$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: AorBK8NCt5jrDx655t/18GDybjq0I3kjdJBCryrDNK0= Subject key identifier: F9:8A:5E:A5:11:46:1C:E7:DB:E2:19:D1:5F:D6:80:AD:B5:4D:81:10 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0654 Signing time: Sun 19 Oct 2025 00:12:16 +0000 Manifest this update: Sun 19 Oct 2025 00:12:16 +0000 Manifest next update: Sun 26 Oct 2025 00:12:16 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: KLWutA8p/1q37zDIIiQszRUESvwBk5DVkS4TmyxzxRA=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Oct 19 00:12:16 2025 GMT Not After : Oct 26 00:12:16 2025 GMT Subject: CN=68f42ce0-84e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:20:da:9c:d2:e1:27:ba:32:14:21:bf:bd:10: 0b:5d:47:bf:0c:c9:6f:f2:0b:cb:e1:2a:25:05:2e: 27:ef:e7:84:a5:7a:19:05:76:bb:69:b8:d8:7f:a4: 43:5a:d8:da:c1:0e:a4:06:f2:0f:05:81:85:46:85: 2c:9d:15:40:0a:97:bb:d3:08:44:02:ff:7e:4d:99: e4:7c:2b:20:b1:63:0a:12:da:f9:23:26:76:5a:e0: 5d:4b:85:2d:33:1e:40:d9:da:c3:51:c5:40:b2:8d: ea:dc:44:b6:b8:ac:11:7e:e4:d4:51:6e:1e:0b:2e: 27:e7:a3:73:f1:f6:dc:02:43:17:06:f8:8d:33:f1: d1:f4:ad:42:05:7a:8e:31:08:f5:bf:07:65:26:07: 08:61:06:20:ab:e7:52:2f:88:37:7e:a5:f4:ab:f0: 98:ad:3d:e0:5c:54:c4:34:2b:05:c0:cc:67:a3:a6: fc:57:73:9e:51:d5:95:ac:64:ad:19:3f:45:63:3f: 8b:7d:eb:47:fd:2a:3e:25:5a:82:c5:b8:ec:57:81: 53:57:8f:8d:1d:f7:0b:44:b0:45:9b:b1:84:11:29: bc:4a:85:c5:70:ab:67:bf:97:ab:0d:9e:07:bb:57: c6:6e:c6:66:d4:c8:4e:36:ba:c1:19:ba:83:b0:35: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8A:5E:A5:11:46:1C:E7:DB:E2:19:D1:5F:D6:80:AD:B5:4D:81:10 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7d:3f:aa:ac:f9:4b:aa:06:cc:49:1b:fc:ec:39:dc:6f:45: c0:e0:b0:69:bb:25:1c:18:ea:db:d2:1a:a0:f7:e9:7e:98:05: af:bb:f5:b1:02:88:12:e6:41:0b:87:45:5f:04:f7:55:42:f3: b1:37:1c:e0:bd:18:54:29:5a:f2:cb:83:42:15:98:0c:6f:d0: 5c:a2:03:dc:eb:b1:03:fa:8c:0e:fc:e3:e2:00:57:4a:a6:5a: 53:ca:98:c7:84:e1:85:9f:a9:d4:09:67:c4:5d:2b:67:9f:80: d7:14:ae:98:71:92:d3:d5:ce:5b:00:f8:43:40:98:48:e8:5d: 52:0d:ff:23:cf:8b:22:43:51:21:19:28:4e:70:6a:22:7c:43: 82:09:91:cb:00:34:ff:d0:6d:f5:14:8d:62:2e:c2:d4:32:03: 5a:c8:7c:5d:24:74:b6:cb:44:ae:33:d8:9b:51:94:4e:7c:80: 45:a9:8c:d5:fc:00:f3:40:2a:51:47:67:13:c5:d8:35:59:93: 04:13:b7:9f:7b:42:97:fc:b7:1d:e0:4d:c0:44:ec:97:fb:59: 72:10:62:96:87:03:2b:5d:2a:d9:cf:9c:45:b4:dd:75:cd:a1: 2e:b6:42:00:7b:b1:38:c7:52:4b:cd:fa:c7:16:53:15:f7:28: 3b:5b:0e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUxMDE5MDAxMjE2WhcNMjUxMDI2MDAxMjE2WjAYMRYwFAYD VQQDEw02OGY0MmNlMC04NGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyDanNLhJ7oyFCG/vRALXUe/DMlv8gvL4SolBS4n7+eEpXoZBXa7abjYf6RD WtjawQ6kBvIPBYGFRoUsnRVACpe70whEAv9+TZnkfCsgsWMKEtr5IyZ2WuBdS4Ut Mx5A2drDUcVAso3q3ES2uKwRfuTUUW4eCy4n56Nz8fbcAkMXBviNM/HR9K1CBXqO MQj1vwdlJgcIYQYgq+dSL4g3fqX0q/CYrT3gXFTENCsFwMxno6b8V3OeUdWVrGSt GT9FYz+LfetH/So+JVqCxbjsV4FTV4+NHfcLRLBFm7GEESm8SoXFcKtnv5erDZ4H u1fGbsZm1MhONrrBGbqDsDULDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmKXqUR Rhzn2+IZ0V/WgK21TYEQMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwfT+qrPlLqgbMSRv87Dncb0XA4LBpuyUcGOrb0hqg9+l+mAWvu/Wx AogS5kELh0VfBPdVQvOxNxzgvRhUKVryy4NCFZgMb9BcogPc67ED+owO/OPiAFdK plpTypjHhOGFn6nUCWfEXStnn4DXFK6YcZLT1c5bAPhDQJhI6F1SDf8jz4siQ1Eh GShOcGoifEOCCZHLADT/0G31FI1iLsLUMgNayHxdJHS2y0SuM9ibUZROfIBFqYzV /ADzQCpRR2cTxdg1WZMEE7efe0KX/Lcd4E3AROyX+1lyEGKWhwMrXSrZz5xFtN11 zaEutkIAe7E4x1JLzfrHFlMV9yg7Ww71 -----END CERTIFICATE-----Generated at Mon Oct 20 05:25:42 2025 by rpki-client