$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: zuJtUF3kRu5KPD1PwRKvw1F8Cjgpiz5Ffw0Db4lJXaY= Subject key identifier: 68:12:94:05:B3:57:94:5D:45:65:7C:01:5D:61:57:99:AD:CF:CE:28 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 0A04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 09FC Signing time: Sat 18 Oct 2025 20:52:56 +0000 Manifest this update: Sat 18 Oct 2025 20:52:55 +0000 Manifest next update: Sat 25 Oct 2025 20:52:55 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: w5CwLrVWbuU/dkaSDzCDd8btE7jniGLfD6KK9blBmhM=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Oct 18 20:52:55 2025 GMT Not After : Oct 25 20:52:55 2025 GMT Subject: CN=68f3fe27-63cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:ec:9f:e9:49:fc:78:97:c0:b7:03:59:d0: 99:c7:56:95:19:c9:c5:4a:d4:12:63:b1:23:8a:e6: fc:92:66:5a:16:9d:49:59:e7:ce:2b:2b:0c:34:ed: dd:02:34:72:9a:44:e0:af:f0:fa:0c:ad:3b:d3:9a: 93:e8:b3:4f:b1:56:07:3e:85:10:45:7d:d6:13:ce: 7b:a8:cb:7c:19:52:ca:cf:a9:82:87:06:43:39:fd: 34:fa:0e:16:59:51:54:a9:c5:5a:bb:11:b4:0d:9d: d6:ae:80:07:9a:c0:cb:d0:15:52:a0:bc:bd:35:d6: 48:53:ed:ac:4d:86:7c:24:70:70:e0:30:31:43:28: fa:10:d8:42:1a:68:08:8e:98:98:66:8a:c1:99:07: a4:43:48:96:d7:32:b8:45:6e:f0:30:8f:ba:1a:17: 0c:8e:c4:6b:02:f9:8b:57:bc:63:d4:02:51:33:92: 28:77:71:e4:a3:a7:02:04:53:cc:f9:b5:48:62:31: 17:7d:ce:d8:05:1a:1c:7f:7c:19:f2:30:3b:25:13: 10:e9:54:51:38:8a:5d:b7:98:37:39:34:b2:b4:c0: 52:8e:4a:a7:1f:08:09:31:d2:7d:13:49:e1:6d:fb: 4d:9d:85:70:d0:2a:c3:e9:24:ad:f0:47:f0:0f:1e: 24:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:12:94:05:B3:57:94:5D:45:65:7C:01:5D:61:57:99:AD:CF:CE:28 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:98:c6:cd:7e:85:9b:50:34:fa:80:da:c3:a8:28:93:96:11: 90:24:89:8b:f8:4d:64:c3:64:68:b4:b6:fe:a6:ff:a4:d7:92: 96:a6:c3:71:4f:f1:67:91:2d:c5:89:b9:ff:36:72:41:11:ce: bd:40:03:f5:6a:d3:8c:94:9a:df:e0:7a:32:30:66:5f:4e:c3: d6:44:41:e6:e8:a1:5a:05:a9:92:b6:0b:86:6b:88:4a:29:88: b3:79:cc:53:0b:1f:5e:40:4d:0f:1b:3a:dc:98:9d:8d:16:b1: c2:a5:9a:02:cc:86:84:12:f1:cc:d5:60:3f:8f:a9:03:90:b4: 74:91:f8:18:c2:2e:a4:a6:67:18:c3:01:b1:55:ba:ec:0e:53: 9f:ce:4d:21:b5:82:cc:b5:91:37:80:d8:35:22:7e:35:08:f0: e9:7d:b7:db:72:8a:0a:3f:b5:b2:84:24:d7:05:b6:20:4f:ac: fc:d2:79:d7:d7:e6:14:24:b6:ca:23:1c:d9:3e:4a:92:14:b3: 7c:d1:8f:bc:92:b6:9f:12:84:91:d3:5d:22:0a:14:f5:5e:21: 01:d2:24:18:10:4b:3a:80:dc:33:5c:0c:e8:2d:4d:be:e6:49: 04:f5:4d:d7:4c:aa:0c:0c:a9:78:ae:de:72:40:b5:01:bc:e2: 52:d6:35:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUxMDE4MjA1MjU1WhcNMjUxMDI1MjA1MjU1WjAYMRYwFAYD VQQDEw02OGYzZmUyNy02M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MHsn+lJ/HiXwLcDWdCZx1aVGcnFStQSY7Ejiub8kmZaFp1JWefOKysMNO3d AjRymkTgr/D6DK0705qT6LNPsVYHPoUQRX3WE857qMt8GVLKz6mChwZDOf00+g4W WVFUqcVauxG0DZ3WroAHmsDL0BVSoLy9NdZIU+2sTYZ8JHBw4DAxQyj6ENhCGmgI jpiYZorBmQekQ0iW1zK4RW7wMI+6GhcMjsRrAvmLV7xj1AJRM5Iod3Hko6cCBFPM +bVIYjEXfc7YBRocf3wZ8jA7JRMQ6VRROIpdt5g3OTSytMBSjkqnHwgJMdJ9E0nh bftNnYVw0CrD6SSt8EfwDx4k3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgSlAWz V5RdRWV8AV1hV5mtz84oMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYmMbNfoWbUDT6gNrDqCiTlhGQJImL+E1kw2RotLb+pv+k15KWpsNx T/FnkS3Fibn/NnJBEc69QAP1atOMlJrf4HoyMGZfTsPWREHm6KFaBamStguGa4hK KYizecxTCx9eQE0PGzrcmJ2NFrHCpZoCzIaEEvHM1WA/j6kDkLR0kfgYwi6kpmcY wwGxVbrsDlOfzk0htYLMtZE3gNg1In41CPDpfbfbcooKP7WyhCTXBbYgT6z80nnX 1+YUJLbKIxzZPkqSFLN80Y+8krafEoSR010iChT1XiEB0iQYEEs6gNwzXAzoLU2+ 5kkE9U3XTKoMDKl4rt5yQLUBvOJS1jU7 -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:34 2025 by rpki-client