$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: IR47wI+7yFKibZKLozymeH1xegWoYO+2s810qNU0+LY= Subject key identifier: BF:47:A0:DA:A2:D7:45:00:4E:09:9B:85:88:6F:0B:8D:BB:1A:20:D5 Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 02BF Signing time: Sun 19 Oct 2025 03:35:17 +0000 Manifest this update: Sun 19 Oct 2025 03:35:17 +0000 Manifest next update: Sun 26 Oct 2025 03:35:17 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: Y4cBQm4mBDofASrRY09UwT38kmz/tyzAOwH3LqN7NoA=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: Oct 19 03:35:17 2025 GMT Not After : Oct 26 03:35:17 2025 GMT Subject: CN=68f45c75-4964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fa:ef:c7:16:52:73:3a:ee:c3:6a:1d:e2:de: 20:17:59:c1:53:ac:91:b8:27:3c:10:e4:1c:25:56: b3:45:64:45:f7:2b:60:25:46:cc:c2:82:e9:1e:a1: ec:cf:10:cb:c8:2e:11:c8:c5:6e:64:99:cc:d2:00: 27:39:ca:92:25:39:16:d5:e9:81:2e:9e:3c:40:1a: 4f:f2:fd:31:28:ef:7b:5e:8b:7f:af:d1:ff:80:04: e6:63:8b:27:2e:0e:c7:d9:d8:0e:bb:82:29:80:93: 56:dd:58:6d:55:66:04:dc:20:b5:78:7b:a1:98:f9: 5d:fd:06:2e:8a:64:eb:21:d2:96:b9:3d:43:7d:ea: 04:a2:89:f7:3c:a0:53:36:c2:88:6b:60:f2:9c:8f: 28:b5:22:a3:06:1d:ca:32:5c:54:9d:4b:3d:74:6b: d1:d0:db:50:00:75:da:b2:97:15:77:80:4a:b4:8a: 39:39:54:34:0f:fa:42:d7:ac:df:47:a9:d6:ee:ba: 42:9c:db:1e:00:24:74:bf:30:60:83:6c:36:ec:f5: 53:9e:f0:13:26:2a:86:95:e5:a0:03:28:7d:1d:f8: 87:49:7f:a9:11:07:6d:50:2e:47:b1:23:db:db:25: 56:c4:6c:02:2e:4b:ae:6f:2e:f8:7f:e8:c3:a2:02: 9f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:47:A0:DA:A2:D7:45:00:4E:09:9B:85:88:6F:0B:8D:BB:1A:20:D5 X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f3:d5:a8:e0:b7:c1:a8:86:bb:3d:a2:64:71:8c:fb:0c:75: 79:43:45:87:20:47:f7:a4:20:46:02:78:a0:8f:5f:56:3a:2c: 60:13:1c:d3:c6:3a:d9:19:e2:18:08:40:50:6e:aa:cc:b1:08: b9:a0:da:59:d9:80:91:b7:88:36:e5:b1:dd:38:84:5d:9e:76: b4:12:a4:7c:e5:6a:bf:ce:1a:40:92:f2:5d:b6:1a:4e:1a:a2: 55:5b:b0:a2:4f:36:1c:c6:bd:7c:66:6c:94:cc:8b:e2:15:9c: ee:67:af:1b:2e:e2:81:12:ae:f7:83:e7:90:26:4d:5e:3e:47: 2d:a2:81:4e:4f:b2:12:51:50:7b:7c:3d:6a:84:29:d8:65:08: f2:b7:5c:e9:54:10:b4:fa:81:ac:29:4d:35:f9:73:a1:c3:5b: 1a:ed:8c:2c:66:ee:02:2f:47:a6:d5:1c:cb:a6:20:c4:2b:1d: 91:0b:77:07:84:86:0c:4d:37:fd:46:d7:08:8d:a3:92:e4:76: c5:6b:3a:75:57:91:65:e9:6a:0f:5b:2d:17:a3:24:53:32:92: 1c:ca:eb:05:b0:a2:bc:01:e3:7f:0e:a3:0e:23:83:df:a3:55: 03:38:28:90:46:86:47:bb:f6:ec:d8:52:1c:96:2c:53:83:89: a4:32:41:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUxMDE5MDMzNTE3WhcNMjUxMDI2MDMzNTE3WjAYMRYwFAYD VQQDEw02OGY0NWM3NS00OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/rvxxZSczruw2od4t4gF1nBU6yRuCc8EOQcJVazRWRF9ytgJUbMwoLpHqHs zxDLyC4RyMVuZJnM0gAnOcqSJTkW1emBLp48QBpP8v0xKO97Xot/r9H/gATmY4sn Lg7H2dgOu4IpgJNW3VhtVWYE3CC1eHuhmPld/QYuimTrIdKWuT1DfeoEoon3PKBT NsKIa2DynI8otSKjBh3KMlxUnUs9dGvR0NtQAHXaspcVd4BKtIo5OVQ0D/pC16zf R6nW7rpCnNseACR0vzBgg2w27PVTnvATJiqGleWgAyh9HfiHSX+pEQdtUC5HsSPb 2yVWxGwCLkuuby74f+jDogKfwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9HoNqi 10UATgmbhYhvC427GiDVMB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo89Wo4LfBqIa7PaJkcYz7DHV5Q0WHIEf3pCBGAnigj19WOixgExzT xjrZGeIYCEBQbqrMsQi5oNpZ2YCRt4g25bHdOIRdnna0EqR85Wq/zhpAkvJdthpO GqJVW7CiTzYcxr18ZmyUzIviFZzuZ68bLuKBEq73g+eQJk1ePkctooFOT7ISUVB7 fD1qhCnYZQjyt1zpVBC0+oGsKU01+XOhw1sa7YwsZu4CL0em1RzLpiDEKx2RC3cH hIYMTTf9RtcIjaOS5HbFazp1V5Fl6WoPWy0XoyRTMpIcyusFsKK8AeN/DqMOI4Pf o1UDOCiQRoZHu/bs2FIclixTg4mkMkGQ -----END CERTIFICATE-----Generated at Mon Oct 20 07:06:56 2025 by rpki-client