$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: CwYLjEGaLGdwYyyP4EJQ9uYZG3X8XyFofmNq6P3VKMg= Subject key identifier: B0:8B:92:1B:C4:FD:05:87:80:89:90:82:D3:EB:54:09:2F:2A:23:63 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 012F Signing time: Sun 19 Oct 2025 07:23:22 +0000 Manifest this update: Sun 19 Oct 2025 07:23:21 +0000 Manifest next update: Sun 26 Oct 2025 07:23:21 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: 0oMeN5qTR1qIxnj3WfY2JlnsdCESZnsgKxQoFHbu1CM=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Oct 19 07:23:21 2025 GMT Not After : Oct 26 07:23:21 2025 GMT Subject: CN=68f491ea-bac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:af:1f:51:13:f4:a2:31:c9:8f:47:6f:1e:74: bf:8d:14:fc:86:1b:bb:82:33:96:46:57:0a:81:fa: aa:24:6b:12:88:7d:01:b9:a3:cf:3c:d5:b9:82:b9: 4f:18:c7:15:14:ec:d8:d7:dd:78:96:a6:a6:17:6c: 42:ca:93:6b:2b:8d:4a:b0:ad:23:98:91:5b:e7:1e: e8:7b:c5:19:8a:bc:b2:08:f8:77:bf:39:d6:2c:d2: 2a:f9:9c:a2:ae:4b:17:be:2b:9a:ec:87:bb:f5:5c: 98:e1:f9:33:97:1e:2c:0b:3a:d4:31:96:f8:40:7b: a7:0b:07:b7:b9:6d:b9:57:59:32:f2:e1:75:33:df: 68:7b:35:7a:91:e0:db:65:18:b2:9d:f0:8d:fc:74: 29:ec:99:69:99:46:89:0d:8d:15:07:c7:26:61:26: 8f:2d:24:1d:3f:5b:6a:a5:bc:b2:25:92:ec:17:6a: 06:f2:2c:2f:9e:63:b1:dd:d0:6d:f1:d5:05:4b:43: 68:fe:00:36:59:a1:46:aa:c5:76:5c:79:47:4f:69: 18:e9:46:52:c6:56:a0:7c:87:4b:6a:2b:cc:e8:e5: cf:7f:34:97:4a:81:ea:ff:79:d4:44:44:67:8f:3a: ff:97:b5:52:e1:81:43:35:8f:1d:6e:42:01:2b:32: 16:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8B:92:1B:C4:FD:05:87:80:89:90:82:D3:EB:54:09:2F:2A:23:63 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:0e:aa:e2:e2:e2:3c:3a:bb:9d:82:32:85:b4:f6:5b:7f:05: a3:63:c9:d2:a5:d9:49:9d:6c:0f:69:a7:44:f2:f6:ca:e3:53: 0b:3c:06:ce:96:4b:15:5c:c2:18:db:65:1f:fe:b0:a7:f7:56: f6:10:eb:81:19:d0:4b:91:4b:96:99:25:bd:c4:2e:a5:3c:a2: 80:14:04:c6:f6:54:81:81:d5:f6:45:d0:94:dd:20:4a:8d:63: fe:67:e4:e3:1e:be:4d:98:f3:be:2e:5f:27:2d:60:0a:ca:d1: 7f:b0:44:10:b5:18:6e:ba:6e:e2:b9:e1:44:2f:27:76:44:ff: 24:09:10:3e:de:4f:30:f9:a0:83:81:38:67:59:80:27:ca:fe: 31:63:b1:43:2f:f5:15:6e:ae:e2:6b:2c:dc:1f:d5:7f:77:e1: a3:0e:4e:6f:48:66:65:84:4c:a6:1d:f5:93:97:c9:be:1f:07: 05:9b:8b:84:a3:9d:ec:be:5d:b7:86:dc:31:0a:a3:7c:0b:ab: ba:b2:72:d7:64:ed:fc:08:e7:25:73:26:dc:46:c3:64:21:ff: 06:ff:1e:50:c8:31:72:f3:b8:c7:d0:57:8d:78:de:67:d9:a6: 55:7f:95:cf:a7:1b:1a:0e:21:e2:8e:bd:10:a7:aa:ea:20:f4: 2d:cf:74:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUxMDE5MDcyMzIxWhcNMjUxMDI2MDcyMzIxWjAYMRYwFAYD VQQDEw02OGY0OTFlYS1iYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAza8fURP0ojHJj0dvHnS/jRT8hhu7gjOWRlcKgfqqJGsSiH0BuaPPPNW5grlP GMcVFOzY1914lqamF2xCypNrK41KsK0jmJFb5x7oe8UZiryyCPh3vznWLNIq+Zyi rksXviua7Ie79VyY4fkzlx4sCzrUMZb4QHunCwe3uW25V1ky8uF1M99oezV6keDb ZRiynfCN/HQp7JlpmUaJDY0VB8cmYSaPLSQdP1tqpbyyJZLsF2oG8iwvnmOx3dBt 8dUFS0No/gA2WaFGqsV2XHlHT2kY6UZSxlagfIdLaivM6OXPfzSXSoHq/3nURERn jzr/l7VS4YFDNY8dbkIBKzIW5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCLkhvE /QWHgImQgtPrVAkvKiNjMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8Dqri4uI8OrudgjKFtPZbfwWjY8nSpdlJnWwPaadE8vbK41MLPAbO lksVXMIY22Uf/rCn91b2EOuBGdBLkUuWmSW9xC6lPKKAFATG9lSBgdX2RdCU3SBK jWP+Z+TjHr5NmPO+Ll8nLWAKytF/sEQQtRhuum7iueFELyd2RP8kCRA+3k8w+aCD gThnWYAnyv4xY7FDL/UVbq7iayzcH9V/d+GjDk5vSGZlhEymHfWTl8m+HwcFm4uE o53svl23htwxCqN8C6u6snLXZO38COclcybcRsNkIf8G/x5QyDFy87jH0FeNeN5n 2aZVf5XPpxsaDiHijr0Qp6rqIPQtz3RJ -----END CERTIFICATE-----Generated at Tue Oct 21 12:02:28 2025 by rpki-client