$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft File: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft (raw, json) Hash identifier: Gugu/RTc7YhMQPICmvfH6YBSSiyqz93fejyVpzX2rLA= Subject key identifier: 7D:4A:2D:EB:9A:B2:58:98:81:7E:70:5B:8B:AE:D3:A6:15:18:82:8E Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft Manifest number: 0241 Signing time: Sun 19 Oct 2025 04:01:18 +0000 Manifest this update: Sun 19 Oct 2025 04:01:17 +0000 Manifest next update: Sun 26 Oct 2025 04:01:17 +0000 Files and hashes: 1: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl (hash: Tifbacf+SKRUm9LimdL7Bz8I3BvRX4LfNYD8Dn54wmc=) 2: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (hash: zW5H6X8uqPfx0Xsy4TR9o3a+IpV9YO9mu4z+ktesoLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7, serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: Oct 19 04:01:17 2025 GMT Not After : Oct 26 04:01:17 2025 GMT Subject: CN=68f4628e-2d1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:26:22:5c:d7:93:ef:69:41:74:c1:93:70: 16:af:d5:a3:54:ac:35:5d:50:5b:cc:e3:c5:fa:81: 54:a9:51:9a:e1:47:de:30:65:70:15:2a:a8:97:4e: b1:01:a8:88:91:20:a6:d9:64:c5:fc:10:4f:fa:2b: 15:cb:28:1c:ff:fe:d4:02:8f:c4:48:4e:81:09:bb: c5:71:84:2b:ea:61:97:19:4c:fd:27:39:4c:e2:a7: 69:a6:04:ff:b5:9e:06:b9:d5:be:1d:0e:1c:eb:d5: 58:c5:49:99:ee:d2:15:f8:67:a4:d9:79:ea:a6:6f: 39:7d:29:7a:a3:5a:2e:05:9e:f4:f4:21:81:a1:99: 4c:e2:fc:9e:c9:bb:eb:8c:ca:26:57:c9:26:b1:6b: 43:c4:58:13:85:78:ad:a5:1b:fd:63:6a:06:11:98: 9c:2b:30:37:73:0d:fa:21:c6:b7:a4:22:42:3a:46: e3:79:7f:38:6e:93:e7:05:13:b7:29:8d:19:e7:96: 6d:97:ba:fe:2c:5d:a9:94:8e:9c:ad:eb:f0:7c:66: 24:ca:1e:25:be:46:dc:20:27:77:e0:0b:78:db:3e: a9:1d:12:5e:f2:b3:f0:68:e9:51:dc:5a:61:71:02: f1:ac:38:e9:41:de:d6:30:b9:84:b4:d7:15:c3:02: 99:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:4A:2D:EB:9A:B2:58:98:81:7E:70:5B:8B:AE:D3:A6:15:18:82:8E X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:5f:d5:31:ca:b3:1c:1f:e8:68:e7:09:6f:68:c5:94:97:7f: 84:77:21:85:9a:c6:4d:5b:a5:a5:97:28:9a:16:0e:d9:06:cc: 18:fd:4a:c4:81:de:18:c4:4d:48:ac:c7:ad:b8:07:0a:0a:ac: fa:d0:0f:5e:ae:f8:cb:6e:1e:72:64:9c:ad:67:44:1d:71:1d: ff:f2:a1:7e:6d:d5:80:99:d7:eb:6e:f5:dc:23:fa:52:28:25: b7:a6:8c:ff:22:c9:f8:07:95:a6:a6:bf:97:7b:5d:51:60:3f: 91:4b:9c:ec:16:47:26:33:24:29:33:4b:1b:95:5e:4f:30:ed: 38:fe:02:6d:69:34:f3:c6:43:9f:ac:d0:24:87:20:5b:a0:53: 1c:01:eb:10:6d:71:6e:50:11:f7:5c:74:f5:9e:7a:ac:03:37: 55:11:be:db:3d:c9:0a:96:03:dc:30:87:42:75:b3:bd:82:0e: 9d:3f:0c:73:0f:43:a7:10:a0:0d:24:a4:c9:fa:d0:de:6b:b8: bf:a3:c9:c6:ae:02:b8:88:0f:22:e2:0c:9c:6f:fd:8b:8f:97: 11:ea:10:a6:6d:b8:2b:9d:61:55:77:b3:dd:f2:ad:be:15:14: 51:24:72:54:b1:1a:be:e2:4c:1d:6f:28:79:9f:3f:26:7c:dd: 22:82:25:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjUxMDE5MDQwMTE3WhcNMjUxMDI2MDQwMTE3WjAYMRYwFAYD VQQDEw02OGY0NjI4ZS0yZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXAmIlzXk+9pQXTBk3AWr9WjVKw1XVBbzOPF+oFUqVGa4UfeMGVwFSqol06x AaiIkSCm2WTF/BBP+isVyygc//7UAo/ESE6BCbvFcYQr6mGXGUz9JzlM4qdppgT/ tZ4GudW+HQ4c69VYxUmZ7tIV+Gek2Xnqpm85fSl6o1ouBZ709CGBoZlM4vyeybvr jMomV8kmsWtDxFgThXitpRv9Y2oGEZicKzA3cw36Ica3pCJCOkbjeX84bpPnBRO3 KY0Z55Ztl7r+LF2plI6crevwfGYkyh4lvkbcICd34At42z6pHRJe8rPwaOlR3Fph cQLxrDjpQd7WMLmEtNcVwwKZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1KLeua sliYgX5wW4uu06YVGIKOMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTBENy84RkVGODQwNDNFQ0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1U QUt3Rm5HVThLUWhDOXFaZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3X9UxyrMcH+ho5wlvaMWUl3+EdyGFmsZNW6WllyiaFg7ZBswY/UrE gd4YxE1IrMetuAcKCqz60A9ervjLbh5yZJytZ0QdcR3/8qF+bdWAmdfrbvXcI/pS KCW3poz/Isn4B5Wmpr+Xe11RYD+RS5zsFkcmMyQpM0sblV5PMO04/gJtaTTzxkOf rNAkhyBboFMcAesQbXFuUBH3XHT1nnqsAzdVEb7bPckKlgPcMIdCdbO9gg6dPwxz D0OnEKANJKTJ+tDea7i/o8nGrgK4iA8i4gycb/2Lj5cR6hCmbbgrnWFVd7Pd8q2+ FRRRJHJUsRq+4kwdbyh5nz8mfN0igiXb -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:30 2025 by rpki-client