$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: w/NKFyIgmID5akH+dsnrJS0/MSDUXZGGofX/ZzJDM4E= Subject key identifier: 2A:85:17:28:08:13:A4:3B:34:E4:73:09:10:80:77:E1:EC:D3:35:7F Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 0697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 068F Signing time: Sat 18 Oct 2025 23:53:59 +0000 Manifest this update: Sat 18 Oct 2025 23:53:58 +0000 Manifest next update: Sat 25 Oct 2025 23:53:58 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: iMOGQQ636PDf3lgbezDqDnslKqa69hd7gvfnIsupn2k=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Oct 18 23:53:58 2025 GMT Not After : Oct 25 23:53:58 2025 GMT Subject: CN=68f42896-acf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:d5:4f:d5:8f:2b:5c:f2:2c:e2:0c:27:aa: 5c:46:74:5a:a3:b6:63:09:8e:3f:9d:a3:08:64:ad: b3:37:4c:cb:f5:e9:5d:c3:bc:ac:80:39:3d:47:e3: d0:57:3f:35:2e:1a:ad:dd:a6:a5:d8:16:54:b7:59: da:59:7c:85:d5:13:38:05:fe:a8:6b:4d:58:b8:19: 96:57:b3:38:05:0d:5f:21:00:ba:5e:10:f8:07:19: f0:8d:d2:d2:7b:d4:85:24:f4:df:bc:7a:2c:a6:88: e7:4a:cb:10:1b:f6:67:07:8c:f9:c8:0c:20:c7:14: 92:cd:6d:38:57:fb:44:6e:09:e3:31:0f:a2:08:7b: be:f1:0d:54:ea:97:f9:a8:0a:f3:86:ce:66:e6:b8: f7:38:47:7f:97:7e:fe:5d:e0:42:eb:1a:57:77:e3: d2:77:1b:44:79:56:83:47:1c:ef:e2:33:e8:bf:50: ad:48:23:2f:31:d6:e2:ac:2e:cb:62:f8:ea:0f:5c: e2:51:84:24:e8:bd:a6:da:28:9a:e2:aa:e2:1a:f3: e4:5e:08:9c:03:fb:e0:05:b7:68:e4:40:dc:a6:51: c9:2e:8b:a0:c0:48:64:45:00:09:8e:bf:ab:db:30: 24:f4:85:11:8f:b5:49:6e:9f:49:a8:7d:f5:ba:21: d7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:85:17:28:08:13:A4:3B:34:E4:73:09:10:80:77:E1:EC:D3:35:7F X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c1:3e:0e:a9:b0:b1:5f:9d:4d:ba:81:8b:bb:93:bb:bb:07: ba:61:0b:7a:41:22:f1:62:7d:47:2d:47:83:aa:42:5f:8c:03: 3b:ee:18:a3:d8:97:5d:52:2e:85:ee:90:f5:ad:c2:c2:46:d9: 25:a7:1f:88:1b:94:71:8a:b6:82:55:e2:f8:f9:88:59:db:17: d6:a8:7b:0d:4d:59:b7:28:2d:fc:30:15:b1:0a:ad:03:bc:b0: cb:f9:e1:82:b9:43:6c:c8:8e:43:80:6e:cf:24:60:c6:fe:73: 58:d2:8a:75:40:18:55:e9:e8:32:99:41:90:05:a3:53:88:9a: ce:73:76:3b:d3:e6:3e:82:a7:0e:f7:fb:ac:78:2a:c3:aa:bf: b8:69:90:93:fb:49:b9:b2:1b:f8:7a:a1:11:14:81:a6:ec:8c: b7:c5:5e:cb:bb:67:c3:07:49:f2:25:96:47:52:aa:ae:c0:7b: f2:c5:52:1f:a7:04:28:95:a8:99:ae:bb:70:e5:49:d9:7e:10: 42:dd:f7:ef:99:93:af:14:59:9c:91:48:64:e8:b3:1b:53:44: 9e:36:e2:cd:ae:63:5c:04:5d:66:80:91:13:9f:6f:b7:f7:fe: dd:5f:7e:11:8f:7e:fe:88:1f:c2:50:0d:7a:17:05:d5:d4:bc: 46:a9:34:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUxMDE4MjM1MzU4WhcNMjUxMDI1MjM1MzU4WjAYMRYwFAYD VQQDEw02OGY0Mjg5Ni1hY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtXVT9WPK1zyLOIMJ6pcRnRao7ZjCY4/naMIZK2zN0zL9eldw7ysgDk9R+PQ Vz81Lhqt3aal2BZUt1naWXyF1RM4Bf6oa01YuBmWV7M4BQ1fIQC6XhD4BxnwjdLS e9SFJPTfvHospojnSssQG/ZnB4z5yAwgxxSSzW04V/tEbgnjMQ+iCHu+8Q1U6pf5 qArzhs5m5rj3OEd/l37+XeBC6xpXd+PSdxtEeVaDRxzv4jPov1CtSCMvMdbirC7L YvjqD1ziUYQk6L2m2iia4qriGvPkXgicA/vgBbdo5EDcplHJLougwEhkRQAJjr+r 2zAk9IURj7VJbp9JqH31uiHXqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqFFygI E6Q7NORzCRCAd+Hs0zV/MB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwwT4OqbCxX51NuoGLu5O7uwe6YQt6QSLxYn1HLUeDqkJfjAM77hij 2JddUi6F7pD1rcLCRtklpx+IG5RxiraCVeL4+YhZ2xfWqHsNTVm3KC38MBWxCq0D vLDL+eGCuUNsyI5DgG7PJGDG/nNY0op1QBhV6egymUGQBaNTiJrOc3Y70+Y+gqcO 9/useCrDqr+4aZCT+0m5shv4eqERFIGm7Iy3xV7Lu2fDB0nyJZZHUqquwHvyxVIf pwQolaiZrrtw5UnZfhBC3ffvmZOvFFmckUhk6LMbU0SeNuLNrmNcBF1mgJETn2+3 9/7dX34Rj37+iB/CUA16FwXV1LxGqTR3 -----END CERTIFICATE-----Generated at Tue Oct 21 02:37:40 2025 by rpki-client