$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: ytdWv2ooK4dvuIiwMNIflric734kWenoeQTVR8dJ0PE= Subject key identifier: 18:47:C6:96:D8:93:E1:7F:D8:E4:E3:79:18:E9:31:D2:83:32:00:E8 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1C9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C8F Signing time: Tue 04 Nov 2025 16:16:23 +0000 Manifest this update: Tue 04 Nov 2025 16:16:23 +0000 Manifest next update: Tue 11 Nov 2025 16:16:23 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: CtTRRB4u/VIZx1G0C9fM1mxbzTXdIHU+38kwtENQNg4=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7327 (0x1c9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Nov 4 16:16:23 2025 GMT Not After : Nov 11 16:16:23 2025 GMT Subject: CN=690a26d7-dbe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:84:3f:64:ab:c8:f7:97:e2:4a:b6:7a:26:23: e3:c6:5b:bf:f3:52:fd:b1:25:78:8d:61:60:63:1a: 3f:ca:e2:c1:ed:4e:4c:a1:74:82:f9:b6:a7:2b:39: c8:23:28:0d:f3:3f:87:0e:7f:c5:49:a7:ea:a6:a3: 47:40:c3:ad:9e:b2:f1:22:e7:da:25:72:d5:0d:f7: 2f:50:2a:71:fa:bc:10:71:35:21:5f:0b:96:71:63: e1:d2:9f:ee:6d:70:38:48:c6:6a:73:38:a5:16:af: 30:9a:5b:c7:37:6c:5b:20:d1:ef:02:91:15:47:92: c1:41:e4:30:f2:33:8c:b3:52:0b:7e:f2:a3:a1:b9: 10:74:bd:ab:82:2c:35:70:de:9e:1a:3d:5c:71:16: c9:05:10:98:a3:ae:aa:99:74:c7:1e:fa:46:dc:b2: 5f:b1:1e:f5:c2:47:6d:a8:4c:2e:c6:b9:a9:96:aa: 27:ae:88:6e:3d:b0:73:9f:c9:4f:27:22:9d:bc:33: 62:4d:15:c3:5b:be:4e:94:5d:04:80:f1:46:95:1e: ee:19:01:d5:7a:ad:4c:7c:4f:a3:14:28:17:b5:85: 0f:be:b7:ed:c2:ab:2e:46:ca:57:c3:db:06:74:93: 18:8a:70:80:8a:12:06:61:64:81:59:0d:7b:75:e1: 93:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:47:C6:96:D8:93:E1:7F:D8:E4:E3:79:18:E9:31:D2:83:32:00:E8 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:0a:f7:0b:d9:49:61:85:45:03:6b:20:b6:a1:b1:02:ac:43: 86:5b:f1:1d:90:00:c3:17:5e:03:a7:94:2a:c1:21:49:ca:69: cd:23:bb:2a:b1:38:0b:9e:2c:c0:d3:ef:96:90:c0:1a:fb:84: 38:ef:53:1d:d4:e7:d5:38:36:95:ca:59:db:31:a5:0b:0b:9d: d4:29:a1:a0:6f:90:85:b9:f0:ff:4d:be:50:94:d9:73:d1:98: 26:00:04:66:e6:e3:ec:75:37:04:7b:75:19:8c:3c:1c:84:85: e7:65:e8:b6:d5:f7:21:eb:9b:df:6a:db:16:93:cd:f7:e4:48: 02:8e:32:5d:4f:ea:6d:02:ef:07:05:dc:49:51:a9:b7:bd:0d: 3a:6e:39:b5:ad:1f:0d:a2:bc:b6:06:55:85:68:15:f3:ad:f3: f4:c0:4f:f7:d3:7b:15:43:ca:c2:b7:62:4b:e7:2c:92:ed:ca: da:cf:dd:a7:91:ce:34:38:4a:5d:2c:1f:de:ed:69:5f:af:96: d2:0b:71:81:ff:f1:e5:26:3b:9e:06:bc:7a:e8:f1:a7:8f:33: d1:1f:da:29:b7:9b:80:4f:2e:2c:68:8b:2b:ab:12:a4:da:79: 18:a7:53:66:03:ae:50:e2:ce:1e:09:4a:3f:b3:42:21:33:00: 52:ac:82:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUxMTA0MTYxNjIzWhcNMjUxMTExMTYxNjIzWjAYMRYwFAYD VQQDEw02OTBhMjZkNy1kYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYQ/ZKvI95fiSrZ6JiPjxlu/81L9sSV4jWFgYxo/yuLB7U5MoXSC+banKznI IygN8z+HDn/FSafqpqNHQMOtnrLxIufaJXLVDfcvUCpx+rwQcTUhXwuWcWPh0p/u bXA4SMZqczilFq8wmlvHN2xbINHvApEVR5LBQeQw8jOMs1ILfvKjobkQdL2rgiw1 cN6eGj1ccRbJBRCYo66qmXTHHvpG3LJfsR71wkdtqEwuxrmplqonrohuPbBzn8lP JyKdvDNiTRXDW75OlF0EgPFGlR7uGQHVeq1MfE+jFCgXtYUPvrftwqsuRspXw9sG dJMYinCAihIGYWSBWQ17deGT5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhHxpbY k+F/2OTjeRjpMdKDMgDoMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBECvcL2UlhhUUDayC2obECrEOGW/EdkADDF14Dp5QqwSFJymnNI7sq sTgLnizA0++WkMAa+4Q471Md1OfVODaVylnbMaULC53UKaGgb5CFufD/Tb5QlNlz 0ZgmAARm5uPsdTcEe3UZjDwchIXnZei21fch65vfatsWk8335EgCjjJdT+ptAu8H BdxJUam3vQ06bjm1rR8Nory2BlWFaBXzrfP0wE/303sVQ8rCt2JL5yyS7craz92n kc40OEpdLB/e7Wlfr5bSC3GB//HlJjueBrx66PGnjzPRH9opt5uATy4saIsrqxKk 2nkYp1NmA65Q4s4eCUo/s0IhMwBSrIKK -----END CERTIFICATE-----Generated at Wed Nov 5 16:42:53 2025 by rpki-client