$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: RFveU/P/aufxVFWXlD+/Z4RRx3l8D9ADplHNHXVpeho= Subject key identifier: 10:B5:71:B9:C0:79:CD:60:9C:27:FC:1B:1B:35:AF:03:F5:E6:75:CC Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04C7 Signing time: Sun 19 Oct 2025 01:38:35 +0000 Manifest this update: Sun 19 Oct 2025 01:38:35 +0000 Manifest next update: Sun 26 Oct 2025 01:38:35 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: +5FGUUBWi3MOkUTi53yNnFl8Ny5MJfbBRCV8jKNyZFc=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Oct 19 01:38:35 2025 GMT Not After : Oct 26 01:38:35 2025 GMT Subject: CN=68f4411b-615b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:b1:b1:5c:c0:52:83:e9:57:b0:46:e1:4d: 1d:eb:3a:cc:31:dc:62:31:5d:ae:3e:8d:84:3a:fc: 6d:93:17:44:12:c8:2e:c7:c8:bf:80:df:ef:49:49: c1:4c:99:85:92:00:0f:11:44:c2:d3:68:3c:a8:8c: f3:f8:c8:6c:fc:8b:d7:c6:d7:c6:ec:92:63:2f:24: 5b:75:ec:73:21:03:ad:4f:c9:63:cd:d8:4a:f6:39: 74:92:5e:11:03:3e:72:d4:62:98:1c:2d:67:ea:94: b4:53:5d:be:9c:dd:87:e3:f3:cb:0f:4e:5f:97:99: 84:06:87:a9:f4:fa:c0:22:15:12:0e:c3:44:5f:a2: 54:ad:11:f5:12:a2:aa:66:c7:74:25:9a:b4:74:c3: 44:e4:77:d0:ad:c0:b8:6d:a6:9a:5e:16:09:ae:ad: 63:d2:ea:a6:6b:46:47:75:d1:e4:fb:00:cd:58:e1: fc:88:d2:af:73:ae:56:27:2e:4e:86:d6:18:c6:7c: 1f:93:b5:4f:63:99:ba:53:63:ea:6a:b5:83:b8:88: d3:0f:96:ac:50:3e:b7:d7:4f:57:c4:5a:c4:36:ac: 5a:69:88:b4:83:74:84:61:47:6e:57:63:ca:65:b2: 11:59:a8:6e:a0:a5:e4:3c:ef:ae:38:2a:02:07:73: c6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B5:71:B9:C0:79:CD:60:9C:27:FC:1B:1B:35:AF:03:F5:E6:75:CC X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:19:da:18:39:57:19:39:3b:f3:88:d9:85:7f:65:8e:0b:c6: fa:cd:ff:bc:af:c7:80:4c:b3:3b:b1:90:f5:f6:14:e7:89:ac: 5b:03:c1:b2:8b:72:55:53:2e:9e:75:18:94:1f:8e:c7:c4:6d: 26:89:32:be:bd:d3:87:a1:72:52:ae:16:56:9d:3c:b0:a5:58: 8b:a9:0d:8a:78:2d:de:44:51:56:61:53:ba:77:a7:75:8c:84: 7f:c6:cd:b7:de:e5:03:61:d0:be:15:57:ae:2f:3e:b4:ba:00: 5a:4c:0a:e7:82:be:63:79:3c:8a:93:4f:ab:74:d2:c0:06:28: c1:34:fc:c6:44:30:fe:b5:87:7d:ba:54:8c:71:3b:12:06:b1: 71:f5:6a:15:97:31:02:78:7e:18:13:5e:6c:23:27:86:69:9c: 8b:2e:c3:75:5a:c5:be:d3:d9:70:9f:60:1a:2d:8d:b8:52:c6: 6e:96:ec:9b:73:91:15:99:1e:24:a6:42:d2:10:8b:cc:32:e2: fa:26:48:80:a8:aa:9b:68:a0:f2:d7:17:e7:54:72:19:5f:02: 02:f7:96:ab:80:f8:9f:03:6d:94:22:b5:ab:8b:72:3f:3b:b0: 33:11:76:8b:65:a1:f8:22:1b:57:9f:19:fe:a4:15:f1:ba:b8: 6e:82:89:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUxMDE5MDEzODM1WhcNMjUxMDI2MDEzODM1WjAYMRYwFAYD VQQDEw02OGY0NDExYi02MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkGxsVzAUoPpV7BG4U0d6zrMMdxiMV2uPo2EOvxtkxdEEsgux8i/gN/vSUnB TJmFkgAPEUTC02g8qIzz+Mhs/IvXxtfG7JJjLyRbdexzIQOtT8ljzdhK9jl0kl4R Az5y1GKYHC1n6pS0U12+nN2H4/PLD05fl5mEBoep9PrAIhUSDsNEX6JUrRH1EqKq Zsd0JZq0dMNE5HfQrcC4baaaXhYJrq1j0uqma0ZHddHk+wDNWOH8iNKvc65WJy5O htYYxnwfk7VPY5m6U2PqarWDuIjTD5asUD63109XxFrENqxaaYi0g3SEYUduV2PK ZbIRWahuoKXkPO+uOCoCB3PGpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBC1cbnA ec1gnCf8Gxs1rwP15nXMMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBGdoYOVcZOTvziNmFf2WOC8b6zf+8r8eATLM7sZD19hTniaxbA8Gy i3JVUy6edRiUH47HxG0miTK+vdOHoXJSrhZWnTywpViLqQ2KeC3eRFFWYVO6d6d1 jIR/xs233uUDYdC+FVeuLz60ugBaTArngr5jeTyKk0+rdNLABijBNPzGRDD+tYd9 ulSMcTsSBrFx9WoVlzECeH4YE15sIyeGaZyLLsN1WsW+09lwn2AaLY24UsZuluyb c5EVmR4kpkLSEIvMMuL6JkiAqKqbaKDy1xfnVHIZXwIC95argPifA22UIrWri3I/ O7AzEXaLZaH4IhtXnxn+pBXxurhugom3 -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:20 2025 by rpki-client