$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: bV4qPD2aJW+83mkm5/9y8XfJvT7zjeGS+N1n5oYmJ3A= Subject key identifier: 0A:38:E9:AB:F8:1C:3A:A4:F3:6C:D5:47:29:A7:0D:62:B4:46:84:06 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 0287 Signing time: Wed 05 Nov 2025 01:43:21 +0000 Manifest this update: Wed 05 Nov 2025 01:43:21 +0000 Manifest next update: Wed 12 Nov 2025 01:43:21 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: fM9/6iyrPLWWD/1YCgXgbACmnUisyGVLE545ug+2UeM=) 2: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: exVLBxR9pxtqc5cvsQFpU7WzBwIbqGPyCKYDoLeIqwE=) 3: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: qN+LRpSVnBxJ+EVMhollH7lNOxo/HzDT+qSzlpuJsAY=) 4: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: Uy1qQgtN2hy74kMiTUs5n5WOsga0Z6eI2tl5HqgZZRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Nov 5 01:43:21 2025 GMT Not After : Nov 12 01:43:21 2025 GMT Subject: CN=690aabb9-540c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:14:52:6c:ef:30:d0:47:7d:75:e6:82:56:e0: 27:04:45:b6:db:f0:d3:32:00:44:63:23:a6:99:1f: b2:a3:c0:bf:0b:64:f0:29:63:d1:f2:dd:dc:c4:5a: ae:8e:1a:8a:a9:d3:0c:61:36:16:73:59:37:5e:ce: 57:72:87:51:11:06:fa:73:d6:d7:1d:62:46:5e:9c: b3:aa:8c:19:0d:28:4c:46:fc:71:a6:b2:13:ce:68: d7:cb:08:4d:90:42:60:95:b6:29:41:da:1c:d3:16: c6:cc:d0:6f:d9:f8:15:9d:b1:24:44:44:e8:67:e2: 57:25:fc:e8:d7:0e:74:c4:d2:92:21:25:24:a0:1c: c2:3b:d3:c0:ef:46:da:a0:8f:e6:ed:07:06:f8:04: d2:de:2c:0d:bf:71:49:8e:5e:1d:c3:c2:be:d3:28: 5f:61:47:64:40:e6:32:f5:54:eb:b4:be:8d:bc:7b: e6:07:76:48:00:36:e1:62:7a:13:e0:9b:67:43:5e: 79:7b:92:5a:10:ff:b0:60:45:fd:0d:1c:8b:4b:f5: c1:41:a5:08:91:76:16:26:f4:e7:a6:00:da:57:d6: 55:2e:2c:59:01:92:3d:93:c9:ac:59:8f:0b:cd:e5: ef:ab:a1:01:d0:46:74:2e:75:98:bb:d5:4c:ec:0c: fd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:38:E9:AB:F8:1C:3A:A4:F3:6C:D5:47:29:A7:0D:62:B4:46:84:06 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e3:e5:5f:63:85:21:13:df:58:7b:fa:d1:a7:87:9a:39:3c: 55:22:21:10:d2:2b:41:83:6a:0b:91:41:9f:80:7f:be:dc:8b: cb:81:c0:ee:c6:7b:ec:fe:62:8d:53:4e:23:c6:db:7e:3e:81: f2:a5:da:7a:d1:20:7a:ad:8d:54:10:54:5d:b9:9b:c6:50:8b: b4:7b:47:1b:67:cf:be:94:a7:09:1a:6d:80:41:85:cc:6e:1c: 67:e8:96:3b:ab:b4:9e:4c:77:23:49:05:03:05:f8:e3:5e:78: 66:78:45:a5:d3:88:07:36:e9:cf:71:d6:67:78:de:d3:d7:fb: 91:9b:64:6e:71:d1:58:66:58:13:5c:ec:12:c9:cd:d7:db:87: 86:1e:d2:89:4d:dd:f0:01:ff:fc:5a:8f:87:30:3b:07:ac:4c: e5:02:8c:ec:b0:3e:f4:7f:67:51:b6:bc:8e:2d:a1:eb:cc:94: 39:f1:c8:4b:d2:7f:7e:76:3d:37:08:49:8d:33:7a:0c:4f:a4: da:bf:ec:7c:91:c7:16:d1:fb:d8:6d:cc:e6:ab:55:39:6f:db: 3e:59:9f:31:72:f3:e9:9f:a1:7b:77:d4:ef:1e:8c:26:2e:26: 4b:00:16:10:d9:b4:5b:e5:a7:8a:32:e8:9a:2e:25:ab:ba:fa: ee:da:01:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUxMTA1MDE0MzIxWhcNMjUxMTEyMDE0MzIxWjAYMRYwFAYD VQQDEw02OTBhYWJiOS01NDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhRSbO8w0Ed9deaCVuAnBEW22/DTMgBEYyOmmR+yo8C/C2TwKWPR8t3cxFqu jhqKqdMMYTYWc1k3Xs5XcodREQb6c9bXHWJGXpyzqowZDShMRvxxprITzmjXywhN kEJglbYpQdoc0xbGzNBv2fgVnbEkREToZ+JXJfzo1w50xNKSISUkoBzCO9PA70ba oI/m7QcG+ATS3iwNv3FJjl4dw8K+0yhfYUdkQOYy9VTrtL6NvHvmB3ZIADbhYnoT 4JtnQ155e5JaEP+wYEX9DRyLS/XBQaUIkXYWJvTnpgDaV9ZVLixZAZI9k8msWY8L zeXvq6EB0EZ0LnWYu9VM7Az9bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo46av4 HDqk82zVRymnDWK0RoQGMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb4+VfY4UhE99Ye/rRp4eaOTxVIiEQ0itBg2oLkUGfgH++3IvLgcDu xnvs/mKNU04jxtt+PoHypdp60SB6rY1UEFRduZvGUIu0e0cbZ8++lKcJGm2AQYXM bhxn6JY7q7SeTHcjSQUDBfjjXnhmeEWl04gHNunPcdZneN7T1/uRm2RucdFYZlgT XOwSyc3X24eGHtKJTd3wAf/8Wo+HMDsHrEzlAozssD70f2dRtryOLaHrzJQ58chL 0n9+dj03CEmNM3oMT6Tav+x8kccW0fvYbczmq1U5b9s+WZ8xcvPpn6F7d9TvHowm LiZLABYQ2bRb5aeKMuiaLiWruvru2gHU -----END CERTIFICATE-----Generated at Wed Nov 5 23:05:18 2025 by rpki-client