$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: GBg9Y+IryemNLPJyuNQZgphwJNNgomf/BI6XL3g0pLI= Subject key identifier: 89:13:B3:EB:A8:48:75:B5:CA:F7:CF:5F:AA:8B:2D:6D:B7:FD:E1:B0 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0611 Signing time: Sun 19 Oct 2025 00:27:44 +0000 Manifest this update: Sun 19 Oct 2025 00:27:44 +0000 Manifest next update: Sun 26 Oct 2025 00:27:44 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: FX4UdgRhPAxpSGVji+lmkD+//hE93B09P0QwuKVYrL0=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Oct 19 00:27:44 2025 GMT Not After : Oct 26 00:27:44 2025 GMT Subject: CN=68f43080-cbfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6e:bf:da:34:3c:2a:bc:6a:a6:2c:ea:53:99: 4a:a8:81:55:22:40:81:77:a1:e5:84:3e:16:1c:6d: 0e:56:8d:e5:7d:3a:db:83:ec:b2:d8:17:83:80:17: 5f:ec:54:f8:11:9d:2f:98:09:0c:58:a1:f1:6f:4a: 8c:9e:93:d2:5e:d9:ab:15:84:13:e6:59:8b:6a:e5: be:33:31:57:fe:4a:90:b7:c7:60:0f:25:82:74:08: 59:23:90:1a:28:7a:85:1e:57:a8:62:98:2e:ee:75: 25:29:9e:ca:a9:43:b8:46:cd:08:a9:a4:4f:74:a1: 00:62:0d:de:ad:4f:ae:9d:16:10:a0:7c:3c:0d:92: bb:bb:9e:8d:24:c6:a1:20:92:a1:d2:c4:ea:ae:da: 55:45:04:86:ab:6e:85:df:3c:8e:03:da:1b:0d:24: b8:3b:b9:33:3a:d6:36:a3:39:8d:91:ea:53:a1:77: b1:81:39:db:18:30:32:8b:f3:c6:8b:89:8d:3c:43: d0:a8:8a:e6:e3:e9:cb:c1:32:68:49:b0:57:50:e7: c7:e8:c5:49:58:18:97:3e:6e:2a:75:a6:e8:de:04: a4:be:ca:71:7d:01:f5:4b:94:8e:04:bd:fc:9b:17: 06:49:dd:93:ec:2c:6a:e2:94:a5:df:a9:bb:7f:4f: 1a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:13:B3:EB:A8:48:75:B5:CA:F7:CF:5F:AA:8B:2D:6D:B7:FD:E1:B0 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:98:79:0f:46:3d:72:6c:b7:1b:73:ec:0b:39:a3:f1:a0:84: c7:60:2e:09:d7:13:34:ed:0f:09:b9:1b:59:33:48:11:66:64: f6:b9:01:73:5b:9c:e6:d7:c2:92:a3:2b:b9:46:3e:4c:d9:e8: df:02:88:52:9a:11:0e:12:c6:aa:06:80:09:2c:b4:ca:8c:70: dc:d7:34:d9:ba:7e:d7:f3:ee:7f:09:f4:dc:16:42:ac:02:ff: e5:c5:9e:ac:5e:56:dc:c0:cc:f4:22:dd:54:96:08:f5:2f:4b: 82:b2:b2:16:ee:a3:ff:fe:78:b3:79:39:79:0c:00:f1:2e:98: f3:fa:ab:30:04:f6:8d:9c:3e:9d:02:ab:17:2e:14:1a:50:0a: ff:a4:ed:2c:bb:2a:2e:bd:a0:c9:5d:4e:f7:4b:bb:be:a8:64: 7e:1a:79:e0:fa:9a:bd:2c:b1:1c:7c:a8:d1:55:c3:b1:0f:bc: 95:18:69:fd:7d:76:38:07:ce:b6:c9:d6:0d:62:cd:4b:14:11: b3:e2:3e:46:06:38:86:4a:71:fe:fc:6d:eb:17:1c:97:00:5d: 85:fb:3c:b4:7f:a7:10:ad:a7:37:55:d1:fd:79:09:3c:9b:5d: 9b:58:c4:ce:4b:ef:aa:4f:93:dd:95:45:86:8e:62:ec:fd:3c: 3c:b1:24:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUxMDE5MDAyNzQ0WhcNMjUxMDI2MDAyNzQ0WjAYMRYwFAYD VQQDEw02OGY0MzA4MC1jYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA526/2jQ8KrxqpizqU5lKqIFVIkCBd6HlhD4WHG0OVo3lfTrbg+yy2BeDgBdf 7FT4EZ0vmAkMWKHxb0qMnpPSXtmrFYQT5lmLauW+MzFX/kqQt8dgDyWCdAhZI5Aa KHqFHleoYpgu7nUlKZ7KqUO4Rs0IqaRPdKEAYg3erU+unRYQoHw8DZK7u56NJMah IJKh0sTqrtpVRQSGq26F3zyOA9obDSS4O7kzOtY2ozmNkepToXexgTnbGDAyi/PG i4mNPEPQqIrm4+nLwTJoSbBXUOfH6MVJWBiXPm4qdabo3gSkvspxfQH1S5SOBL38 mxcGSd2T7Cxq4pSl36m7f08adQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkTs+uo SHW1yvfPX6qLLW23/eGwMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2mHkPRj1ybLcbc+wLOaPxoITHYC4J1xM07Q8JuRtZM0gRZmT2uQFz W5zm18KSoyu5Rj5M2ejfAohSmhEOEsaqBoAJLLTKjHDc1zTZun7X8+5/CfTcFkKs Av/lxZ6sXlbcwMz0It1Ulgj1L0uCsrIW7qP//nizeTl5DADxLpjz+qswBPaNnD6d AqsXLhQaUAr/pO0suyouvaDJXU73S7u+qGR+Gnng+pq9LLEcfKjRVcOxD7yVGGn9 fXY4B862ydYNYs1LFBGz4j5GBjiGSnH+/G3rFxyXAF2F+zy0f6cQrac3VdH9eQk8 m12bWMTOS++qT5PdlUWGjmLs/Tw8sSTE -----END CERTIFICATE-----Generated at Sun Oct 19 23:30:46 2025 by rpki-client