$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft File: anyGILARkTWk4pZxECAuepIQ_XY.mft (raw, json) Hash identifier: 9NxOo2gRgUzfTilnTYP4ppaE92+e6An9qPTAPcCe+5g= Subject key identifier: 28:96:76:75:4C:84:67:A7:B2:DF:83:73:32:BB:87:46:D7:E9:4B:51 Authority key identifier: 6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 Certificate issuer: /CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft Manifest number: 0CF2 Signing time: Sat 18 Oct 2025 18:45:46 +0000 Manifest this update: Sat 18 Oct 2025 18:45:45 +0000 Manifest next update: Sat 25 Oct 2025 18:45:45 +0000 Files and hashes: 1: anyGILARkTWk4pZxECAuepIQ_XY.crl (hash: aDaeXfZoidZjOQH4Ct8GTfUSlXf50fQvWlhBM/nl9JM=) 2: 3ED2E738F0C511E9AD7DCC11C4F9AE02.roa (hash: Wr1nIVXklBpPXHRfvPiRNdEC8EzroDNqpMylbn6Uxs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2659, serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Validity Not Before: Oct 18 18:45:45 2025 GMT Not After : Oct 25 18:45:45 2025 GMT Subject: CN=68f3e05a-fb05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:13:11:aa:1d:96:0e:e8:ef:ee:c6:e4:1a:33: 0e:2b:03:d0:a2:7c:0f:cf:d8:27:30:ac:63:c5:89: 8f:db:26:3f:89:37:7d:18:55:46:d2:c8:f0:6e:f6: 30:39:0a:40:e0:f6:0c:29:1a:44:bd:1e:a3:d7:bb: 3c:53:4e:4a:44:f8:b3:e4:fb:50:2d:e5:e0:7e:49: b1:1f:c0:0b:33:54:5b:84:c6:32:00:9f:37:a2:e3: 94:db:70:b4:73:e6:b1:a0:39:8e:f4:4d:97:64:2f: 7f:a6:1f:d3:8e:9f:21:c4:fa:5e:26:d7:91:66:22: 51:e6:bb:33:5d:ed:79:51:9b:50:7e:10:ee:39:32: 6c:d7:8f:2a:4d:51:6e:f0:d6:6e:8f:29:93:4b:57: b5:58:b3:30:35:e6:e1:a4:89:51:bf:eb:13:c1:76: 0d:24:d0:9b:4c:df:87:ff:81:4e:b0:8c:82:4f:2f: 5d:ad:96:78:b4:c8:f8:8f:a9:9a:db:1e:be:60:29: f5:50:09:0b:bd:36:0f:dd:38:ab:b9:09:d8:30:e5: db:d3:e5:a2:f0:12:a1:cc:a2:c0:68:5d:45:cb:98: 78:1a:f3:53:02:7a:99:43:c7:5e:74:43:ca:f7:46: a9:70:ec:11:9f:54:33:e0:ad:15:ba:4b:61:66:08: ff:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:96:76:75:4C:84:67:A7:B2:DF:83:73:32:BB:87:46:D7:E9:4B:51 X509v3 Authority Key Identifier: keyid:6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:26:d8:c5:5e:34:da:4c:81:18:b3:aa:96:b9:54:a4:87:f8: 1c:2e:e3:2d:a9:1a:06:cf:c3:b6:04:37:54:6a:e2:9a:3a:6c: 56:04:1d:2a:83:8d:ec:e0:a2:6c:e8:97:45:95:49:fd:6a:57: 89:c9:b2:81:32:cb:a6:02:b7:71:ee:0a:6d:66:a2:e6:06:2c: 9c:9f:d2:14:20:e7:e2:a1:19:75:82:fb:50:8a:fb:30:4b:17: 9b:b4:ff:f8:9d:b9:9e:ef:3c:92:45:6f:b6:4e:c5:73:5b:f5: 93:8a:6a:18:9e:c6:88:13:4f:87:df:96:56:8f:e5:6c:de:43: b5:85:e0:c2:0e:a3:05:a4:e4:d4:75:76:2b:0b:d4:6f:08:be: 2c:68:3d:04:68:16:3a:c8:cc:23:e7:c4:74:d6:14:26:97:c1: 8f:82:a3:66:5f:71:99:d0:43:59:03:2c:be:56:97:c2:e9:41: 39:18:6c:ca:92:46:75:ec:ce:b5:d9:6b:e0:41:8e:3e:2b:51: d7:f7:66:d4:80:ee:50:f2:de:ae:f7:76:c4:dc:a3:ab:ed:e4: 52:82:d9:0f:66:4b:50:5a:07:4a:12:30:ff:c9:0f:4d:18:d3: 44:65:2c:c7:39:1f:02:4f:52:ac:10:4e:8a:d8:90:08:82:ef: f8:b7:4a:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NTkxMTAvBgNVBAUTKDZBN0M4NjIwQjAxMTkxMzVBNEUyOTY3MTEwMjAyRTdB OTIxMEZENzYwHhcNMjUxMDE4MTg0NTQ1WhcNMjUxMDI1MTg0NTQ1WjAYMRYwFAYD VQQDEw02OGYzZTA1YS1mYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBMRqh2WDujv7sbkGjMOKwPQonwPz9gnMKxjxYmP2yY/iTd9GFVG0sjwbvYw OQpA4PYMKRpEvR6j17s8U05KRPiz5PtQLeXgfkmxH8ALM1RbhMYyAJ83ouOU23C0 c+axoDmO9E2XZC9/ph/Tjp8hxPpeJteRZiJR5rszXe15UZtQfhDuOTJs148qTVFu 8NZujymTS1e1WLMwNebhpIlRv+sTwXYNJNCbTN+H/4FOsIyCTy9drZZ4tMj4j6ma 2x6+YCn1UAkLvTYP3TiruQnYMOXb0+Wi8BKhzKLAaF1Fy5h4GvNTAnqZQ8dedEPK 90apcOwRn1Qz4K0VukthZgj/IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiWdnVM hGenst+DczK7h0bX6UtRMB8GA1UdIwQYMBaAFGp8hiCwEZE1pOKWcRAgLnqSEP12 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY1OS9DNDY4RTlDNkYw QzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtUV2s0cFp4RUNBdWVwSVFf WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FueUdJTEFSa1RXazRwWnhFQ0F1ZXBJUV9YWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY1OS9DNDY4RTlDNkYwQzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtU V2s0cFp4RUNBdWVwSVFfWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyJtjFXjTaTIEYs6qWuVSkh/gcLuMtqRoGz8O2BDdUauKaOmxWBB0q g43s4KJs6JdFlUn9aleJybKBMsumArdx7gptZqLmBiycn9IUIOfioRl1gvtQivsw SxebtP/4nbme7zySRW+2TsVzW/WTimoYnsaIE0+H35ZWj+Vs3kO1heDCDqMFpOTU dXYrC9RvCL4saD0EaBY6yMwj58R01hQml8GPgqNmX3GZ0ENZAyy+VpfC6UE5GGzK kkZ17M612WvgQY4+K1HX92bUgO5Q8t6u93bE3KOr7eRSgtkPZktQWgdKEjD/yQ9N GNNEZSzHOR8CT1KsEE6K2JAIgu/4t0oQ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:13 2025 by rpki-client