$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: 2eiiTtg4qNnAlvsJJfNzqsgjVAPMfpsaNlvzHW1ozjk= Subject key identifier: 39:10:E5:7D:BA:6A:9E:AD:D0:F7:6F:DD:B9:C7:92:8D:09:8A:06:50 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 198D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1F5B Signing time: Sat 18 Oct 2025 16:45:36 +0000 Manifest this update: Sat 18 Oct 2025 16:45:36 +0000 Manifest next update: Sat 25 Oct 2025 16:45:36 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: tgeo92cWw/ZLBQGPDsc2Y55H1La5dMCqWNmNAMxgU7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6541 (0x198d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Oct 18 16:45:36 2025 GMT Not After : Oct 25 16:45:36 2025 GMT Subject: CN=68f3c430-5087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6f:90:b5:03:5c:e0:2d:8a:1b:60:9b:0e:c3: 76:03:d7:0f:18:e2:fb:18:b8:3d:9f:80:08:91:2b: 78:ec:bc:4e:ff:99:0e:7d:8e:b2:ff:3e:c4:5d:df: 9c:cd:67:b5:b5:4e:2b:89:7e:b9:5c:95:65:a2:cd: bd:c1:79:da:9a:e5:a4:f3:ea:74:04:e1:4b:29:6e: 21:45:80:62:f1:d2:74:a1:5e:1c:5f:01:73:ab:74: 90:ac:73:0f:0c:ee:4d:f8:bb:cd:9a:a9:fd:e7:c1: d0:26:f0:e2:f7:14:74:05:bf:10:f4:03:ea:6d:35: 5f:a8:2f:e4:dc:49:22:0a:0c:36:5d:ce:d8:66:17: 85:09:0c:77:80:30:87:3a:1a:3d:7a:ca:b9:7f:07: 81:21:99:b8:19:39:9d:88:e7:1b:14:de:30:cb:48: f5:f8:f9:7a:80:28:38:48:91:97:d0:86:cc:12:65: bd:bb:51:a9:78:d0:01:f0:5f:ae:69:85:48:38:43: b5:63:09:88:dc:52:d7:34:4f:8c:63:30:12:75:4e: 53:30:51:ba:d1:00:92:84:67:41:5a:05:c5:6c:f1: 2b:a6:c0:e1:bd:12:b3:d3:0f:78:c3:e0:67:20:60: fc:b2:76:16:d5:b5:7b:24:5a:42:6d:31:5e:e4:b6: b3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:10:E5:7D:BA:6A:9E:AD:D0:F7:6F:DD:B9:C7:92:8D:09:8A:06:50 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:9e:b4:1b:bf:18:d3:7f:53:cf:ed:1f:a3:a7:05:f1:c8:ab: 65:30:93:7b:b2:ec:42:54:2b:67:8b:57:6e:dd:b3:bc:51:08: 77:72:71:1a:1d:10:0e:b3:52:d7:3a:54:ca:b7:04:6d:3f:66: 20:5e:46:9c:09:7e:2b:03:cd:bf:0e:62:54:cf:bc:1d:bd:bc: a2:06:bd:10:41:3e:9a:e7:bc:b8:fc:dc:a2:12:8a:99:c4:97: ef:7f:87:83:f3:74:93:da:67:a8:4c:a4:b1:d5:2c:ef:0f:71: 57:76:cb:7e:c2:5f:81:de:0d:2f:47:a3:f9:50:98:bc:c1:86: d7:9b:97:b0:ae:13:eb:7d:a9:d7:a0:5e:71:fb:9d:71:e5:65: c7:7c:45:0d:4e:1e:31:93:6b:b3:75:e8:bc:23:d4:71:fa:3b: 07:01:4d:00:5e:ca:12:12:a8:80:44:e3:16:f3:46:60:c5:a8: 10:90:b7:e3:84:d2:4c:28:15:c7:c6:e3:a0:b9:19:a8:df:a6: cb:af:01:57:1f:ff:ac:ab:11:e8:fc:25:64:ce:18:92:62:5b: 09:60:e6:4c:d0:84:aa:b7:cc:b0:f9:21:b3:3b:1c:44:9c:ac: 8c:77:e5:df:01:82:89:23:e1:19:05:2c:6d:2c:1a:7e:4e:99: fe:f1:59:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjUxMDE4MTY0NTM2WhcNMjUxMDI1MTY0NTM2WjAYMRYwFAYD VQQDEw02OGYzYzQzMC01MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6G+QtQNc4C2KG2CbDsN2A9cPGOL7GLg9n4AIkSt47LxO/5kOfY6y/z7EXd+c zWe1tU4riX65XJVlos29wXnamuWk8+p0BOFLKW4hRYBi8dJ0oV4cXwFzq3SQrHMP DO5N+LvNmqn958HQJvDi9xR0Bb8Q9APqbTVfqC/k3EkiCgw2Xc7YZheFCQx3gDCH Oho9esq5fweBIZm4GTmdiOcbFN4wy0j1+Pl6gCg4SJGX0IbMEmW9u1GpeNAB8F+u aYVIOEO1YwmI3FLXNE+MYzASdU5TMFG60QCShGdBWgXFbPErpsDhvRKz0w94w+Bn IGD8snYW1bV7JFpCbTFe5LazXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkQ5X26 ap6t0Pdv3bnHko0JigZQMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1nrQbvxjTf1PP7R+jpwXxyKtlMJN7suxCVCtni1du3bO8UQh3cnEa HRAOs1LXOlTKtwRtP2YgXkacCX4rA82/DmJUz7wdvbyiBr0QQT6a57y4/NyiEoqZ xJfvf4eD83ST2meoTKSx1SzvD3FXdst+wl+B3g0vR6P5UJi8wYbXm5ewrhPrfanX oF5x+51x5WXHfEUNTh4xk2uzdei8I9Rx+jsHAU0AXsoSEqiAROMW80ZgxagQkLfj hNJMKBXHxuOguRmo36bLrwFXH/+sqxHo/CVkzhiSYlsJYOZM0ISqt8yw+SGzOxxE nKyMd+XfAYKJI+EZBSxtLBp+Tpn+8Vko -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:04 2025 by rpki-client