$ rpki-client -vvf rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft File: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft (raw, json) Hash identifier: /b+qXpaaT8FovIwOG0TTZ3LpSYiHWwYIIpfNcDNPFj4= Subject key identifier: F0:B3:32:11:3E:68:CB:8F:F7:73:53:C6:00:85:59:48:47:9C:7E:CA Authority key identifier: 80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 Certificate issuer: /CN=A9134A42/serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft Manifest number: 84 Signing time: Sun 19 Oct 2025 10:00:25 +0000 Manifest this update: Sun 19 Oct 2025 10:00:24 +0000 Manifest next update: Sun 26 Oct 2025 10:00:24 +0000 Files and hashes: 1: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl (hash: 9adiQ4IU8BpB5ljv05oyRcjEpc0GymZajOg76CrO9hw=) 2: 89040F5A341011F0808A991DC4F9AE02.roa (hash: aQCWDBoOh5osM5C7MBD0kh6o6WsN7hx2kjcWDkx53es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134A42, serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Validity Not Before: Oct 19 10:00:24 2025 GMT Not After : Oct 26 10:00:24 2025 GMT Subject: CN=68f4b6b8-c764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e1:d5:e2:49:ae:61:19:4b:af:ab:a6:75:b8: 06:95:1f:39:4c:8a:51:6e:80:f3:9a:a8:1c:55:80: 04:72:42:78:96:bf:5c:8f:fb:e6:27:82:d4:99:89: 84:91:cf:76:52:b1:77:b3:e0:29:e9:c6:e6:2d:36: 0b:31:24:44:45:ea:25:38:45:a3:ea:93:7a:ea:a2: ab:86:ca:93:3a:28:8e:91:0b:ff:f0:40:66:07:9d: 49:90:e3:cc:ab:61:21:54:14:44:49:5a:3a:f5:ea: 10:1f:89:92:0f:45:92:0b:3a:b1:87:c0:a0:3a:3c: d9:f8:3d:58:84:46:83:df:7e:42:b4:70:f0:d6:12: d3:b1:eb:cc:64:e2:21:bb:fc:c6:50:ba:0a:56:d7: 8f:2a:7e:ff:78:0e:e7:83:56:9d:32:cf:3b:a3:1b: 08:5a:ea:11:51:2e:5e:5e:57:61:05:65:1c:d5:1d: c7:54:9d:db:6e:51:a6:fc:d0:16:27:c9:b9:9c:ba: fc:a2:5b:b3:dd:1f:11:2b:00:eb:e6:f0:84:13:39: d5:a4:7b:aa:f0:b7:08:26:17:b0:ed:28:f4:96:f1: 7e:23:98:e0:94:23:ef:56:4a:0b:fc:44:83:4f:4b: 0f:19:30:b7:8b:72:a8:f6:c0:2e:34:bd:70:8f:c1: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B3:32:11:3E:68:CB:8F:F7:73:53:C6:00:85:59:48:47:9C:7E:CA X509v3 Authority Key Identifier: keyid:80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:ca:90:23:46:4b:45:22:aa:ef:f3:15:1a:eb:60:84:5e:6b: f5:c2:91:41:31:0f:9a:61:f3:75:c7:f0:2f:3c:b4:db:e5:c5: 36:52:bc:de:4d:bb:a6:43:b2:e2:35:50:a4:f4:12:59:67:94: 81:b0:c6:36:67:c7:58:cc:c0:f0:e3:16:e2:be:a1:d0:7f:de: 46:6a:87:23:0c:bd:eb:70:72:3e:4a:ad:3e:a7:ce:86:67:08: c8:44:ba:ee:a6:c3:21:4a:2e:d3:50:b4:b4:9f:c8:2f:c5:a9: 3b:a0:e9:c5:30:b3:19:6e:46:1f:dd:7d:9b:b2:a3:11:b3:bf: 40:f7:53:d2:5a:77:28:49:f3:82:83:9a:ca:3c:78:6c:ca:c4: b3:a3:4e:e7:c0:53:09:c4:11:9b:33:a1:57:33:a3:af:26:ad: 17:65:d8:a5:9b:3c:10:fe:09:da:a0:62:d8:a4:10:a2:9a:25: 86:83:bb:41:f9:9b:6f:60:44:47:af:69:5f:39:af:8c:cd:35: 0d:b0:41:70:b2:c4:43:c9:b1:d8:db:5b:90:5b:e8:fb:9a:c0: b0:a5:ca:c2:b3:fc:9e:f3:e4:a7:d9:59:2e:51:c5:48:63:24: 9e:50:7d:4a:7d:f2:5b:d5:96:fb:e0:46:61:0d:bd:25:e9:9c: bb:8b:52:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRBNDIxMTAvBgNVBAUTKDgwQjE4QjgxRDQ3QjYxNzcxMzA0RTBGNzYxMEQxMUE3 QzM0MDYxMjMwHhcNMjUxMDE5MTAwMDI0WhcNMjUxMDI2MTAwMDI0WjAYMRYwFAYD VQQDEw02OGY0YjZiOC1jNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OHV4kmuYRlLr6umdbgGlR85TIpRboDzmqgcVYAEckJ4lr9cj/vmJ4LUmYmE kc92UrF3s+Ap6cbmLTYLMSREReolOEWj6pN66qKrhsqTOiiOkQv/8EBmB51JkOPM q2EhVBRESVo69eoQH4mSD0WSCzqxh8CgOjzZ+D1YhEaD335CtHDw1hLTsevMZOIh u/zGULoKVtePKn7/eA7ng1adMs87oxsIWuoRUS5eXldhBWUc1R3HVJ3bblGm/NAW J8m5nLr8oluz3R8RKwDr5vCEEznVpHuq8LcIJhew7Sj0lvF+I5jglCPvVkoL/ESD T0sPGTC3i3Ko9sAuNL1wj8E7TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCzMhE+ aMuP93NTxgCFWUhHnH7KMB8GA1UdIwQYMBaAFICxi4HUe2F3EwTg92ENEafDQGEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEE0Mi8xRkIwRjY3NkVB OEMxMUVGODhDOTA4NUFDNEY5QUUwMi9nTEdMZ2RSN1lYY1RCT0QzWVEwUnA4TkFZ U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dMR0xnZFI3WVhjVEJPRDNZUTBScDhOQVlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEE0Mi8xRkIwRjY3NkVBOEMxMUVGODhDOTA4NUFDNEY5QUUwMi9nTEdMZ2RSN1lY Y1RCT0QzWVEwUnA4TkFZU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHypAjRktFIqrv8xUa62CEXmv1wpFBMQ+aYfN1x/AvPLTb5cU2Urze TbumQ7LiNVCk9BJZZ5SBsMY2Z8dYzMDw4xbivqHQf95GaocjDL3rcHI+Sq0+p86G ZwjIRLrupsMhSi7TULS0n8gvxak7oOnFMLMZbkYf3X2bsqMRs79A91PSWncoSfOC g5rKPHhsysSzo07nwFMJxBGbM6FXM6OvJq0XZdilmzwQ/gnaoGLYpBCimiWGg7tB +ZtvYERHr2lfOa+MzTUNsEFwssRDybHY21uQW+j7msCwpcrCs/ye8+Sn2VkuUcVI YySeUH1KffJb1Zb74EZhDb0l6Zy7i1Kj -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:01 2025 by rpki-client