$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: ul+KqNrCV20jNFkqi0y1ksoEX5TsSN+5E2vSGr4ZdUE= Subject key identifier: 57:4D:12:56:EB:B7:BF:A9:6F:D2:68:FF:E1:16:B1:DC:A8:A8:38:00 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 03ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 03DB Signing time: Mon 03 Nov 2025 00:34:05 +0000 Manifest this update: Mon 03 Nov 2025 00:34:04 +0000 Manifest next update: Mon 10 Nov 2025 00:34:04 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: APy0Qlco486mw+vLq14uAiRmwmEnd9XeD0SpRxvfTs4=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1005 (0x3ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Nov 3 00:34:04 2025 GMT Not After : Nov 10 00:34:04 2025 GMT Subject: CN=6907f87d-8668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ea:9b:5c:9e:ed:fc:62:ef:c2:1e:0b:96:c2: de:58:98:95:e0:0e:33:17:48:77:02:78:c0:b3:31: cc:bd:53:f1:1c:ae:6c:ad:ff:1f:fe:b6:7b:8d:e0: f6:36:4d:67:38:48:f9:c8:48:0e:c8:10:46:b9:b0: ce:64:bd:57:2b:a4:74:4a:60:23:67:f0:f9:f1:da: eb:64:8c:fa:40:ed:d4:75:2e:ca:ab:b4:92:3b:23: 38:8e:54:a8:c4:b5:0d:e6:8e:a3:61:78:2c:89:04: 86:ee:a8:ff:5f:4e:a2:ee:75:ff:e1:4e:b7:88:6f: da:08:41:9e:62:80:13:da:b4:c9:36:0c:34:3f:99: 75:16:d0:b8:5a:b9:63:4a:f1:a1:93:0e:fb:5c:f0: 85:8f:cc:d0:0c:bd:12:ac:64:35:14:4b:7a:29:23: 09:d2:06:6c:ee:f0:96:16:1c:75:66:f6:8c:7e:77: 81:9f:c0:5d:d0:b3:0f:66:20:d5:bd:c8:c7:d1:cc: a2:ea:2c:a3:b3:9b:ae:b3:33:aa:05:6f:32:eb:92: 6e:5d:dd:9e:4e:5c:e0:3a:b1:72:60:dd:e7:c2:a9: ec:f1:3e:a5:48:45:4b:44:b5:25:d4:bd:ab:eb:fb: 08:e3:24:5f:be:60:d2:e9:40:db:bb:e8:88:8f:80: ef:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4D:12:56:EB:B7:BF:A9:6F:D2:68:FF:E1:16:B1:DC:A8:A8:38:00 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:4c:f0:9e:0e:b7:66:0d:a9:d3:35:75:13:2a:5d:7b:85:89: 87:ec:73:22:bf:ae:2b:46:b0:9f:b1:64:f1:bb:ad:09:18:df: 8a:fa:b3:34:fb:91:34:eb:84:05:4e:cf:3f:d9:58:b4:66:ef: 0a:2c:84:5f:2a:64:35:59:ff:13:bc:b5:ee:8b:a4:b9:fd:d5: 47:52:38:04:fd:b6:3d:94:0c:64:7e:40:34:9e:c6:0e:45:49: 4e:44:c8:ca:98:40:88:8c:fd:ee:06:4a:fb:f7:18:42:2a:cd: 8d:4a:ec:a1:a5:b5:cf:69:61:61:29:4d:e2:04:42:a0:a0:22: 7a:50:f4:7a:20:eb:67:d9:48:91:d6:f6:3f:6b:9f:be:3f:aa: e6:a2:b1:be:9f:5a:35:6d:90:33:44:b9:48:c1:de:a4:bc:9d: 24:93:43:8c:52:e4:f7:e9:18:4e:2f:65:55:c8:5d:0d:b2:b9: 1d:44:8c:58:d8:63:5d:53:4e:5c:55:02:a3:32:4f:52:d1:d3: a0:87:92:15:b8:f7:64:a0:fe:cb:89:9e:a8:5d:ba:9f:33:ad: 8f:08:6f:83:fe:51:92:71:42:72:6b:b9:af:2a:b6:f2:c4:cb: dd:09:61:91:ef:a4:bf:16:68:8b:0c:6f:86:32:bb:89:63:9b: 13:91:07:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUxMTAzMDAzNDA0WhcNMjUxMTEwMDAzNDA0WjAYMRYwFAYD VQQDEw02OTA3Zjg3ZC04NjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+qbXJ7t/GLvwh4LlsLeWJiV4A4zF0h3AnjAszHMvVPxHK5srf8f/rZ7jeD2 Nk1nOEj5yEgOyBBGubDOZL1XK6R0SmAjZ/D58drrZIz6QO3UdS7Kq7SSOyM4jlSo xLUN5o6jYXgsiQSG7qj/X06i7nX/4U63iG/aCEGeYoAT2rTJNgw0P5l1FtC4Wrlj SvGhkw77XPCFj8zQDL0SrGQ1FEt6KSMJ0gZs7vCWFhx1ZvaMfneBn8Bd0LMPZiDV vcjH0cyi6iyjs5uuszOqBW8y65JuXd2eTlzgOrFyYN3nwqns8T6lSEVLRLUl1L2r 6/sI4yRfvmDS6UDbu+iIj4Dv/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdNElbr t7+pb9Jo/+EWsdyoqDgAMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSTPCeDrdmDanTNXUTKl17hYmH7HMiv64rRrCfsWTxu60JGN+K+rM0 +5E064QFTs8/2Vi0Zu8KLIRfKmQ1Wf8TvLXui6S5/dVHUjgE/bY9lAxkfkA0nsYO RUlORMjKmECIjP3uBkr79xhCKs2NSuyhpbXPaWFhKU3iBEKgoCJ6UPR6IOtn2UiR 1vY/a5++P6rmorG+n1o1bZAzRLlIwd6kvJ0kk0OMUuT36RhOL2VVyF0NsrkdRIxY 2GNdU05cVQKjMk9S0dOgh5IVuPdkoP7LiZ6oXbqfM62PCG+D/lGScUJya7mvKrby xMvdCWGR76S/FmiLDG+GMruJY5sTkQf0 -----END CERTIFICATE-----Generated at Tue Nov 4 20:03:43 2025 by rpki-client