$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: AghdBkujAbtHmuQbJwqTnH3571V3P0/+eeG7OBtCQag= Subject key identifier: 31:04:A5:41:19:36:3F:C8:AA:46:1C:DF:14:72:47:56:8A:8C:56:67 Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: B2 Signing time: Sun 19 Oct 2025 09:17:51 +0000 Manifest this update: Sun 19 Oct 2025 09:17:50 +0000 Manifest next update: Sun 26 Oct 2025 09:17:50 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: MW6AmuNaTylU/m0MJPJ+BUcHdkkv+Pn/nw+rG+Qi5KM=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: iLpw/uJbge7uZ/WmLMuhiuh6b3ClTayyECZNu36JGVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Oct 19 09:17:50 2025 GMT Not After : Oct 26 09:17:50 2025 GMT Subject: CN=68f4acbf-93d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:56:7e:ca:9d:c7:43:f0:ac:fb:c5:8e:d0:f7: fa:2a:84:b6:bc:f7:a1:2c:37:77:d2:fd:ac:53:90: 02:66:a7:12:55:a5:6f:74:18:51:4a:ca:50:3b:79: 51:36:b0:8c:2d:33:ac:86:14:72:18:ad:7d:35:e8: d6:e7:f1:04:f2:a7:89:87:db:a5:e8:e3:1c:02:b2: eb:f8:ac:a8:3d:c0:63:90:a8:9d:dc:15:c4:e4:c7: 13:d1:a7:31:98:fa:e1:26:4e:cb:40:91:bb:75:14: 03:0e:2d:ed:5b:ad:94:ce:6d:94:9b:77:ad:57:8b: 5b:0f:db:b6:da:2b:6a:3d:30:d6:0c:de:90:d3:91: 8a:d8:98:d7:32:f6:d7:57:95:c8:31:21:9a:17:f2: 7b:c5:7f:50:76:91:bd:6f:ae:65:af:b5:ee:c2:9d: 89:3d:d4:87:a3:93:44:70:0b:3a:80:73:82:d3:13: a8:cb:79:7b:ef:c6:a5:6f:b9:26:89:7a:c4:67:96: e3:84:96:d6:32:5f:de:52:34:0b:69:17:2d:96:98: 75:13:92:20:65:e9:ea:4d:66:4d:ec:5b:e4:91:08: 59:57:b0:53:31:f6:fd:aa:ac:c3:6f:a5:3b:59:19: 55:bb:96:00:b2:82:32:de:85:07:b3:d6:b8:a1:89: a9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:04:A5:41:19:36:3F:C8:AA:46:1C:DF:14:72:47:56:8A:8C:56:67 X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:3d:68:0b:c8:a3:04:b2:cd:79:8f:3c:67:d8:f6:0a:58:95: 9f:35:3a:55:eb:d9:ba:fa:fa:a9:6b:74:43:7a:61:cc:7a:04: 55:01:e4:3d:40:4c:fa:49:8d:3a:85:2f:53:b3:e3:0a:64:29: 4d:e5:8e:8e:be:b3:28:9c:ea:35:ed:db:f6:d8:32:3d:f2:ac: e1:a9:71:61:b0:db:ee:e9:a0:0b:8e:73:e3:66:c5:eb:36:a3: f0:0d:ed:f7:26:f2:0c:55:3c:05:24:c3:58:b3:3e:87:3d:d9: f8:48:f1:52:28:3c:b2:79:ab:6c:b9:ee:62:79:86:c4:0b:1d: 2b:fd:f1:7d:fe:ac:a5:d9:14:6e:90:48:b8:36:52:94:2b:d9: af:39:7e:84:cf:41:c0:74:b8:fb:fa:44:06:fc:93:93:b4:63: aa:d6:eb:68:ab:02:46:9f:1e:a1:84:f0:cf:d6:e2:bb:4f:3c: d4:22:a5:13:5e:4c:1f:76:28:39:00:0b:d6:22:a2:c8:2e:6b: 98:15:1b:c9:c1:e6:b5:ae:e1:bc:d1:7d:f7:f2:be:49:0f:13: a7:98:ae:35:f6:ed:35:9f:a3:50:7d:66:ea:cf:b7:d4:a3:74: eb:9f:cc:8c:04:06:6b:53:f0:04:5e:bd:9a:ca:8c:d5:25:9b: a3:27:1f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRTIxMTAvBgNVBAUTKDgwN0U2ODhBQTUwQkQzRTM4QkUzMUI1RDRDNEUwNjA4 MDRFQjE1REMwHhcNMjUxMDE5MDkxNzUwWhcNMjUxMDI2MDkxNzUwWjAYMRYwFAYD VQQDEw02OGY0YWNiZi05M2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1Z+yp3HQ/Cs+8WO0Pf6KoS2vPehLDd30v2sU5ACZqcSVaVvdBhRSspQO3lR NrCMLTOshhRyGK19NejW5/EE8qeJh9ul6OMcArLr+KyoPcBjkKid3BXE5McT0acx mPrhJk7LQJG7dRQDDi3tW62Uzm2Um3etV4tbD9u22itqPTDWDN6Q05GK2JjXMvbX V5XIMSGaF/J7xX9QdpG9b65lr7Xuwp2JPdSHo5NEcAs6gHOC0xOoy3l778alb7km iXrEZ5bjhJbWMl/eUjQLaRctlph1E5IgZenqTWZN7FvkkQhZV7BTMfb9qqzDb6U7 WRlVu5YAsoIy3oUHs9a4oYmpiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEEpUEZ Nj/IqkYc3xRyR1aKjFZnMB8GA1UdIwQYMBaAFIB+aIqlC9Pji+MbXUxOBggE6xXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBFMi8yQjRCQjQyRUEy NUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAtT0w0eHRkVEU0R0NBVHJG ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjBFMi8yQjRCQjQyRUEyNUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAt T0w0eHRkVEU0R0NBVHJGZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWPWgLyKMEss15jzxn2PYKWJWfNTpV69m6+vqpa3RDemHMegRVAeQ9 QEz6SY06hS9Ts+MKZClN5Y6OvrMonOo17dv22DI98qzhqXFhsNvu6aALjnPjZsXr NqPwDe33JvIMVTwFJMNYsz6HPdn4SPFSKDyyeatsue5ieYbECx0r/fF9/qyl2RRu kEi4NlKUK9mvOX6Ez0HAdLj7+kQG/JOTtGOq1utoqwJGnx6hhPDP1uK7TzzUIqUT Xkwfdig5AAvWIqLILmuYFRvJwea1ruG80X338r5JDxOnmK419u01n6NQfWbqz7fU o3Trn8yMBAZrU/AEXr2ayozVJZujJx/Z -----END CERTIFICATE-----Generated at Tue Oct 21 05:21:40 2025 by rpki-client