$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft File: ggCxpefBdgW1czx0_sHvEnOz6iU.mft (raw, json) Hash identifier: YaFGt+jHh5VlAqTFaRmz+6W7dasjJEnCKutbkJ88JrM= Subject key identifier: 68:2D:37:92:F7:93:CE:30:5A:36:0B:1B:BB:B9:F8:78:5F:25:94:BB Authority key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 Certificate issuer: /CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Certificate serial: 34C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft Manifest number: 34C7 Signing time: Sat 18 Oct 2025 15:28:56 +0000 Manifest this update: Sat 18 Oct 2025 15:28:56 +0000 Manifest next update: Sat 25 Oct 2025 15:28:56 +0000 Files and hashes: 1: ggCxpefBdgW1czx0_sHvEnOz6iU.crl (hash: TgkMlr2Qf6gz9GdM12ywFCUmq/bvnFhdE4m+M7xG00c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13511 (0x34c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD0C, serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Validity Not Before: Oct 18 15:28:56 2025 GMT Not After : Oct 25 15:28:56 2025 GMT Subject: CN=68f3b238-4e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3f:a1:e0:91:a2:33:d3:8f:62:ab:b2:2f:97: a9:05:e2:b4:81:13:51:a4:1b:86:e9:1e:c6:b2:6e: 21:20:7c:2a:d8:52:01:2a:0d:c7:19:98:f9:72:d2: 59:91:39:6d:dd:90:0d:3a:a4:37:ee:72:a0:e6:e5: 4a:0c:b8:ad:a1:74:d4:50:a3:8c:52:e6:22:ed:dc: ec:8a:e4:ec:01:4b:3c:a9:3e:d8:2c:18:0e:72:ef: 03:f0:9a:6e:c3:84:6f:39:6d:d1:4a:3a:89:4f:79: b8:52:a2:f6:52:f4:da:d5:5e:19:9b:c4:d3:36:f1: d2:c9:58:31:ac:82:95:bf:2c:42:38:5c:95:c9:14: e0:84:6e:e9:7a:31:13:18:52:bd:e0:7c:80:f6:3b: 21:e2:59:bd:49:3c:97:d8:16:b3:b3:22:60:70:fa: 5c:78:34:46:d1:2e:66:d7:17:0b:33:86:37:57:71: ab:c5:19:6d:5a:5a:b1:94:00:93:ce:ca:38:e5:cd: 8c:ef:6c:0f:76:25:dc:83:25:7f:58:b3:eb:3e:20: ea:e4:e2:3e:95:b4:ee:35:fc:95:24:b8:c1:b5:d5: b3:75:28:60:e0:17:17:6a:3f:89:2b:e3:ad:a5:7e: 39:51:76:c9:f1:9f:cd:fc:3c:2e:7b:95:07:a4:bf: f5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2D:37:92:F7:93:CE:30:5A:36:0B:1B:BB:B9:F8:78:5F:25:94:BB X509v3 Authority Key Identifier: keyid:82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:00:11:07:16:04:ed:85:4c:a0:64:f5:15:24:65:71:59:40: 3f:02:22:01:ff:c5:20:98:b1:b3:19:0b:49:80:44:5c:97:06: 57:94:bc:10:b3:54:2f:e2:4e:87:5d:91:68:8b:db:37:99:41: 04:d7:a8:ac:3c:4c:8c:ea:99:39:37:a3:3e:42:36:f3:74:ad: 11:ef:e3:0c:e4:8d:29:42:f6:06:d1:58:18:5b:e6:73:e3:51: 27:8b:80:04:cd:48:d9:5c:88:8b:1e:21:19:16:7b:df:22:17: a3:a5:93:f7:51:76:05:23:7f:e9:4b:2c:dd:c5:63:00:54:2a: 68:7a:cc:5d:e2:07:24:72:fe:ae:94:52:ca:39:d7:89:b3:68: 5d:ef:d0:10:06:64:e4:f6:6f:20:d8:f4:d3:98:ed:e0:42:cb: 13:db:b8:81:0b:b3:c7:5d:ea:63:6a:92:1f:66:25:09:1e:8e: a2:40:e5:9e:18:8f:2f:64:ae:91:14:b7:e5:7f:90:9b:8d:96: aa:0a:26:4b:a8:15:99:d2:17:0d:29:5d:cf:61:99:d3:93:8f: eb:17:b2:b0:08:cf:f1:a9:cd:35:6c:fa:bb:70:b6:63:62:72: d2:7e:ac:a5:c6:4a:0d:77:c4:c8:07:70:d2:9d:b8:ff:a0:0e: c2:48:46:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEMEMxMTAvBgNVBAUTKDgyMDBCMUE1RTdDMTc2MDVCNTczM0M3NEZFQzFFRjEy NzNCM0VBMjUwHhcNMjUxMDE4MTUyODU2WhcNMjUxMDI1MTUyODU2WjAYMRYwFAYD VQQDEw02OGYzYjIzOC00ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz+h4JGiM9OPYquyL5epBeK0gRNRpBuG6R7Gsm4hIHwq2FIBKg3HGZj5ctJZ kTlt3ZANOqQ37nKg5uVKDLitoXTUUKOMUuYi7dzsiuTsAUs8qT7YLBgOcu8D8Jpu w4RvOW3RSjqJT3m4UqL2UvTa1V4Zm8TTNvHSyVgxrIKVvyxCOFyVyRTghG7pejET GFK94HyA9jsh4lm9STyX2BazsyJgcPpceDRG0S5m1xcLM4Y3V3GrxRltWlqxlACT zso45c2M72wPdiXcgyV/WLPrPiDq5OI+lbTuNfyVJLjBtdWzdShg4BcXaj+JK+Ot pX45UXbJ8Z/N/Dwue5UHpL/1UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgtN5L3 k84wWjYLG7u5+HhfJZS7MB8GA1UdIwQYMBaAFIIAsaXnwXYFtXM8dP7B7xJzs+ol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQwQy8xQjBCMzU4RTFE QUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRnVzFjengwX3NIdkVuT3o2 aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnQ3hwZWZCZGdXMWN6eDBfc0h2RW5PejZpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQwQy8xQjBCMzU4RTFEQUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRn VzFjengwX3NIdkVuT3o2aVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChABEHFgTthUygZPUVJGVxWUA/AiIB/8UgmLGzGQtJgERclwZXlLwQ s1Qv4k6HXZFoi9s3mUEE16isPEyM6pk5N6M+QjbzdK0R7+MM5I0pQvYG0VgYW+Zz 41Eni4AEzUjZXIiLHiEZFnvfIhejpZP3UXYFI3/pSyzdxWMAVCpoesxd4gckcv6u lFLKOdeJs2hd79AQBmTk9m8g2PTTmO3gQssT27iBC7PHXepjapIfZiUJHo6iQOWe GI8vZK6RFLflf5CbjZaqCiZLqBWZ0hcNKV3PYZnTk4/rF7KwCM/xqc01bPq7cLZj YnLSfqylxkoNd8TIB3DSnbj/oA7CSEYY -----END CERTIFICATE-----Generated at Mon Oct 20 00:23:36 2025 by rpki-client