$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: WX1PM67Nr8O4/ga9NmrhnJ2Rv7tTT8KZAmk+BlLJgfc= Subject key identifier: 64:4D:C9:89:08:75:54:73:C7:CD:FE:D8:8F:3F:70:B8:12:CC:8C:96 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0197 Signing time: Mon 03 Nov 2025 03:29:41 +0000 Manifest this update: Mon 03 Nov 2025 03:29:40 +0000 Manifest next update: Mon 10 Nov 2025 03:29:40 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: YMCxr0Ztp+K8d9N7VkBflHh5tG99wF1kvJYL2X3NMjQ=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: 2nukhqdNU6Euo+43iQiPgLSUJQocXAJN3vnaW4r7bwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Nov 3 03:29:40 2025 GMT Not After : Nov 10 03:29:40 2025 GMT Subject: CN=690821a4-c2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ea:4e:09:80:d1:b4:91:2f:71:35:80:f7:d8: ff:65:5f:14:43:36:d6:f4:e5:54:9b:ed:d9:15:4f: b2:4a:50:ce:83:74:86:e8:29:e3:80:bc:5d:d6:f0: e1:c4:17:08:0a:da:35:30:4a:13:f3:35:c9:fe:e4: 8b:bb:f4:24:c1:99:14:b7:3f:07:73:e9:fd:8b:b7: cd:3e:40:26:f2:f2:b2:a0:ef:e2:dc:d9:f0:e6:bd: 90:c5:83:b4:53:10:04:f4:4e:0d:c7:97:85:92:da: 4a:a3:ef:fb:ab:0c:68:a1:66:0f:de:3f:29:e2:40: a1:ee:d0:98:7e:68:2c:0f:5b:5b:61:53:26:8c:8a: 17:d8:4c:6e:be:04:61:19:aa:4d:10:6e:c4:bf:7c: 8b:46:12:49:2a:dc:38:7c:6b:73:65:ed:6e:a4:2d: f0:7a:9d:de:0c:7e:ab:3e:4b:c4:27:4d:a2:e2:a3: e4:b1:6c:c1:7e:70:e6:cc:18:ad:0a:7c:23:25:48: b4:d3:cf:a1:a5:d7:e0:f0:86:f9:ab:23:e7:a2:05: 7e:ed:48:58:b8:99:55:d4:6d:f6:94:49:5a:f1:33: 59:7a:b7:a1:94:77:79:96:89:e5:08:ad:fe:fc:23: 9d:7a:1e:14:4f:9b:39:9d:21:6c:b1:4a:14:c8:12: 03:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4D:C9:89:08:75:54:73:C7:CD:FE:D8:8F:3F:70:B8:12:CC:8C:96 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:69:8e:e7:51:86:2c:19:f5:52:46:bf:94:c9:1e:25:ec:6e: 43:4b:a2:cc:a3:b2:40:33:54:7c:c4:c4:e7:4c:d1:4a:92:ad: e6:80:eb:0d:97:e1:fc:d6:fb:7e:61:e8:69:ab:a3:f7:89:af: e4:d5:21:24:15:07:2e:5d:e7:c9:76:04:4a:e8:a7:b6:03:83: a1:d8:4f:7f:c8:b9:6d:0e:88:13:6b:67:6b:16:e5:4d:cb:ed: 4c:56:9b:b4:66:94:86:58:54:f9:35:a7:c1:73:1b:73:05:67: 7f:fd:73:fa:09:c3:63:7b:20:37:34:a1:ae:47:19:cc:00:4e: 6d:59:07:da:03:4e:2c:50:10:e7:34:7f:96:d5:f8:96:b1:c6: 8b:30:3d:41:c0:bb:e6:0f:56:44:99:fc:a1:c9:fe:fc:fd:80: a8:38:5c:26:9a:71:2f:5b:0a:8f:3e:96:a7:0c:62:cb:4a:74: 70:e9:d5:6f:46:df:66:c7:86:c4:b0:55:a5:c4:07:8d:82:28: a2:9c:23:d2:51:07:ad:8d:d6:83:f8:db:b7:ab:44:52:af:c1: 79:3d:98:32:b1:38:76:12:45:c8:f0:fb:6c:17:43:ff:79:74: b2:95:05:25:65:71:1b:ae:f8:56:4f:8c:cb:b2:8b:9d:2b:af: 3f:48:31:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUxMTAzMDMyOTQwWhcNMjUxMTEwMDMyOTQwWjAYMRYwFAYD VQQDEw02OTA4MjFhNC1jMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvepOCYDRtJEvcTWA99j/ZV8UQzbW9OVUm+3ZFU+ySlDOg3SG6CnjgLxd1vDh xBcICto1MEoT8zXJ/uSLu/QkwZkUtz8Hc+n9i7fNPkAm8vKyoO/i3Nnw5r2QxYO0 UxAE9E4Nx5eFktpKo+/7qwxooWYP3j8p4kCh7tCYfmgsD1tbYVMmjIoX2ExuvgRh GapNEG7Ev3yLRhJJKtw4fGtzZe1upC3wep3eDH6rPkvEJ02i4qPksWzBfnDmzBit CnwjJUi008+hpdfg8Ib5qyPnogV+7UhYuJlV1G32lEla8TNZerehlHd5lonlCK3+ /COdeh4UT5s5nSFssUoUyBIDmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRNyYkI dVRzx83+2I8/cLgSzIyWMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwaY7nUYYsGfVSRr+UyR4l7G5DS6LMo7JAM1R8xMTnTNFKkq3mgOsN l+H81vt+Yehpq6P3ia/k1SEkFQcuXefJdgRK6Ke2A4Oh2E9/yLltDogTa2drFuVN y+1MVpu0ZpSGWFT5NafBcxtzBWd//XP6CcNjeyA3NKGuRxnMAE5tWQfaA04sUBDn NH+W1fiWscaLMD1BwLvmD1ZEmfyhyf78/YCoOFwmmnEvWwqPPpanDGLLSnRw6dVv Rt9mx4bEsFWlxAeNgiiinCPSUQetjdaD+Nu3q0RSr8F5PZgysTh2EkXI8PtsF0P/ eXSylQUlZXEbrvhWT4zLsoudK68/SDFF -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:47 2025 by rpki-client