$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: spONzwVkEbgLzXWlGoLqSYLBJ9S8JMNfx25VJZ4iuJA= Subject key identifier: 9E:11:88:80:D8:53:6E:72:D4:6E:AE:8C:76:7C:C6:B8:48:60:EC:27 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34D3 Signing time: Sat 18 Oct 2025 14:45:18 +0000 Manifest this update: Sat 18 Oct 2025 14:45:17 +0000 Manifest next update: Sat 25 Oct 2025 14:45:17 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: zP4eAiMgRI3GfPPprTGecXUZZsAk9aJZuUf/zIXXY+o=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13532 (0x34dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Oct 18 14:45:17 2025 GMT Not After : Oct 25 14:45:17 2025 GMT Subject: CN=68f3a7fd-ed6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:65:3b:57:0b:ca:75:f0:4e:25:49:fb:1a:80: 2a:64:17:7c:47:b6:3b:02:09:79:9c:72:58:1f:fd: ab:fb:72:ed:8a:59:0a:d6:de:b2:5c:26:51:50:ea: b0:8c:9d:01:76:7b:99:4d:2f:97:6d:23:45:4d:97: ae:b6:f3:02:98:18:d5:51:69:8b:88:31:08:98:4d: 5c:89:ef:f0:10:73:7e:ae:ef:bd:5c:6c:9e:a1:9a: 35:01:1a:47:4c:1d:e9:6a:16:db:4b:1b:51:8b:e4: cb:76:75:63:65:90:4f:e6:a5:9f:06:dc:39:41:e7: f6:f5:d8:a3:19:b4:f7:7d:88:7a:95:dd:72:68:eb: cc:8b:b1:6e:57:e7:97:20:74:a6:2f:71:4c:39:e3: 73:7d:6c:db:0b:7f:81:76:b9:0f:70:28:57:e1:52: e1:4e:be:9f:78:0a:6f:b0:d5:06:ca:18:cd:7e:69: 80:25:7a:0f:87:d9:ad:02:bc:f5:6c:bf:f8:d4:f0: a4:6e:53:87:97:6a:45:a5:6c:32:21:b9:4a:a9:74: 2e:bb:61:70:ba:11:3b:11:ab:c2:15:b5:01:12:c7: dd:c2:cb:94:c6:00:5a:79:b1:fe:d0:e2:6b:2d:6e: 39:32:36:a4:d1:3e:39:70:8a:bf:31:bd:c3:4a:e6: 26:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:11:88:80:D8:53:6E:72:D4:6E:AE:8C:76:7C:C6:B8:48:60:EC:27 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:20:a7:99:84:d1:63:34:a8:6b:37:08:e6:f6:49:89:f3:90: 63:6f:c6:88:dc:93:b3:c9:71:28:8c:22:0f:6e:28:d2:23:b4: 2c:64:a9:fe:f8:9f:02:87:05:b9:ba:29:a6:f8:72:67:19:f1: 14:65:b6:a6:81:6d:c9:7f:fc:58:a0:96:16:a1:7d:47:16:d7: ca:12:22:6c:6b:d8:0a:e1:63:00:f6:52:2f:3e:4d:2d:c2:f2: 8f:fa:06:77:bd:bf:18:38:1e:44:da:c5:d4:bd:cf:55:99:42: 7b:c9:a0:a0:ee:94:fa:a2:00:85:8b:29:ba:3e:02:b9:49:2c: ba:c2:45:9f:68:92:37:45:11:ce:d1:2f:4d:6a:1c:58:05:01: 3e:1e:19:3f:97:c8:e9:f6:0b:f0:7e:9c:54:5a:04:d9:ad:f2: 72:b2:78:82:5c:04:3d:98:37:11:db:1d:14:61:5a:ea:df:c3: cf:fe:ca:d3:c8:d9:24:02:e4:df:a2:7b:d0:84:14:0b:93:b4: 67:37:19:ba:6b:70:52:7f:68:12:59:a0:48:47:b2:0e:ff:61: 16:35:12:01:b2:69:a4:67:f1:f8:d3:dc:ef:af:1c:a6:ac:53: a1:66:be:b7:e5:b4:8b:7e:27:9b:a6:ed:d8:45:cf:40:34:5a: 0f:e9:de:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUxMDE4MTQ0NTE3WhcNMjUxMDI1MTQ0NTE3WjAYMRYwFAYD VQQDEw02OGYzYTdmZC1lZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mU7VwvKdfBOJUn7GoAqZBd8R7Y7Agl5nHJYH/2r+3LtilkK1t6yXCZRUOqw jJ0BdnuZTS+XbSNFTZeutvMCmBjVUWmLiDEImE1cie/wEHN+ru+9XGyeoZo1ARpH TB3pahbbSxtRi+TLdnVjZZBP5qWfBtw5Qef29dijGbT3fYh6ld1yaOvMi7FuV+eX IHSmL3FMOeNzfWzbC3+BdrkPcChX4VLhTr6feApvsNUGyhjNfmmAJXoPh9mtArz1 bL/41PCkblOHl2pFpWwyIblKqXQuu2FwuhE7EavCFbUBEsfdwsuUxgBaebH+0OJr LW45Mjak0T45cIq/Mb3DSuYmUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4RiIDY U25y1G6ujHZ8xrhIYOwnMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxIKeZhNFjNKhrNwjm9kmJ85Bjb8aI3JOzyXEojCIPbijSI7QsZKn+ +J8ChwW5uimm+HJnGfEUZbamgW3Jf/xYoJYWoX1HFtfKEiJsa9gK4WMA9lIvPk0t wvKP+gZ3vb8YOB5E2sXUvc9VmUJ7yaCg7pT6ogCFiym6PgK5SSy6wkWfaJI3RRHO 0S9NahxYBQE+Hhk/l8jp9gvwfpxUWgTZrfJysniCXAQ9mDcR2x0UYVrq38PP/srT yNkkAuTfonvQhBQLk7RnNxm6a3BSf2gSWaBIR7IO/2EWNRIBsmmkZ/H409zvrxym rFOhZr635bSLfiebpu3YRc9ANFoP6d5s -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:52 2025 by rpki-client