$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: iNi815FPmD2k1razyuvWlrRSt18TMEMmT609CKS24Zk= Subject key identifier: CC:98:84:7B:0A:AA:C3:71:69:DD:31:B9:C5:7E:EB:26:82:44:80:C7 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0490 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 048B Signing time: Sun 19 Oct 2025 01:54:10 +0000 Manifest this update: Sun 19 Oct 2025 01:54:09 +0000 Manifest next update: Sun 26 Oct 2025 01:54:09 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: ckuSDCs9eBFb58G/Er2tDYbRUSbAPDIK23UIrps3a/A=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Oct 19 01:54:09 2025 GMT Not After : Oct 26 01:54:09 2025 GMT Subject: CN=68f444c1-e63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1f:4f:8b:47:51:c7:55:f7:e9:6b:c5:a9:36: 15:bd:73:27:d5:d6:21:fc:e0:16:c1:75:2d:cb:fd: 06:bf:fe:89:92:da:97:20:e3:95:99:e1:ef:a2:92: e6:e9:4f:99:30:90:a7:1b:a3:83:c2:56:e4:56:96: 11:af:4b:2d:c1:e0:9a:fd:e2:46:74:82:e1:80:9e: d0:de:a6:3e:a6:a9:9c:e9:9b:64:e4:52:29:ce:0d: bd:45:af:ec:c7:60:52:98:1a:db:06:c0:f0:75:98: c6:44:0e:84:56:fd:c3:e6:d2:88:5c:21:69:8c:a4: b6:f3:bb:00:e7:96:ba:12:2a:20:c7:c5:c9:8c:90: e9:33:f4:13:a5:4a:cb:bb:80:5e:38:62:58:8e:9f: 21:ae:72:2b:e1:1f:0f:54:62:c1:39:74:41:ad:93: 95:aa:2f:83:9f:a5:ed:a6:f6:de:7b:54:9a:92:3a: 68:be:e9:bb:c5:67:92:5c:8d:dd:8b:19:44:e1:b2: 17:97:32:89:5d:aa:dd:97:50:d1:48:23:b4:9c:a1: 91:e1:0d:03:70:6a:fe:e0:48:0c:51:6d:c1:ae:56: 7f:b3:82:6c:85:81:9d:94:a9:59:49:f8:29:f5:2a: ee:7a:83:e3:8a:80:19:e4:4d:77:8c:39:d2:98:df: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:98:84:7B:0A:AA:C3:71:69:DD:31:B9:C5:7E:EB:26:82:44:80:C7 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2c:66:af:f6:22:26:58:93:e6:6e:0c:88:d5:a4:b1:37:0e: 75:08:e1:1b:38:52:71:76:51:6b:d6:57:48:f6:3e:e2:a3:4c: e9:ca:c8:41:ee:e0:34:ef:39:f2:ca:a4:e0:56:6e:35:8d:c9: c7:47:b8:64:53:bb:1f:99:79:d5:6f:2e:94:42:4e:ce:9c:4b: 7f:f3:a7:55:2b:f7:7a:a1:08:f2:8b:29:4b:a2:5f:cc:ab:ef: c0:39:d3:db:33:97:f4:18:7e:f0:7c:99:5f:42:88:36:09:15: de:c0:d5:0f:a3:0f:7f:4a:84:3e:f0:0c:0f:91:18:43:49:20: d7:59:c5:f2:46:85:48:7c:3b:25:bf:09:d2:2f:36:2a:0f:c3: 63:0a:c5:4c:fa:2d:84:8b:95:72:32:16:32:94:54:5a:2a:65: e6:f9:f5:a8:4f:e4:67:e4:eb:68:fa:78:24:13:94:f6:7b:d5: cd:5a:5b:1b:ef:15:49:94:5b:9b:24:8c:ab:b6:ef:a9:31:a8: 2b:a6:43:46:2d:6b:6a:41:b5:06:f3:ae:8e:48:29:cd:e9:5a: b5:71:ce:33:73:1c:e3:c9:4a:e9:6c:28:42:f9:34:a8:f0:cc: 25:4f:65:29:c5:ec:b5:ff:1c:bf:31:1d:ac:78:00:5b:ef:62: 4f:dc:80:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUxMDE5MDE1NDA5WhcNMjUxMDI2MDE1NDA5WjAYMRYwFAYD VQQDEw02OGY0NDRjMS1lNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyB9Pi0dRx1X36WvFqTYVvXMn1dYh/OAWwXUty/0Gv/6JktqXIOOVmeHvopLm 6U+ZMJCnG6ODwlbkVpYRr0stweCa/eJGdILhgJ7Q3qY+pqmc6Ztk5FIpzg29Ra/s x2BSmBrbBsDwdZjGRA6EVv3D5tKIXCFpjKS287sA55a6Eiogx8XJjJDpM/QTpUrL u4BeOGJYjp8hrnIr4R8PVGLBOXRBrZOVqi+Dn6Xtpvbee1Sakjpovum7xWeSXI3d ixlE4bIXlzKJXardl1DRSCO0nKGR4Q0DcGr+4EgMUW3BrlZ/s4JshYGdlKlZSfgp 9SrueoPjioAZ5E13jDnSmN9edQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyYhHsK qsNxad0xucV+6yaCRIDHMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmLGav9iImWJPmbgyI1aSxNw51COEbOFJxdlFr1ldI9j7io0zpyshB 7uA07znyyqTgVm41jcnHR7hkU7sfmXnVby6UQk7OnEt/86dVK/d6oQjyiylLol/M q+/AOdPbM5f0GH7wfJlfQog2CRXewNUPow9/SoQ+8AwPkRhDSSDXWcXyRoVIfDsl vwnSLzYqD8NjCsVM+i2Ei5VyMhYylFRaKmXm+fWoT+Rn5Oto+ngkE5T2e9XNWlsb 7xVJlFubJIyrtu+pMagrpkNGLWtqQbUG866OSCnN6Vq1cc4zcxzjyUrpbChC+TSo 8MwlT2Upxey1/xy/MR2seABb72JP3IAz -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:41 2025 by rpki-client