$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: tzAyO2s8OykVxrahh261prdbP1tJ6wR6H+DFstaPxMs= Subject key identifier: D2:EF:C8:D0:74:B8:6F:2D:28:B2:15:EC:82:61:3A:30:75:51:20:4C Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 0A0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 0A05 Signing time: Sun 02 Nov 2025 19:48:31 +0000 Manifest this update: Sun 02 Nov 2025 19:48:30 +0000 Manifest next update: Sun 09 Nov 2025 19:48:30 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: J8mOs/xLAHB85x1p2iRoAllzM1cA0KsHQtMjLmMbB/Q=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Nov 2 19:48:30 2025 GMT Not After : Nov 9 19:48:30 2025 GMT Subject: CN=6907b58f-73ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ea:74:d2:af:ad:3d:f4:5e:48:30:3c:d3:3b: 29:f4:35:fa:98:8a:bb:6f:62:1d:b5:38:36:9b:d6: 6c:b0:75:80:e5:d1:13:dc:33:c3:7c:5b:b6:5e:a0: 90:43:a4:96:1b:60:90:7b:ed:24:58:ec:3d:56:fc: 4d:3a:93:77:14:7d:e2:59:5b:1b:ab:71:34:9f:86: 05:98:43:00:0e:55:03:64:65:41:5e:ea:8b:05:b5: 62:c0:f2:7d:a8:c9:ed:f6:ef:f2:b4:c3:3d:9e:24: 0d:52:8a:8b:34:a9:55:84:9a:02:65:82:b1:b5:9f: 31:56:c0:0d:46:b4:6f:ed:89:c8:66:10:ce:3b:65: bd:8e:a9:cc:6c:c7:46:5f:6b:6e:45:0f:79:19:47: 63:e9:fd:b3:fe:17:d7:4b:d3:44:5f:cf:e6:4b:b6: 45:4f:b6:84:6b:ea:98:4e:78:4e:71:27:12:8c:3c: 4d:87:ed:90:14:3e:30:0c:d7:db:95:71:4b:d8:3b: f0:0e:da:57:c2:a0:e7:08:ed:b8:15:38:8d:7d:78: 5e:de:25:9a:fd:0d:89:95:3b:27:be:b3:e0:b2:9b: 0a:54:e7:19:47:97:29:6a:67:2d:7d:3c:8f:eb:a6: 27:01:f3:0d:68:c0:e3:9a:8b:79:f7:05:41:68:f0: 05:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EF:C8:D0:74:B8:6F:2D:28:B2:15:EC:82:61:3A:30:75:51:20:4C X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:2a:ca:10:05:4a:45:93:7a:25:eb:40:6d:0e:96:d3:0b:40: 8d:f6:a3:51:dc:be:ce:e9:b2:25:bb:0a:70:e4:bf:b0:69:8c: 17:73:fa:f6:67:ec:1b:42:12:00:31:df:91:98:c6:89:4c:00: cf:50:be:91:e3:09:2f:a5:e8:07:a0:d1:79:82:6e:42:d5:a2: 98:6e:61:ea:dc:41:25:84:a1:c7:e3:68:75:52:ee:7b:f3:11: 91:32:08:a9:8f:69:e6:09:41:58:68:3b:0a:87:06:a2:3e:24: 12:12:f5:15:3f:b2:9d:22:12:37:74:f1:4e:b0:a0:b3:68:3a: 70:ee:ac:b5:26:f0:b9:f3:54:92:e8:bd:13:18:6a:09:ef:c5: fe:e4:a1:fe:a5:80:64:06:02:2e:c7:af:4a:55:d5:b3:d0:6a: 11:d6:9a:e5:e9:5a:63:cf:90:0e:3a:cf:1c:fc:b7:85:51:32: 7a:81:dd:68:b7:4b:b0:13:4a:e0:b8:b5:2e:07:d3:33:a9:b7: b7:1e:49:77:c9:99:ac:54:78:60:40:d1:8e:82:36:e1:a3:79: 35:66:fb:ac:b3:a3:da:47:f7:bc:f3:9e:30:57:58:8d:6f:48: b6:7a:57:fa:7b:28:bb:f2:1c:fb:fe:50:87:bc:11:54:b5:45: a4:74:a6:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUxMTAyMTk0ODMwWhcNMjUxMTA5MTk0ODMwWjAYMRYwFAYD VQQDEw02OTA3YjU4Zi03M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxup00q+tPfReSDA80zsp9DX6mIq7b2IdtTg2m9ZssHWA5dET3DPDfFu2XqCQ Q6SWG2CQe+0kWOw9VvxNOpN3FH3iWVsbq3E0n4YFmEMADlUDZGVBXuqLBbViwPJ9 qMnt9u/ytMM9niQNUoqLNKlVhJoCZYKxtZ8xVsANRrRv7YnIZhDOO2W9jqnMbMdG X2tuRQ95GUdj6f2z/hfXS9NEX8/mS7ZFT7aEa+qYTnhOcScSjDxNh+2QFD4wDNfb lXFL2DvwDtpXwqDnCO24FTiNfXhe3iWa/Q2JlTsnvrPgspsKVOcZR5cpamctfTyP 66YnAfMNaMDjmot59wVBaPAFfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLvyNB0 uG8tKLIV7IJhOjB1USBMMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+KsoQBUpFk3ol60BtDpbTC0CN9qNR3L7O6bIluwpw5L+waYwXc/r2 Z+wbQhIAMd+RmMaJTADPUL6R4wkvpegHoNF5gm5C1aKYbmHq3EElhKHH42h1Uu57 8xGRMgipj2nmCUFYaDsKhwaiPiQSEvUVP7KdIhI3dPFOsKCzaDpw7qy1JvC581SS 6L0TGGoJ78X+5KH+pYBkBgIux69KVdWz0GoR1prl6Vpjz5AOOs8c/LeFUTJ6gd1o t0uwE0rguLUuB9Mzqbe3Hkl3yZmsVHhgQNGOgjbho3k1Zvuss6PaR/e8854wV1iN b0i2elf6eyi78hz7/lCHvBFUtUWkdKZ+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:12 2025 by rpki-client