$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: PNIONEVRo7XKRNVExXi5l405+wL+b8THNvWvSWm+xUk= Subject key identifier: 6B:47:A2:69:AB:E6:B1:D2:8B:36:2A:23:08:61:F0:B2:4A:2B:63:3F Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: EA Signing time: Sun 19 Oct 2025 08:21:48 +0000 Manifest this update: Sun 19 Oct 2025 08:21:47 +0000 Manifest next update: Sun 26 Oct 2025 08:21:47 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: nyskF4p9XbUm5o/BZFXQsHR0MO2RqiYNIrfmjW4+wQU=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Oct 19 08:21:47 2025 GMT Not After : Oct 26 08:21:47 2025 GMT Subject: CN=68f49f9b-81a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e9:21:1d:be:fa:bd:1b:fe:06:2d:1f:9c:49: 0f:cc:fb:67:10:7f:a8:c9:2b:de:e9:54:59:44:b3: bf:83:25:97:0a:f3:77:0e:5a:59:9d:33:39:c2:51: f0:da:84:61:43:e1:65:bb:e3:63:13:89:33:9c:b0: 04:79:f7:cc:b7:44:31:65:19:13:80:f4:35:dc:6b: ef:53:21:a5:7c:0f:09:48:4c:95:14:49:12:73:22: 7d:43:f8:64:3b:1d:84:06:ee:f3:dc:36:ba:c8:db: 89:38:a6:6f:b2:c4:2a:ff:1c:01:a0:0c:87:5e:24: 65:2c:40:23:02:68:ba:cd:1b:32:73:57:03:a5:c9: f4:4b:f9:db:db:be:eb:5a:61:9b:fb:dc:d0:d4:4a: bc:9c:1a:78:83:e9:8f:25:b0:3c:1a:c9:1e:a3:69: da:4d:20:e6:9c:6e:aa:77:c2:47:21:ee:b9:82:7c: df:53:aa:20:4f:20:7b:fa:d6:64:2d:92:b3:ec:f7: a4:b4:2c:5f:6c:71:d5:45:9b:4d:58:ef:4b:2d:20: 7f:c1:e6:de:99:e6:21:73:d5:4f:93:d0:f5:b6:ff: 82:a8:fe:b6:c4:ae:73:e1:62:ed:6c:8c:ab:56:58: 3d:1b:c9:ef:9a:85:61:b6:37:5b:95:09:50:b6:49: 26:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:47:A2:69:AB:E6:B1:D2:8B:36:2A:23:08:61:F0:B2:4A:2B:63:3F X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:56:32:75:4d:a7:90:35:ee:ac:a1:e5:f4:88:5a:c0:dd:79: cb:6b:2d:93:31:f7:53:f2:f4:44:99:06:9a:4e:f7:52:88:fb: af:9b:a3:5e:82:cd:e1:09:2f:74:1d:b1:49:73:db:41:7c:55: 3c:e3:8c:09:ce:e4:a1:56:10:7d:52:f1:a7:24:66:3c:4c:64: f1:bd:4c:1f:25:28:00:7a:03:87:db:e5:a4:1f:70:50:06:74: 05:44:86:c5:12:32:db:92:33:57:7e:08:13:83:c0:71:86:89: c0:b9:8f:a9:24:e1:2e:1d:b2:b5:b9:2b:83:ae:9b:c9:a4:3c: 11:d6:34:cf:5b:b4:66:1d:c1:e5:3c:71:ca:43:b3:99:e6:8f: c4:6a:e6:33:41:74:59:c3:a5:85:58:40:c5:03:6e:9a:fd:62: df:2b:89:60:d2:ad:68:46:1f:ca:e4:04:ea:28:9a:dd:33:ee: 25:3e:f8:e4:97:c4:b0:e9:e0:b8:7a:74:16:43:eb:c9:b2:1f: 03:ed:81:6d:03:92:13:eb:90:97:ea:81:2a:0c:e6:42:76:26: 83:66:ff:85:3b:fa:ef:61:fb:f6:12:b2:03:b8:a7:b3:de:95: 07:73:ef:6c:de:14:6f:56:59:47:bd:1c:18:dd:2c:4c:2b:b7: b5:d5:98:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUxMDE5MDgyMTQ3WhcNMjUxMDI2MDgyMTQ3WjAYMRYwFAYD VQQDEw02OGY0OWY5Yi04MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ukhHb76vRv+Bi0fnEkPzPtnEH+oySve6VRZRLO/gyWXCvN3DlpZnTM5wlHw 2oRhQ+Flu+NjE4kznLAEeffMt0QxZRkTgPQ13GvvUyGlfA8JSEyVFEkScyJ9Q/hk Ox2EBu7z3Da6yNuJOKZvssQq/xwBoAyHXiRlLEAjAmi6zRsyc1cDpcn0S/nb277r WmGb+9zQ1Eq8nBp4g+mPJbA8Gskeo2naTSDmnG6qd8JHIe65gnzfU6ogTyB7+tZk LZKz7PektCxfbHHVRZtNWO9LLSB/webemeYhc9VPk9D1tv+CqP62xK5z4WLtbIyr Vlg9G8nvmoVhtjdblQlQtkkmvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtHommr 5rHSizYqIwhh8LJKK2M/MB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrVjJ1TaeQNe6soeX0iFrA3XnLay2TMfdT8vREmQaaTvdSiPuvm6Ne gs3hCS90HbFJc9tBfFU844wJzuShVhB9UvGnJGY8TGTxvUwfJSgAegOH2+WkH3BQ BnQFRIbFEjLbkjNXfggTg8BxhonAuY+pJOEuHbK1uSuDrpvJpDwR1jTPW7RmHcHl PHHKQ7OZ5o/EauYzQXRZw6WFWEDFA26a/WLfK4lg0q1oRh/K5ATqKJrdM+4lPvjk l8Sw6eC4enQWQ+vJsh8D7YFtA5IT65CX6oEqDOZCdiaDZv+FO/rvYfv2ErIDuKez 3pUHc+9s3hRvVllHvRwY3SxMK7e11Zgr -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:52 2025 by rpki-client