$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: Wtz2u6fKKYNQkIID5Bb4qfYKM9F+SvFAe4heeSwGUqc= Subject key identifier: C5:0A:84:2E:42:62:19:82:7A:3B:70:9D:EB:B5:42:A3:20:21:68:20 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: C3 Signing time: Sun 19 Oct 2025 08:59:11 +0000 Manifest this update: Sun 19 Oct 2025 08:59:11 +0000 Manifest next update: Sun 26 Oct 2025 08:59:11 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: 7LuQDayhK3ACZ8mPvJ9/3TmLDrBHiqQ7lAZu89py2Pk=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Oct 19 08:59:11 2025 GMT Not After : Oct 26 08:59:11 2025 GMT Subject: CN=68f4a85f-79bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:7a:d0:0f:32:3e:08:a2:92:0e:62:b1:cf:4e: d6:5f:ba:03:93:a3:24:76:a6:52:8c:60:7b:d3:67: 06:f2:43:30:64:34:03:5a:41:2a:d0:86:e5:26:57: 94:2a:f6:9c:18:46:e9:64:e2:37:66:16:c0:79:13: bb:3f:45:c0:df:b9:ec:6f:10:b2:25:05:01:08:57: 03:c9:6d:56:bc:d3:38:79:35:28:73:42:b8:c1:d1: 08:7f:d9:7b:23:59:c6:28:45:b5:b4:6c:2f:a5:ef: 02:b9:85:87:69:49:43:45:38:3c:be:0e:08:68:ae: 94:fd:28:52:16:83:e8:09:04:94:60:63:5d:9f:41: eb:ea:0f:55:18:fa:82:0a:e7:39:61:61:b5:bf:1f: a6:d6:21:93:af:ee:ec:ce:1b:96:fb:d3:ea:4a:1a: 78:04:c6:6a:dd:42:62:0e:4d:9c:f2:66:86:a7:e4: e2:d1:da:b0:9a:65:68:4b:54:15:6d:4a:f4:7c:9e: aa:8c:a9:54:52:c3:fa:03:a7:a2:7e:94:83:75:7a: f2:38:6c:4d:36:f7:8a:dd:e0:8f:81:fe:58:d6:9b: 33:4c:e1:f2:91:38:91:32:33:2c:00:d2:7f:43:91: 1c:e6:40:8f:0a:ec:6f:02:fd:33:71:63:1d:93:40: 50:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0A:84:2E:42:62:19:82:7A:3B:70:9D:EB:B5:42:A3:20:21:68:20 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:b9:39:67:ee:22:96:fe:56:9a:c3:00:5b:33:71:9e:f6:a1: 33:21:d2:94:22:d1:12:c4:6a:22:2c:c8:b5:cd:b8:bc:49:27: f0:ab:71:62:2e:c5:fd:ca:64:e6:f7:57:84:cd:c5:c3:cc:9f: 96:dc:7d:40:8d:9d:e2:b1:71:61:e6:ad:13:67:23:b9:8a:68: a9:15:b0:41:5c:95:70:41:2d:51:08:73:7b:7d:d0:e0:2e:5e: e7:b2:97:f7:82:ef:cf:44:e1:99:2c:0c:a8:11:cb:a7:95:9c: 43:84:f5:0a:32:07:51:0c:3e:17:2f:88:99:a2:a7:df:20:38: ab:6e:ad:26:a4:d6:b6:6f:0d:1f:dc:e0:25:78:db:a4:4a:d1: 42:9b:78:b3:c1:64:54:23:40:4a:88:9b:25:a4:17:54:a1:b4: b0:40:d2:bd:5d:98:77:11:ed:10:16:ed:a9:71:fc:0d:6f:9e: ff:34:61:21:60:3c:3b:e3:0a:19:4b:04:74:e1:45:be:e8:d9: e3:e3:9e:fd:ef:cc:a4:13:85:c2:c0:f6:e6:bf:82:b9:22:8a: 71:67:d8:37:9b:22:09:27:bf:47:ce:38:76:01:33:4e:3a:1e: 40:73:4d:e9:56:37:0b:dd:4b:f9:13:4a:a2:94:21:d9:bf:65: 4b:b4:61:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUxMDE5MDg1OTExWhcNMjUxMDI2MDg1OTExWjAYMRYwFAYD VQQDEw02OGY0YTg1Zi03OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA93rQDzI+CKKSDmKxz07WX7oDk6MkdqZSjGB702cG8kMwZDQDWkEq0IblJleU KvacGEbpZOI3ZhbAeRO7P0XA37nsbxCyJQUBCFcDyW1WvNM4eTUoc0K4wdEIf9l7 I1nGKEW1tGwvpe8CuYWHaUlDRTg8vg4IaK6U/ShSFoPoCQSUYGNdn0Hr6g9VGPqC Cuc5YWG1vx+m1iGTr+7szhuW+9PqShp4BMZq3UJiDk2c8maGp+Ti0dqwmmVoS1QV bUr0fJ6qjKlUUsP6A6eifpSDdXryOGxNNveK3eCPgf5Y1pszTOHykTiRMjMsANJ/ Q5Ec5kCPCuxvAv0zcWMdk0BQyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUKhC5C YhmCejtwneu1QqMgIWggMB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGuTln7iKW/laawwBbM3Ge9qEzIdKUItESxGoiLMi1zbi8SSfwq3Fi LsX9ymTm91eEzcXDzJ+W3H1AjZ3isXFh5q0TZyO5imipFbBBXJVwQS1RCHN7fdDg Ll7nspf3gu/PROGZLAyoEcunlZxDhPUKMgdRDD4XL4iZoqffIDirbq0mpNa2bw0f 3OAleNukStFCm3izwWRUI0BKiJslpBdUobSwQNK9XZh3Ee0QFu2pcfwNb57/NGEh YDw74woZSwR04UW+6Nnj457978ykE4XCwPbmv4K5IopxZ9g3myIJJ79Hzjh2ATNO Oh5Ac03pVjcL3Uv5E0qilCHZv2VLtGEd -----END CERTIFICATE-----Generated at Tue Oct 21 07:13:45 2025 by rpki-client