$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: Y7bh+giCIz08pnGNNVwRIjaChpD7aIdLoIQtv0wUwoc= Subject key identifier: 6B:63:BB:3F:9E:81:F8:0C:F2:30:D5:F9:70:42:6C:A5:91:88:E4:30 Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 09F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 09E4 Signing time: Sat 18 Oct 2025 20:57:42 +0000 Manifest this update: Sat 18 Oct 2025 20:57:42 +0000 Manifest next update: Sat 25 Oct 2025 20:57:42 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: +V0uDMzqvkM0ZlWL9pox4n8UKW9YLVDQj+qklSSGeKk=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Oct 18 20:57:42 2025 GMT Not After : Oct 25 20:57:42 2025 GMT Subject: CN=68f3ff46-9497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ca:e6:46:38:e2:6e:98:9e:6e:a5:80:c9:5b: 5f:43:d6:f7:7a:cb:a6:ea:26:3c:61:0a:53:15:8a: d6:86:f8:ba:7b:c4:46:d1:40:7a:de:81:c3:2f:e5: d2:b8:00:a5:37:da:45:eb:6b:e9:65:44:5e:a3:3b: 2d:33:86:b4:d7:b9:e0:4c:e0:46:38:1a:1f:d9:d3: 2a:23:04:f2:ff:54:ab:af:8b:4b:c9:db:fa:7a:60: 67:d5:fb:ac:1e:20:0d:4c:78:e6:29:b8:ea:81:df: 88:f2:69:32:f8:ee:d7:be:02:64:05:fe:0a:99:3f: a0:34:62:01:b4:72:22:77:19:29:68:d4:a5:c1:93: f2:3c:52:12:9e:ac:9a:86:4e:04:2d:ee:0f:5c:9a: 67:c4:92:f7:3e:07:49:32:fb:c7:d5:18:52:14:57: 99:05:c1:53:16:1c:83:52:ea:9b:39:4f:dc:5e:46: 7a:00:a5:2a:a7:09:65:57:f8:86:ed:d4:65:10:fb: cf:7b:fe:2f:5b:34:c0:00:be:d8:89:d8:19:a6:dc: 3e:68:77:09:9d:7e:ce:44:c8:e4:a0:c2:fd:cd:55: 1c:41:11:7b:14:f8:cb:52:b2:e7:ec:c6:11:02:8d: de:2c:ee:8d:86:d6:67:8c:65:fa:6c:41:6e:1a:22: d9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:63:BB:3F:9E:81:F8:0C:F2:30:D5:F9:70:42:6C:A5:91:88:E4:30 X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:13:42:94:d5:77:34:5f:71:1d:f1:b1:98:ed:91:65:74:00: 87:62:49:8f:34:a2:df:7e:d1:f1:cd:1b:10:d1:21:10:bd:1b: c0:c6:f8:00:97:04:80:25:fa:86:87:a2:8a:5c:ca:e6:95:85: 89:54:63:17:bb:5f:90:8a:f8:30:5a:ed:26:27:9e:80:26:70: 9e:ab:a1:79:51:4f:f2:23:de:e0:6b:74:0e:d6:ac:b2:c6:83: 60:60:5d:f8:b1:f4:4e:e5:d3:28:1c:2e:66:57:15:6f:79:5e: 8b:c8:8c:8c:da:1a:74:c4:56:5c:44:ba:d9:74:87:43:2b:f7: 3b:db:9a:47:4d:d5:27:19:6d:95:7b:d6:7b:0c:95:83:87:c5: 16:51:d5:05:41:c8:f8:c2:e5:f7:d4:80:7f:99:51:7c:4a:76: 48:9e:bf:b4:89:2c:0e:1f:75:39:c6:45:27:90:ff:bb:f3:73: d1:f4:ec:14:e2:20:44:7b:e1:6b:18:9d:6d:a3:f5:18:b2:0a: f1:7f:e2:aa:c2:25:f1:c1:f8:f8:71:65:57:21:29:c0:ea:e5: b4:93:c2:7a:09:19:15:ea:31:b2:d0:6f:16:8c:f4:52:e0:ac: 9b:3c:9a:4c:da:54:2b:77:f6:a0:ed:03:f4:58:fb:bc:a1:f3: 98:eb:28:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUxMDE4MjA1NzQyWhcNMjUxMDI1MjA1NzQyWjAYMRYwFAYD VQQDEw02OGYzZmY0Ni05NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MrmRjjibpiebqWAyVtfQ9b3esum6iY8YQpTFYrWhvi6e8RG0UB63oHDL+XS uAClN9pF62vpZUReozstM4a017ngTOBGOBof2dMqIwTy/1Srr4tLydv6emBn1fus HiANTHjmKbjqgd+I8mky+O7XvgJkBf4KmT+gNGIBtHIidxkpaNSlwZPyPFISnqya hk4ELe4PXJpnxJL3PgdJMvvH1RhSFFeZBcFTFhyDUuqbOU/cXkZ6AKUqpwllV/iG 7dRlEPvPe/4vWzTAAL7YidgZptw+aHcJnX7ORMjkoML9zVUcQRF7FPjLUrLn7MYR Ao3eLO6NhtZnjGX6bEFuGiLZuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtjuz+e gfgM8jDV+XBCbKWRiOQwMB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXE0KU1Xc0X3Ed8bGY7ZFldACHYkmPNKLfftHxzRsQ0SEQvRvAxvgA lwSAJfqGh6KKXMrmlYWJVGMXu1+QivgwWu0mJ56AJnCeq6F5UU/yI97ga3QO1qyy xoNgYF34sfRO5dMoHC5mVxVveV6LyIyM2hp0xFZcRLrZdIdDK/c725pHTdUnGW2V e9Z7DJWDh8UWUdUFQcj4wuX31IB/mVF8SnZInr+0iSwOH3U5xkUnkP+783PR9OwU 4iBEe+FrGJ1to/UYsgrxf+KqwiXxwfj4cWVXISnA6uW0k8J6CRkV6jGy0G8WjPRS 4KybPJpM2lQrd/ag7QP0WPu8ofOY6yiu -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:15 2025 by rpki-client