcO6gVUT ETWPAdkGnNhtetHVE1pFTMp15mYKRZ2MWZywOvsEJtas/iuAkAitHbwlR2q0DAE8 GFRzKqE9jkKvvjPA3UzU9JFvOLnjpMuFiN065dmiqGsMQkEOgiTTYTHtxa2+zeV5 OmCSuavzLG8qJPbHfVUf85qh5r3npi4rk9QS3rwHuVAA8+0cZa/LvuBNE4lRhbeq /uNdOvfJXgbJJCZG6hW+/nlxDDo9Zhej -----END CERTIFICATE-----Generated at Wed Nov 5 07:58:43 2025 by rpki-client