$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: Ol4tYxK/SpXbdYfRSIbBEw1k970B4tShLXh9mIe9gqY= Subject key identifier: C4:22:F8:57:21:BD:BA:26:B4:81:48:62:55:C4:DB:CB:5D:E1:72:9E Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0D5A Signing time: Tue 04 Nov 2025 18:05:59 +0000 Manifest this update: Tue 04 Nov 2025 18:05:59 +0000 Manifest next update: Tue 11 Nov 2025 18:05:59 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: MqPvWrjVtT9DjDwPwtFdQJvwvseWR2DZAYUkE1e2zsU=) 2: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: VZ24W4uKwM60qRJ5vfKCX9lh+SGHmx0HfVlijTJVzIY=) 3: 677F3316E02711E9AB669750C4F9AE02.roa (hash: 4yWetI8VRw7mXlPSVbHYiXd6wjj+BvrR9fES4qn/WNo=) 4: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: DgvkkBXnQUs6910aIZGV/GX1Y7PZj78ZOyie/aItMGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Nov 4 18:05:59 2025 GMT Not After : Nov 11 18:05:59 2025 GMT Subject: CN=690a4087-8b59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cc:a0:c1:00:31:d4:14:a9:bc:87:22:09:ce: da:77:62:ed:21:ed:8e:f3:d2:dc:c2:65:58:d1:7f: a0:ae:f7:b0:f4:d6:80:da:ba:a9:1f:67:25:0e:16: 92:30:44:50:6c:95:6a:95:48:81:fd:a1:fd:f4:b3: 62:29:d1:fe:d0:73:9d:db:03:03:d5:2e:a0:c6:60: fb:1d:7d:b0:b7:fa:04:a5:dd:98:c3:57:82:bd:bc: be:68:3a:ba:64:34:7b:ae:43:57:2b:10:94:43:f4: 46:5f:f0:b2:3b:5b:e1:0c:45:52:0e:b2:50:60:28: 43:dc:5e:a5:7b:df:31:fd:50:05:da:23:20:32:0c: 2c:4a:a2:3a:2f:34:11:1b:f6:1c:86:5f:11:1e:ef: 03:4f:87:91:a3:de:2f:16:62:68:e7:b8:42:19:22: 0d:90:9b:d2:d8:94:bf:0d:3a:94:c6:6b:46:08:47: d9:ef:c2:76:89:65:51:5e:df:f2:9a:af:ad:42:1c: ab:9c:12:e5:0a:eb:91:2b:8d:ab:32:6c:c1:fe:68: 2e:e8:5f:87:87:c3:b4:31:a0:a1:73:9f:e4:41:d0: fd:4a:5b:18:f8:ec:d6:46:d3:66:a4:2b:24:f4:07: 8f:b0:dc:4b:01:5e:ba:64:ee:da:4b:0d:3a:23:5f: 63:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:22:F8:57:21:BD:BA:26:B4:81:48:62:55:C4:DB:CB:5D:E1:72:9E X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:54:96:52:d6:e6:a5:18:f1:b9:c1:ea:73:8d:c7:29:8d:14: 54:9a:ff:a7:b7:02:40:83:75:8d:f1:f8:f5:f6:25:d7:3b:0d: a6:85:b4:a8:e1:ef:a0:97:e3:a5:8f:b3:2e:0d:35:fe:b2:08: 39:b5:1f:51:32:76:74:81:2a:6c:bd:ef:b7:1a:89:b7:3d:0a: ad:0d:27:dc:49:00:fb:eb:92:1c:df:d1:46:4f:ed:3d:d8:57: c2:05:74:de:9a:d0:53:a3:05:bb:6c:6b:8f:56:c3:8d:35:23: 05:91:48:2e:e5:aa:69:16:7e:31:98:0f:32:ec:81:7b:30:b4: a2:b9:75:f1:e4:0d:c4:5d:5d:c3:77:13:89:e2:52:1d:e0:82: 5a:09:7e:6f:44:55:38:45:f8:f2:e2:a8:2f:e8:18:57:a4:18: 86:1a:6e:e9:c5:7c:a9:58:e0:e7:21:99:ae:33:82:f8:b3:26: bc:82:14:68:53:62:49:ba:84:22:80:a9:1d:6a:5a:59:5e:2a: 4a:5e:89:73:2a:56:f4:79:75:58:79:fd:7d:4b:b9:53:f6:48: 7f:b0:3c:00:da:0a:96:2e:01:b3:b1:54:de:2e:58:b1:6c:c0: e5:72:62:86:b5:67:44:4e:a5:c1:f4:f7:9d:41:74:a4:3c:7b: c0:99:cb:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjUxMTA0MTgwNTU5WhcNMjUxMTExMTgwNTU5WjAYMRYwFAYD VQQDEw02OTBhNDA4Ny04YjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cygwQAx1BSpvIciCc7ad2LtIe2O89LcwmVY0X+grvew9NaA2rqpH2clDhaS MERQbJVqlUiB/aH99LNiKdH+0HOd2wMD1S6gxmD7HX2wt/oEpd2Yw1eCvby+aDq6 ZDR7rkNXKxCUQ/RGX/CyO1vhDEVSDrJQYChD3F6le98x/VAF2iMgMgwsSqI6LzQR G/Ychl8RHu8DT4eRo94vFmJo57hCGSINkJvS2JS/DTqUxmtGCEfZ78J2iWVRXt/y mq+tQhyrnBLlCuuRK42rMmzB/mgu6F+Hh8O0MaChc5/kQdD9SlsY+OzWRtNmpCsk 9AePsNxLAV66ZO7aSw06I19jTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQi+Fch vbomtIFIYlXE28td4XKeMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeVJZS1ualGPG5wepzjccpjRRUmv+ntwJAg3WN8fj19iXXOw2mhbSo 4e+gl+Olj7MuDTX+sgg5tR9RMnZ0gSpsve+3Gom3PQqtDSfcSQD765Ic39FGT+09 2FfCBXTemtBTowW7bGuPVsONNSMFkUgu5appFn4xmA8y7IF7MLSiuXXx5A3EXV3D dxOJ4lId4IJaCX5vRFU4Rfjy4qgv6BhXpBiGGm7pxXypWODnIZmuM4L4sya8ghRo U2JJuoQigKkdalpZXipKXolzKlb0eXVYef19S7lT9kh/sDwA2gqWLgGzsVTeLlix bMDlcmKGtWdETqXB9PedQXSkPHvAmcvg -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:58 2025 by rpki-client