$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: rGUSYYK0/lrgVlH0YzcjXKfIfzerk1DwzEKOqJEmZJc= Subject key identifier: 4A:03:2E:14:F5:B6:0A:0F:E7:08:7A:DF:F6:18:66:CF:F8:85:3D:CD Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 86 Signing time: Sun 19 Oct 2025 09:53:14 +0000 Manifest this update: Sun 19 Oct 2025 09:53:13 +0000 Manifest next update: Sun 26 Oct 2025 09:53:13 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: c5NBtQLWjZ4EZU0i2lw4zCorFwPaSHGEFnmVUrKXC24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Oct 19 09:53:13 2025 GMT Not After : Oct 26 09:53:13 2025 GMT Subject: CN=68f4b50a-2e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:25:f6:87:e1:7a:60:a7:de:1d:18:a3:f0: e8:ef:23:a5:60:74:6d:47:9b:b1:f2:85:ea:ae:40: 84:1e:e8:cc:e0:e3:a3:c6:23:68:67:29:0a:61:cb: f5:7a:34:b2:2f:57:14:8e:ce:dd:a7:6a:d0:4e:ff: 66:63:12:f5:9c:db:79:11:aa:a2:30:10:97:6d:7f: 55:97:dd:3b:57:71:3e:af:9e:85:f1:e5:f7:16:d3: ae:ea:da:11:d1:a0:9a:78:05:fb:da:0c:30:5d:90: 94:3c:af:3d:1d:25:34:94:07:57:f5:85:54:70:b2: 4f:2f:b5:68:47:c9:c7:06:b0:ae:e5:24:9d:a9:42: 6d:2a:dc:56:fc:61:e5:3f:af:e9:28:4d:30:f5:c5: 23:61:28:ab:ba:9b:f8:46:9e:6f:94:bb:9d:93:7b: 6b:34:ac:58:1f:dc:12:1b:45:fd:2e:f6:31:1c:18: ec:ea:3e:2c:19:11:d9:1b:27:c4:30:4a:0c:57:81: 63:d5:18:fb:c3:54:d2:6e:e7:19:e9:22:1c:42:d3: 3d:3a:27:b3:91:64:08:50:55:ee:26:e3:18:3b:3e: 8b:8f:ef:42:cd:60:07:36:c7:8d:7f:12:82:18:c5: 79:65:ff:1c:18:9e:e1:45:cb:af:ff:49:44:b4:47: 18:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:03:2E:14:F5:B6:0A:0F:E7:08:7A:DF:F6:18:66:CF:F8:85:3D:CD X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:51:46:93:67:14:ef:4c:7b:95:03:2a:64:15:b0:bb:04:32: 6c:43:06:a8:d1:82:02:34:2e:19:5b:90:29:3b:7f:d9:57:7d: 65:e7:9f:de:0a:00:9d:e9:f9:28:98:56:46:98:fe:ca:ba:7b: d3:3e:d7:07:d9:ca:dc:a5:75:27:53:f5:8d:9b:f3:cf:94:61: 38:8f:ce:3f:f6:db:ad:b7:d5:57:cf:8a:62:e9:fd:1e:3c:e0: ce:c0:c9:9d:57:f5:c2:6c:ce:e4:97:db:b8:e9:2d:3b:c4:2c: 47:b4:41:37:df:3f:06:c6:df:7d:be:48:15:13:db:2a:bb:9f: 9c:f1:9c:c9:28:ad:5c:0d:75:8d:29:48:20:04:41:69:8f:ad: 1f:29:51:21:3d:63:c9:21:0b:b5:62:fc:10:c1:bd:d0:d9:a1: b2:7a:ae:4f:14:ad:b9:fa:c5:cb:ac:43:85:1c:90:d6:61:c6: 14:4c:b0:ae:59:53:b6:6b:50:d9:cf:79:2f:5a:44:ac:80:c6: 95:f2:ce:7e:ef:72:d2:c4:5d:2d:98:1f:16:5e:db:d6:19:72: 69:51:56:8d:d8:0a:79:39:80:10:1f:04:7c:d3:da:b4:11:42: c6:89:d8:1c:1e:d3:92:94:fd:98:84:9c:2f:78:ad:a7:04:48: df:44:b7:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDE4MEEzNTIyRTIwNTBDNUYxRTA4NzM1MzlCMTJENkQy MzEyQTIwMUEwHhcNMjUxMDE5MDk1MzEzWhcNMjUxMDI2MDk1MzEzWjAYMRYwFAYD VQQDEw02OGY0YjUwYS0yZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUYl9ofhemCn3h0Yo/Do7yOlYHRtR5ux8oXqrkCEHujM4OOjxiNoZykKYcv1 ejSyL1cUjs7dp2rQTv9mYxL1nNt5EaqiMBCXbX9Vl907V3E+r56F8eX3FtOu6toR 0aCaeAX72gwwXZCUPK89HSU0lAdX9YVUcLJPL7VoR8nHBrCu5SSdqUJtKtxW/GHl P6/pKE0w9cUjYSirupv4Rp5vlLudk3trNKxYH9wSG0X9LvYxHBjs6j4sGRHZGyfE MEoMV4Fj1Rj7w1TSbucZ6SIcQtM9OiezkWQIUFXuJuMYOz6Lj+9CzWAHNseNfxKC GMV5Zf8cGJ7hRcuv/0lEtEcY0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoDLhT1 tgoP5wh63/YYZs/4hT3NMB8GA1UdIwQYMBaAFBgKNSLiBQxfHghzU5sS1tIxKiAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xREE1Q0M1NkRG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRGOGVDSE5UbXhMVzBqRXFJ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xREE1Q0M1NkRGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRG OGVDSE5UbXhMVzBqRXFJQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5UUaTZxTvTHuVAypkFbC7BDJsQwao0YICNC4ZW5ApO3/ZV31l55/e CgCd6fkomFZGmP7KunvTPtcH2crcpXUnU/WNm/PPlGE4j84/9tutt9VXz4pi6f0e PODOwMmdV/XCbM7kl9u46S07xCxHtEE33z8Gxt99vkgVE9squ5+c8ZzJKK1cDXWN KUggBEFpj60fKVEhPWPJIQu1YvwQwb3Q2aGyeq5PFK25+sXLrEOFHJDWYcYUTLCu WVO2a1DZz3kvWkSsgMaV8s5+73LSxF0tmB8WXtvWGXJpUVaN2Ap5OYAQHwR809q0 EULGidgcHtOSlP2YhJwveK2nBEjfRLdq -----END CERTIFICATE-----Generated at Mon Oct 20 04:46:34 2025 by rpki-client