$ rpki-client -vvf rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft (raw, json) Hash identifier: 01EXO1st4C+UJqJ4qvur+kqD6xN/D2iYVIJ/3mTyxNk= Subject key identifier: E7:01:28:40:F2:9F:3C:FE:4E:8D:C9:82:0F:A6:9B:DC:F7:C6:47:C9 Authority key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 Certificate issuer: /CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Certificate serial: 0957 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft Manifest number: 094C Signing time: Tue 04 Nov 2025 20:16:51 +0000 Manifest this update: Tue 04 Nov 2025 20:16:51 +0000 Manifest next update: Tue 11 Nov 2025 20:16:51 +0000 Files and hashes: 1: gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl (hash: YO7i2s5ttyuxDcMgT3u08D31vYGHU8A4VwldJk/fV8o=) 2: B0071914AAE811EA8412810FC4F9AE02.roa (hash: cT6sVy2cPkGv5IyoVyqlT1wpNogGAW7RrVuiP5uIBJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2391 (0x957) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C005, serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Validity Not Before: Nov 4 20:16:51 2025 GMT Not After : Nov 11 20:16:51 2025 GMT Subject: CN=690a5f33-1635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:00:30:16:79:9e:6e:7e:f8:3b:01:97:b8: b7:dd:8d:4b:2a:72:c1:71:cb:01:a0:69:11:f3:0d: 95:ee:07:40:ee:c6:4f:4f:3c:53:61:85:16:c4:11: 6b:31:e1:ea:e7:94:3c:34:17:c9:e6:55:5a:f2:d6: 39:16:24:a8:db:bc:25:bc:49:88:21:d9:55:6a:38: 21:7e:c0:24:34:bb:12:7a:f9:39:d4:61:8c:89:a2: 03:57:8e:89:31:ce:8c:90:f2:be:ca:37:1d:0a:73: 16:4b:2b:9c:f5:9a:7e:26:30:ad:fc:75:fa:b0:75: bf:1e:57:7a:75:15:f2:09:77:db:e5:b3:c8:b7:98: f4:e3:3a:f1:e4:e9:30:f4:7f:1f:be:f3:a3:6c:bc: 3c:12:28:85:c0:25:07:84:4f:ae:99:be:d6:f8:bc: 0a:e1:d4:03:c2:cc:1e:da:61:d2:f6:70:36:11:c0: f3:14:70:df:7c:95:44:1c:63:b0:5d:bf:5f:f7:54: 3b:71:63:59:e3:b2:a8:db:1b:03:9e:65:6b:24:ff: 68:b6:17:3c:8d:09:12:cf:f6:83:b1:11:db:40:80: 28:42:ff:4b:3f:51:8f:4c:19:46:99:4b:05:c6:10: 17:4f:c4:4a:0c:cd:8b:40:39:63:1f:9e:e3:7a:9e: 6a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:01:28:40:F2:9F:3C:FE:4E:8D:C9:82:0F:A6:9B:DC:F7:C6:47:C9 X509v3 Authority Key Identifier: keyid:83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:88:42:37:4d:77:91:8c:32:4b:b4:8e:ef:d6:81:05:c0:19: c3:91:06:9d:9c:0d:13:0a:49:8c:d4:80:b0:7b:e4:96:db:74: 2a:4a:e3:62:89:f2:8d:b7:fe:29:7a:9f:db:c7:75:bf:f1:c5: f3:bd:a6:da:2d:57:80:92:3e:d4:39:7f:66:7e:d6:e2:7c:e1: 12:ab:bf:04:f0:ea:78:09:5d:d4:a6:a8:df:6c:a5:35:a4:8e: 74:81:2b:8c:2b:f9:68:2d:db:07:50:4d:57:14:fe:d2:f3:41: e1:74:e7:9c:b9:eb:3c:0c:4c:33:d0:03:e8:96:e7:62:45:4e: ac:ee:33:53:e5:84:26:b8:6f:e9:0c:d6:50:5a:4f:fc:71:36: cd:0b:e0:93:88:4b:5b:2e:17:6e:d9:1e:8a:9b:1d:f4:2a:df: a3:7f:00:5c:90:36:4a:57:0d:eb:53:f7:e8:c9:66:be:72:f8: 4d:b1:6f:d2:75:8f:cf:c8:42:06:79:c0:f2:87:88:06:fe:d0: 34:6f:c0:c3:7c:d9:5d:bf:b2:0c:31:8c:50:92:39:f9:28:91: d1:9d:1e:d5:1e:58:94:c2:4e:dc:5a:04:21:34:d3:2f:d0:c2: da:26:d9:06:a4:77:61:55:25:dc:33:15:2d:d6:8d:4a:14:b7: 7f:4a:4a:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FCOTk4OURBMjM0 M0RFRDJDMjIwHhcNMjUxMTA0MjAxNjUxWhcNMjUxMTExMjAxNjUxWjAYMRYwFAYD VQQDEw02OTBhNWYzMy0xNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1wAMBZ5nm5++DsBl7i33Y1LKnLBccsBoGkR8w2V7gdA7sZPTzxTYYUWxBFr MeHq55Q8NBfJ5lVa8tY5FiSo27wlvEmIIdlVajghfsAkNLsSevk51GGMiaIDV46J Mc6MkPK+yjcdCnMWSyuc9Zp+JjCt/HX6sHW/Hld6dRXyCXfb5bPIt5j04zrx5Okw 9H8fvvOjbLw8EiiFwCUHhE+umb7W+LwK4dQDwswe2mHS9nA2EcDzFHDffJVEHGOw Xb9f91Q7cWNZ47Ko2xsDnmVrJP9othc8jQkSz/aDsRHbQIAoQv9LP1GPTBlGmUsF xhAXT8RKDM2LQDljH57jep5qjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcBKEDy nzz+To3Jgg+mm9z3xkfJMB8GA1UdIwQYMBaAFIMNz8tamqDH+n16uZidojQ97Swi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzAwNS84Q0E2ODI3NkFB RTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9NZjZmWHE1bUoyaU5EM3RM Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3M1B5MXFhb01mNmZYcTVtSjJpTkQzdExDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzAwNS84Q0E2ODI3NkFBRTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9N ZjZmWHE1bUoyaU5EM3RMQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4iEI3TXeRjDJLtI7v1oEFwBnDkQadnA0TCkmM1ICwe+SW23QqSuNi ifKNt/4pep/bx3W/8cXzvabaLVeAkj7UOX9mftbifOESq78E8Op4CV3UpqjfbKU1 pI50gSuMK/loLdsHUE1XFP7S80HhdOecues8DEwz0APoludiRU6s7jNT5YQmuG/p DNZQWk/8cTbNC+CTiEtbLhdu2R6Kmx30Kt+jfwBckDZKVw3rU/foyWa+cvhNsW/S dY/PyEIGecDyh4gG/tA0b8DDfNldv7IMMYxQkjn5KJHRnR7VHliUwk7cWgQhNNMv 0MLaJtkGpHdhVSXcMxUt1o1KFLd/SkqS -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:40 2025 by rpki-client