$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: /WHbSES33Pq5vsYm2J8E7aWeudZxrhAfg3A/a5Rv14c= Subject key identifier: 79:C7:98:9E:0E:A3:5E:7A:12:0C:CF:7C:A8:44:EE:FD:4A:1C:A8:71 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 06D7 Signing time: Sun 19 Oct 2025 01:56:47 +0000 Manifest this update: Sun 19 Oct 2025 01:56:46 +0000 Manifest next update: Sun 26 Oct 2025 01:56:46 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: h0wv2cQh4BVgmVuukYhdg/DkXE0c3vSGLhmeB4YZU48=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: g9az2eJZ2fUas4ad3d/QH9wXCAIefnJD9ePsqv2jusw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Oct 19 01:56:46 2025 GMT Not After : Oct 26 01:56:46 2025 GMT Subject: CN=68f4455f-4b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:06:f9:af:a8:54:e0:0d:76:db:7a:b4:13:91: 31:de:81:42:56:5a:ab:5b:9c:c1:1b:fb:6a:10:b0: e2:00:d2:64:09:a2:24:61:ee:44:45:ed:3a:47:4a: 92:20:64:30:e8:37:c6:ae:ef:6c:93:b1:a2:87:46: c5:9e:75:d1:4c:24:5d:d5:a5:9a:1e:6d:38:3a:e5: 6f:bd:4a:85:7b:36:ad:3b:06:24:4e:f1:17:65:6e: 6c:da:5d:28:8c:ea:39:8d:cd:33:25:e3:7f:fe:38: 20:c8:b9:94:8b:58:80:36:5d:4d:4f:22:b0:e1:82: 83:02:46:05:b0:ae:28:f8:5f:d3:73:d4:9b:eb:db: bf:cf:5f:2e:a1:9c:18:7b:31:06:cb:94:73:97:07: 9e:5b:16:83:59:f6:c6:bd:68:94:97:84:34:34:9e: fd:06:e0:66:53:d7:bb:63:84:4e:49:c2:b6:20:67: 55:62:06:4a:b6:09:cb:c6:0e:51:eb:c3:31:79:8b: 98:ea:7c:28:7d:64:93:fe:b7:c7:d8:0f:0b:ed:1d: 4e:22:bf:bc:98:49:66:c7:59:cf:6e:4a:c2:0e:81: 96:65:12:10:f7:fa:59:4d:7f:33:06:ed:c1:ab:c8: 84:40:9c:a5:39:3b:31:f0:5c:43:71:b3:a2:bb:a5: 0b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C7:98:9E:0E:A3:5E:7A:12:0C:CF:7C:A8:44:EE:FD:4A:1C:A8:71 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b5:33:b3:7d:b1:90:bf:5b:64:7f:03:1f:2a:fe:99:a9:06: de:2e:02:bd:5a:ef:18:0a:aa:99:f3:4b:8d:66:f6:f0:03:fb: b7:09:79:75:ac:2a:22:24:1c:b5:d5:06:d5:c8:e7:7d:29:fd: e7:f1:32:f2:ba:b1:6c:45:6d:5a:19:84:9f:12:a1:9f:0c:40: 0b:d1:3a:78:39:da:49:32:f1:50:b6:52:3a:dc:5b:eb:34:0a: b7:df:de:4a:13:b0:91:12:d4:c4:b2:d1:d3:65:8b:0e:c6:fd: c0:f7:1f:9c:9d:97:f9:a3:b9:ea:69:5a:35:62:dd:6c:68:68: d7:13:26:e6:42:d2:40:af:47:23:7c:2e:31:14:39:33:17:42: 64:e4:ff:5e:37:3a:87:81:9f:24:94:39:0b:17:63:2c:f7:4f: 49:49:43:2d:8d:b0:61:b8:45:c6:1b:85:f0:f6:b5:23:6d:48: fc:f1:7e:cb:6a:3f:a9:e7:19:51:cc:81:9e:5e:84:be:45:73: c6:5a:3c:dc:f8:04:a7:da:82:43:7b:ef:8c:58:b7:ea:43:d4: ce:06:a7:95:2d:e7:dd:12:bb:f9:05:39:93:71:4f:a8:70:9d: c2:46:d6:74:fc:f9:e1:6c:db:cd:fe:c0:95:43:54:bd:53:5a: 59:fc:a8:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUxMDE5MDE1NjQ2WhcNMjUxMDI2MDE1NjQ2WjAYMRYwFAYD VQQDEw02OGY0NDU1Zi00YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQb5r6hU4A1223q0E5Ex3oFCVlqrW5zBG/tqELDiANJkCaIkYe5ERe06R0qS IGQw6DfGru9sk7Gih0bFnnXRTCRd1aWaHm04OuVvvUqFezatOwYkTvEXZW5s2l0o jOo5jc0zJeN//jggyLmUi1iANl1NTyKw4YKDAkYFsK4o+F/Tc9Sb69u/z18uoZwY ezEGy5RzlweeWxaDWfbGvWiUl4Q0NJ79BuBmU9e7Y4ROScK2IGdVYgZKtgnLxg5R 68MxeYuY6nwofWST/rfH2A8L7R1OIr+8mElmx1nPbkrCDoGWZRIQ9/pZTX8zBu3B q8iEQJylOTsx8FxDcbOiu6ULFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnHmJ4O o156EgzPfKhE7v1KHKhxMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUtTOzfbGQv1tkfwMfKv6ZqQbeLgK9Wu8YCqqZ80uNZvbwA/u3CXl1 rCoiJBy11QbVyOd9Kf3n8TLyurFsRW1aGYSfEqGfDEAL0Tp4OdpJMvFQtlI63Fvr NAq3395KE7CREtTEstHTZYsOxv3A9x+cnZf5o7nqaVo1Yt1saGjXEybmQtJAr0cj fC4xFDkzF0Jk5P9eNzqHgZ8klDkLF2Ms909JSUMtjbBhuEXGG4Xw9rUjbUj88X7L aj+p5xlRzIGeXoS+RXPGWjzc+ASn2oJDe++MWLfqQ9TOBqeVLefdErv5BTmTcU+o cJ3CRtZ0/PnhbNvN/sCVQ1S9U1pZ/KiV -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:21 2025 by rpki-client