$ rpki-client -vvf rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft File: gCfg71TQC2H3E28JcZv89MRTNAU.mft (raw, json) Hash identifier: UAYgcjaQSA0plrVGvdu1nhF4gauOveGB9lDJqfD8IzU= Subject key identifier: A2:07:7B:1C:71:6D:8C:58:87:FB:4D:FB:7D:90:D8:67:2D:58:A7:AB Authority key identifier: 80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 Certificate issuer: /CN=A9182CFC/serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft Manifest number: 3504 Signing time: Sat 18 Oct 2025 14:29:44 +0000 Manifest this update: Sat 18 Oct 2025 14:29:43 +0000 Manifest next update: Sat 25 Oct 2025 14:29:43 +0000 Files and hashes: 1: gCfg71TQC2H3E28JcZv89MRTNAU.crl (hash: 996LHeSQw5QPJbyRpCkMfuhoEOz01+8hpLxso3wl3q8=) 2: A29253A69DAA11F08407D362C4F9AE02.roa (hash: TeAb/CJ1jG0ZHG8y7zd70vALsFMm/SQtIQeZj/RK5xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182CFC, serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Validity Not Before: Oct 18 14:29:43 2025 GMT Not After : Oct 25 14:29:43 2025 GMT Subject: CN=68f3a458-d3d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:e1:f0:9d:42:d7:b4:f4:30:89:56:6c:1c: 29:c5:f5:2f:72:5b:d3:c7:5b:0c:4f:c2:4f:56:35: c3:6f:d5:77:70:77:35:a7:ef:20:bb:31:8f:9a:b3: 30:04:31:c0:8a:0e:8a:d6:24:ec:fd:9f:40:76:48: 95:b9:a3:a0:6a:ac:b7:ec:91:e5:bb:82:48:f0:f6: 1f:2d:19:ec:d8:5c:3f:34:fe:1a:b5:74:7e:4e:59: 95:33:bf:dc:f3:88:97:22:fb:9c:ce:1e:d6:b0:ed: df:85:91:8b:89:3f:03:b8:93:63:33:07:ed:b5:3b: 24:16:4c:ee:93:05:de:e6:10:22:8a:c9:09:04:f3: bb:86:01:a4:df:1c:12:8f:af:83:62:0e:b1:2c:1a: 65:c3:fb:4c:03:42:e1:77:39:23:cd:da:de:23:85: 0d:bc:f2:12:44:a1:fa:90:a6:98:b5:d7:ab:7b:08: 9f:9b:a0:a5:71:77:af:e2:72:ac:c3:2d:bf:f0:4b: 16:be:98:33:02:8f:91:e8:f0:1c:07:87:e7:ac:d1: dc:48:9b:c1:cf:3c:f3:8f:c9:89:6f:f3:35:6d:49: 28:2c:91:db:67:3a:d9:51:5c:56:36:e3:75:0b:8c: e7:dc:7f:00:bd:7d:6d:c4:cc:e3:02:4b:1c:c0:17: 99:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:07:7B:1C:71:6D:8C:58:87:FB:4D:FB:7D:90:D8:67:2D:58:A7:AB X509v3 Authority Key Identifier: keyid:80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ee:c3:f7:d1:58:6e:42:8b:52:d4:2f:c6:5a:73:58:e7:8c: b2:b8:6d:ee:31:84:2e:78:3a:b1:0e:a0:7b:9d:a0:dd:5c:83: 61:96:82:ef:a9:16:c9:1f:11:f8:f9:d2:4e:e2:50:68:e6:0c: 5b:85:9c:76:7b:ec:10:84:a8:f2:ab:85:42:df:c8:25:dd:fc: 6c:20:7e:5c:e4:a2:3d:ba:15:de:1c:5a:3c:ef:55:94:1b:97: 55:25:67:f2:99:a3:79:a4:2a:5a:42:5e:d3:2e:69:c2:fd:e1: dc:1b:d7:2f:68:74:e5:31:5b:20:73:6e:ac:a3:72:34:ce:5d: 2e:1f:d6:38:24:73:7e:30:6a:f7:75:23:82:be:29:8b:06:0f: df:7b:22:a9:c1:ef:64:89:7a:01:0e:22:10:cf:57:91:33:61: 09:c8:10:f4:fd:ea:d4:13:4e:06:6f:bf:73:29:df:f8:8a:da: ae:89:cd:a2:33:f0:31:4a:e1:fc:9a:a4:98:7f:1b:40:19:c9: 93:f9:13:d3:9d:76:2a:12:40:f8:cf:68:af:55:42:e6:d0:bb: 3f:00:e5:f4:67:1c:82:f8:09:20:60:b1:a3:b6:cb:cc:8a:53: 6b:04:0a:2c:58:fe:e4:0c:68:b9:05:4e:a1:3c:02:e8:72:86: 35:88:b6:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJDRkMxMTAvBgNVBAUTKDgwMjdFMEVGNTREMDBCNjFGNzEzNkYwOTcxOUJGQ0Y0 QzQ1MzM0MDUwHhcNMjUxMDE4MTQyOTQzWhcNMjUxMDI1MTQyOTQzWjAYMRYwFAYD VQQDEw02OGYzYTQ1OC1kM2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6Ph8J1C17T0MIlWbBwpxfUvclvTx1sMT8JPVjXDb9V3cHc1p+8guzGPmrMw BDHAig6K1iTs/Z9AdkiVuaOgaqy37JHlu4JI8PYfLRns2Fw/NP4atXR+TlmVM7/c 84iXIvuczh7WsO3fhZGLiT8DuJNjMwfttTskFkzukwXe5hAiiskJBPO7hgGk3xwS j6+DYg6xLBplw/tMA0LhdzkjzdreI4UNvPISRKH6kKaYtderewifm6ClcXev4nKs wy2/8EsWvpgzAo+R6PAcB4fnrNHcSJvBzzzzj8mJb/M1bUkoLJHbZzrZUVxWNuN1 C4zn3H8AvX1txMzjAkscwBeZuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIHexxx bYxYh/tN+32Q2GctWKerMB8GA1UdIwQYMBaAFIAn4O9U0Ath9xNvCXGb/PTEUzQF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkNGQy9CRjg0QjU3NDFE ODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMySDNFMjhKY1p2ODlNUlRO QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDZmc3MVRRQzJIM0UyOEpjWnY4OU1SVE5BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkNGQy9CRjg0QjU3NDFEODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMy SDNFMjhKY1p2ODlNUlROQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI7sP30VhuQotS1C/GWnNY54yyuG3uMYQueDqxDqB7naDdXINhloLv qRbJHxH4+dJO4lBo5gxbhZx2e+wQhKjyq4VC38gl3fxsIH5c5KI9uhXeHFo871WU G5dVJWfymaN5pCpaQl7TLmnC/eHcG9cvaHTlMVsgc26so3I0zl0uH9Y4JHN+MGr3 dSOCvimLBg/feyKpwe9kiXoBDiIQz1eRM2EJyBD0/erUE04Gb79zKd/4itquic2i M/AxSuH8mqSYfxtAGcmT+RPTnXYqEkD4z2ivVULm0Ls/AOX0ZxyC+AkgYLGjtsvM ilNrBAosWP7kDGi5BU6hPALocoY1iLan -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:13 2025 by rpki-client