$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: rPRUq4kKC7u0Hgod6Fv+7SIqMURoNDv2iDqVg37d0lQ= Subject key identifier: D6:82:F6:5E:34:9E:B2:AF:34:2B:BB:46:0D:F1:B7:9E:DE:D5:65:47 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04D0 Signing time: Sun 02 Nov 2025 23:46:46 +0000 Manifest this update: Sun 02 Nov 2025 23:46:46 +0000 Manifest next update: Sun 09 Nov 2025 23:46:46 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: mIL3PSpalMFqOQGtjIAWunwdtmi6IwH8UJfcF2tjxik=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: Vt6tO0X/X1UwDMUAdETQmDLxSBvUfwttK8IaifttuUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Nov 2 23:46:46 2025 GMT Not After : Nov 9 23:46:46 2025 GMT Subject: CN=6907ed66-6422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:ff:31:d5:d0:42:01:92:11:bc:73:6a:f0: 4e:b0:d0:18:2f:fa:8e:d5:db:11:c0:8e:47:1a:bc: 1d:eb:56:44:a8:0c:0f:24:fe:ec:fd:80:99:27:09: 82:4b:56:c2:0a:ad:09:5c:4a:21:64:8b:45:fb:71: 0e:df:f2:d7:06:73:49:5e:b9:c4:b0:a1:17:da:21: a7:13:03:3b:0d:2f:4d:f8:84:0c:6d:e5:65:b9:1b: 1b:7a:71:f5:5c:cc:bf:14:fa:9e:8f:a3:e7:58:69: 20:3c:e1:4d:52:a9:e6:44:90:87:94:04:57:66:c6: d4:48:af:31:33:8e:78:12:66:15:7d:e5:be:90:c1: d9:ca:88:a1:4e:ab:ff:2f:e3:25:f1:04:78:ba:2e: b2:60:ab:4e:7f:94:52:9c:80:a9:04:f8:b5:22:a0: 35:53:7e:8f:c2:3d:e2:26:1c:d8:62:dc:8e:40:9a: da:66:01:9e:46:a1:7c:a4:da:9e:d5:1c:6b:14:18: 48:3c:54:56:bd:eb:c4:0f:f5:73:d8:2f:73:ba:57: 01:e0:37:08:b4:f1:0f:15:0a:17:8e:fe:e4:5b:16: 67:8a:59:f6:fe:ea:c4:1a:17:ad:e8:b1:fa:74:92: 0f:f5:29:be:e9:d7:bd:78:4c:1f:d4:de:e4:6a:71: 81:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:82:F6:5E:34:9E:B2:AF:34:2B:BB:46:0D:F1:B7:9E:DE:D5:65:47 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:00:08:cc:fe:ad:6e:ac:14:4c:79:5b:bd:fc:8a:9d:cb:4c: bc:4d:14:81:40:21:5b:60:7d:38:90:01:f4:73:bc:7a:d7:36: 21:6f:1d:61:64:66:55:92:80:db:49:6f:01:17:cc:a1:90:bd: cd:f1:25:3d:69:9b:8e:6a:17:47:86:63:18:50:94:e7:91:5d: 09:4f:54:bd:d9:85:66:85:bb:ad:86:92:44:d6:07:39:ea:cd: 26:38:11:9b:5f:38:7c:83:e6:bf:44:9c:2e:60:dd:57:ef:32: 99:0c:3f:cc:e4:26:ec:80:d1:5a:ba:cc:02:04:e4:a8:8c:16: 7d:c0:45:c8:2a:63:fa:77:e4:0c:ab:2e:fe:3d:ff:df:b7:4b: cd:81:51:c9:bc:a1:59:e0:02:f4:d3:18:1c:8a:07:3f:09:ce: cb:b9:f7:f0:d6:7f:79:28:fe:b9:65:30:b5:ee:3a:65:e7:36: 79:dd:6d:42:d8:f8:2c:27:5c:6c:bc:a2:98:7f:1c:42:42:94: cb:b5:0f:90:84:7a:0e:8c:8f:77:1e:21:eb:38:11:47:7f:7f: ce:e3:87:32:61:c5:78:8a:2a:ab:5c:d9:b1:f6:a4:3f:a8:5a: ae:16:b9:2b:de:9b:4c:85:05:b5:e5:cb:c6:8a:1c:be:19:36: fa:03:33:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUxMTAyMjM0NjQ2WhcNMjUxMTA5MjM0NjQ2WjAYMRYwFAYD VQQDEw02OTA3ZWQ2Ni02NDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3z/MdXQQgGSEbxzavBOsNAYL/qO1dsRwI5HGrwd61ZEqAwPJP7s/YCZJwmC S1bCCq0JXEohZItF+3EO3/LXBnNJXrnEsKEX2iGnEwM7DS9N+IQMbeVluRsbenH1 XMy/FPqej6PnWGkgPOFNUqnmRJCHlARXZsbUSK8xM454EmYVfeW+kMHZyoihTqv/ L+Ml8QR4ui6yYKtOf5RSnICpBPi1IqA1U36Pwj3iJhzYYtyOQJraZgGeRqF8pNqe 1RxrFBhIPFRWvevED/Vz2C9zulcB4DcItPEPFQoXjv7kWxZniln2/urEGhet6LH6 dJIP9Sm+6de9eEwf1N7kanGB2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaC9l40 nrKvNCu7Rg3xt57e1WVHMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEAAjM/q1urBRMeVu9/Iqdy0y8TRSBQCFbYH04kAH0c7x61zYhbx1h ZGZVkoDbSW8BF8yhkL3N8SU9aZuOahdHhmMYUJTnkV0JT1S92YVmhbuthpJE1gc5 6s0mOBGbXzh8g+a/RJwuYN1X7zKZDD/M5CbsgNFauswCBOSojBZ9wEXIKmP6d+QM qy7+Pf/ft0vNgVHJvKFZ4AL00xgcigc/Cc7Luffw1n95KP65ZTC17jpl5zZ53W1C 2PgsJ1xsvKKYfxxCQpTLtQ+QhHoOjI93HiHrOBFHf3/O44cyYcV4iiqrXNmx9qQ/ qFquFrkr3ptMhQW15cvGihy+GTb6AzOc -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:24 2025 by rpki-client