$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: 5tPk6CF/HQddDZY7o3KgQIcCnrBVSmxWD/3ErmoARV8= Subject key identifier: 9E:77:8D:01:2C:84:22:B1:51:44:F8:96:72:71:99:D4:0F:2F:04:20 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C87 Signing time: Mon 20 Oct 2025 16:28:09 +0000 Manifest this update: Mon 20 Oct 2025 16:28:08 +0000 Manifest next update: Mon 27 Oct 2025 16:28:08 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: GYPyKMNxArewm3TTCZkw+ZyFFHD4LZg4eUiS5Yeugbw=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7319 (0x1c97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Oct 20 16:28:08 2025 GMT Not After : Oct 27 16:28:08 2025 GMT Subject: CN=68f66318-d796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:54:cc:d3:69:8a:e4:3b:38:79:2c:10:1f:2f: 38:2d:f9:59:30:9e:6f:81:c8:6c:50:c6:ed:4e:20: a1:e2:b0:71:3d:29:93:2b:1d:15:7f:62:9a:63:61: d4:a0:a8:09:d4:16:f8:6d:8d:19:c1:e6:18:80:80: c3:d6:46:14:d3:e3:8e:49:49:bf:2b:3f:87:8d:90: 4d:06:a6:54:32:8a:77:af:93:fd:5b:d0:62:41:5f: cd:d5:13:93:03:f4:8b:96:a6:63:4c:d6:ca:89:24: 35:a3:e4:57:c8:aa:21:1b:db:1c:c4:16:01:75:b2: 28:c4:d2:ce:28:b2:0c:b4:c2:a6:36:dc:d6:25:20: 21:ea:03:1f:b8:14:05:81:af:cd:78:0e:dc:e5:3d: 4e:4c:47:7d:29:45:7a:a7:43:49:0b:41:37:9b:55: 21:6b:9a:26:d0:36:6b:b3:4d:38:de:a9:a8:54:c0: bf:47:89:fb:ea:2e:02:15:dc:54:85:e4:84:8a:e3: cb:ca:45:d9:a8:1c:55:78:d0:f4:cd:27:67:fa:77: 0b:74:c4:0c:10:a9:ea:06:31:f1:f4:c2:99:af:2c: 14:3a:ba:fa:24:32:f5:a8:3f:dc:b9:af:64:a8:5c: 4a:59:90:01:67:9f:3b:d9:bc:45:c3:64:52:d8:c9: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:77:8D:01:2C:84:22:B1:51:44:F8:96:72:71:99:D4:0F:2F:04:20 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:31:c0:6c:46:86:a9:2d:00:e8:e2:ec:d6:7c:9a:c9:de:71: 49:6b:69:20:4b:5f:8e:a8:b1:25:23:0a:aa:0e:50:c4:fc:68: a9:20:8f:e7:3b:8a:c8:71:05:19:af:b5:5f:13:09:e7:e0:c4: d4:38:8c:61:55:a3:98:a4:ab:42:50:c2:be:ea:a6:63:c6:af: 24:f2:52:a7:31:5b:8c:36:c4:e6:19:5a:85:0e:c7:90:05:b4: 57:5a:e3:7f:42:74:11:b2:bb:e3:8c:9e:4d:4f:44:28:a8:15: c9:f8:85:47:75:9c:68:69:3a:2a:24:87:23:ee:5e:06:82:e8: 7c:40:63:8a:35:77:ce:5b:39:eb:ce:1e:62:84:16:a1:54:7d: 5d:ef:2e:5b:16:63:3a:89:f7:dc:6c:31:61:fc:fb:4c:a0:7a: 87:11:fb:82:aa:67:18:26:cc:f2:cd:5a:49:5f:39:99:cc:ee: 98:c2:22:8e:55:23:0b:35:99:d4:6c:bd:61:b0:b2:5f:62:7b: 40:b4:d1:f6:f6:36:77:e8:da:c0:81:c0:5a:3e:6b:0b:73:be: 48:23:61:42:2b:f9:e4:9d:f7:d9:5b:21:d3:85:ad:38:34:9e: d2:ac:0f:15:0c:16:7f:f6:52:10:1b:88:65:5b:c1:c4:45:ab: 1e:5b:bc:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUxMDIwMTYyODA4WhcNMjUxMDI3MTYyODA4WjAYMRYwFAYD VQQDEw02OGY2NjMxOC1kNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1TM02mK5Ds4eSwQHy84LflZMJ5vgchsUMbtTiCh4rBxPSmTKx0Vf2KaY2HU oKgJ1Bb4bY0ZweYYgIDD1kYU0+OOSUm/Kz+HjZBNBqZUMop3r5P9W9BiQV/N1ROT A/SLlqZjTNbKiSQ1o+RXyKohG9scxBYBdbIoxNLOKLIMtMKmNtzWJSAh6gMfuBQF ga/NeA7c5T1OTEd9KUV6p0NJC0E3m1Uha5om0DZrs0043qmoVMC/R4n76i4CFdxU heSEiuPLykXZqBxVeND0zSdn+ncLdMQMEKnqBjHx9MKZrywUOrr6JDL1qD/cua9k qFxKWZABZ5872bxFw2RS2MnZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ53jQEs hCKxUUT4lnJxmdQPLwQgMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBMcBsRoapLQDo4uzWfJrJ3nFJa2kgS1+OqLElIwqqDlDE/GipII/n O4rIcQUZr7VfEwnn4MTUOIxhVaOYpKtCUMK+6qZjxq8k8lKnMVuMNsTmGVqFDseQ BbRXWuN/QnQRsrvjjJ5NT0QoqBXJ+IVHdZxoaToqJIcj7l4Gguh8QGOKNXfOWznr zh5ihBahVH1d7y5bFmM6iffcbDFh/PtMoHqHEfuCqmcYJszyzVpJXzmZzO6YwiKO VSMLNZnUbL1hsLJfYntAtNH29jZ36NrAgcBaPmsLc75II2FCK/nknffZWyHTha04 NJ7SrA8VDBZ/9lIQG4hlW8HERaseW7y3 -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:46 2025 by rpki-client