$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft File: giq84EQXvhV7KDO6OwIw3iOEwkA.mft (raw, json) Hash identifier: FvBdcwn2ZRHUdvXnKLjYVoXc6b1QHblueQS73AGHbw0= Subject key identifier: 18:8D:EE:41:A7:29:BF:14:72:FD:D9:DD:1B:20:23:B4:35:0F:1D:7F Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0BA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft Manifest number: 0BA2 Signing time: Sat 18 Oct 2025 19:49:01 +0000 Manifest this update: Sat 18 Oct 2025 19:49:00 +0000 Manifest next update: Sat 25 Oct 2025 19:49:00 +0000 Files and hashes: 1: giq84EQXvhV7KDO6OwIw3iOEwkA.crl (hash: EgMy5FdJMfKp4d96bMmYYu/IkwfUezYLJ2kFYHkiS5c=) 2: BFB35A9831E011EA91E99C3CC4F9AE02.roa (hash: 0GHCZ6nEXf3be8gydYVqGJhj2BigeoKuyRGIxasVxbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Oct 18 19:49:00 2025 GMT Not After : Oct 25 19:49:00 2025 GMT Subject: CN=68f3ef2c-dc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:6a:01:04:b4:5d:6f:02:c6:03:c1:e9:70: b3:06:84:d0:dc:f0:da:1c:a1:49:cb:a4:83:61:ff: 0e:28:18:89:6f:a9:88:13:e7:52:25:e8:b3:31:ae: a1:26:b2:40:92:7e:33:43:8d:6b:8a:99:75:b6:71: fd:54:b2:6e:6d:dc:a2:47:f7:8d:3e:e6:18:7b:fd: 21:58:a8:ea:fd:0a:46:8d:11:f2:ba:36:14:17:bd: 6e:24:44:57:c2:2c:ee:f4:c3:40:6c:76:54:89:01: 49:e1:b5:95:5d:46:f7:8c:b9:7e:ea:a0:48:15:45: 6d:89:d6:04:e3:27:82:3e:f2:ea:38:ea:65:a5:a9: fa:4f:5f:98:6d:58:63:d3:e9:70:d4:ab:10:e1:1c: e6:ac:37:8c:1e:22:21:c5:8d:be:cf:a4:af:bc:07: 95:ea:1e:5c:2e:0d:50:7a:d9:9d:d0:1e:f2:3e:05: f5:3f:96:92:bb:a2:3b:7c:f2:09:ea:60:92:57:1b: ae:cc:8a:04:fd:fd:f4:73:64:d7:fc:82:00:d9:60: a9:3c:41:b1:05:d3:7a:4e:c2:eb:ad:f3:3d:fd:94: 5b:c3:3e:76:00:da:e9:d3:1f:5e:95:79:b2:d9:29: fa:98:cb:93:e5:4a:e0:ac:5b:08:45:f0:eb:d3:ff: 50:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8D:EE:41:A7:29:BF:14:72:FD:D9:DD:1B:20:23:B4:35:0F:1D:7F X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ad:58:de:53:7a:96:c2:b5:1b:c7:b9:0f:ca:8c:6e:56:a1: 83:69:f1:b5:23:69:98:56:52:f3:cb:3f:47:41:e4:db:05:e2: f4:d8:3e:01:1b:a1:c5:55:27:33:86:33:1a:8c:9d:63:9f:e5: c8:ea:20:ec:cb:1b:41:64:f5:c1:92:09:24:4a:08:29:d2:8e: 17:17:18:13:45:d2:d6:37:e0:ca:a1:0f:b0:85:f0:2e:fe:b1: 53:78:28:94:bb:b9:ff:a0:c1:f0:f2:9b:ca:c3:1b:62:08:d7: fa:33:9f:bb:35:88:fb:34:c8:03:83:3f:87:cf:60:b0:7c:47: 77:fe:95:e8:ae:88:5d:ef:a7:bd:c6:f6:f9:f4:27:c4:41:6f: 7d:d6:85:2f:02:38:e3:ba:0c:58:33:6a:10:5f:51:d4:83:22: 5c:6a:6a:73:ed:84:25:f7:70:03:72:26:c8:50:aa:c5:cb:84: 48:71:84:1e:c5:66:da:32:d8:57:46:61:5a:02:be:ce:31:ab: 16:e4:8e:99:77:63:e6:0d:3e:d6:64:80:d2:15:5a:c2:e7:de: 7c:35:5d:36:ca:d0:c9:59:29:5a:b9:26:f7:01:b4:a5:38:49: d0:36:a4:c3:87:3d:dd:50:6e:98:f3:93:21:89:6d:7a:f8:36: 3e:f5:f6:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjUxMDE4MTk0OTAwWhcNMjUxMDI1MTk0OTAwWjAYMRYwFAYD VQQDEw02OGYzZWYyYy1kYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup9qAQS0XW8CxgPB6XCzBoTQ3PDaHKFJy6SDYf8OKBiJb6mIE+dSJeizMa6h JrJAkn4zQ41ripl1tnH9VLJubdyiR/eNPuYYe/0hWKjq/QpGjRHyujYUF71uJERX wizu9MNAbHZUiQFJ4bWVXUb3jLl+6qBIFUVtidYE4yeCPvLqOOplpan6T1+YbVhj 0+lw1KsQ4RzmrDeMHiIhxY2+z6SvvAeV6h5cLg1Qetmd0B7yPgX1P5aSu6I7fPIJ 6mCSVxuuzIoE/f30c2TX/IIA2WCpPEGxBdN6TsLrrfM9/ZRbwz52ANrp0x9elXmy 2Sn6mMuT5UrgrFsIRfDr0/9QqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiN7kGn Kb8Ucv3Z3RsgI7Q1Dx1/MB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkNDMS8xNDk4RkM5RTMxRTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZo VjdLRE82T3dJdzNpT0V3a0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhrVjeU3qWwrUbx7kPyoxuVqGDafG1I2mYVlLzyz9HQeTbBeL02D4B G6HFVSczhjMajJ1jn+XI6iDsyxtBZPXBkgkkSggp0o4XFxgTRdLWN+DKoQ+whfAu /rFTeCiUu7n/oMHw8pvKwxtiCNf6M5+7NYj7NMgDgz+Hz2CwfEd3/pXorohd76e9 xvb59CfEQW991oUvAjjjugxYM2oQX1HUgyJcampz7YQl93ADcibIUKrFy4RIcYQe xWbaMthXRmFaAr7OMasW5I6Zd2PmDT7WZIDSFVrC5958NV02ytDJWSlauSb3AbSl OEnQNqTDhz3dUG6Y85MhiW16+DY+9fZL -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:14 2025 by rpki-client