$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: 7dloXMlF+i9eMZ8OViRnOMKz1DZ0PxyBh/NuEz1hxuo= Subject key identifier: D6:13:51:35:69:B1:C9:F5:5A:0C:C0:AF:0F:97:B1:DA:F0:67:71:1F Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: CA Signing time: Mon 03 Nov 2025 05:46:55 +0000 Manifest this update: Mon 03 Nov 2025 05:46:55 +0000 Manifest next update: Mon 10 Nov 2025 05:46:55 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: dfy5g+YF9EBtoSqHmRohKj74ij55+01ajQpi8prKQ6I=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Nov 3 05:46:55 2025 GMT Not After : Nov 10 05:46:55 2025 GMT Subject: CN=690841cf-72e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:d9:6a:d8:68:82:5d:0f:35:8a:3e:b4:ab: 28:c4:f7:10:0b:11:d4:33:0d:fb:02:7d:fc:a0:78: bf:89:af:5c:51:fd:44:2b:b7:61:fc:ec:0f:59:79: 4d:35:a0:a5:1f:cd:5f:cb:ef:61:56:12:c2:6f:d2: ce:14:05:f8:aa:86:14:88:43:f8:01:b1:64:a8:79: 05:3e:9e:00:22:0a:00:1c:9c:28:c4:51:60:a9:ca: ac:f6:ad:da:fb:1e:e6:5c:4c:b1:4a:57:1e:d3:86: b2:ff:8f:f7:a4:58:fa:65:79:90:80:94:23:37:40: 4d:0f:a2:f8:28:5a:f9:d9:ea:fe:ef:2d:7d:60:9a: 16:3d:18:e7:8c:97:bb:46:13:d4:a3:12:d5:0d:93: e6:ab:de:38:e9:4f:e0:27:d3:89:9b:b5:e2:66:b3: 73:c8:88:e1:99:c8:a1:98:d1:6c:d6:7a:bc:9d:1b: d9:5d:01:17:a1:5a:8c:3d:f8:07:ef:0f:a5:a3:8c: 0e:a1:92:7d:c9:32:18:0b:99:a0:ba:24:5c:54:87: fe:3d:8b:40:53:e2:98:3c:ec:15:2d:16:c6:a2:cd: 94:0f:c2:80:94:cb:ca:88:51:46:30:3e:c0:2a:b0: 37:12:6e:5f:fb:a1:21:82:7b:7b:29:c0:d5:8d:28: 3b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:13:51:35:69:B1:C9:F5:5A:0C:C0:AF:0F:97:B1:DA:F0:67:71:1F X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:7f:c2:ae:19:63:c8:8f:50:f0:52:34:ce:ae:c6:6a:05:a4: 31:d7:af:d9:32:0b:72:37:7f:9c:77:89:50:71:94:d8:53:43: ed:13:83:58:f2:31:65:16:3a:c6:a3:b3:1b:be:da:16:6e:f9: 3b:6e:cb:60:95:47:9b:e2:c3:5a:b9:df:98:7b:3b:a7:54:60: 9f:44:6e:c3:d1:50:f4:77:12:28:f1:32:60:3c:15:ce:61:dc: c7:59:d0:b1:0a:4b:52:7a:51:af:f3:73:f6:c1:16:14:b9:f6: fe:c4:bb:70:0f:9c:9f:6b:2f:54:c9:ad:48:aa:d1:ad:f5:ef: af:ce:8b:b3:04:da:87:7a:5f:41:b6:9c:5d:c0:6d:6a:0e:48: c9:67:e6:53:73:cf:56:07:89:6d:0a:fc:c7:00:b5:12:0f:96: c9:69:9c:50:64:99:a3:ca:55:67:2b:14:0a:8c:e9:71:52:25: 3d:c4:d7:2b:7a:90:25:72:51:29:d8:55:e4:d5:4d:55:2a:4d: a9:f5:bd:aa:bf:f1:68:8b:bf:7e:43:79:12:23:5e:64:98:0a: 67:f2:81:56:10:56:09:ae:d3:d6:1f:b0:15:63:6d:9b:39:05: 93:bc:87:eb:72:1d:86:a0:68:26:ac:76:e9:e4:cc:46:f7:f4: 4f:ec:e9:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUxMTAzMDU0NjU1WhcNMjUxMTEwMDU0NjU1WjAYMRYwFAYD VQQDEw02OTA4NDFjZi03MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0evZathogl0PNYo+tKsoxPcQCxHUMw37An38oHi/ia9cUf1EK7dh/OwPWXlN NaClH81fy+9hVhLCb9LOFAX4qoYUiEP4AbFkqHkFPp4AIgoAHJwoxFFgqcqs9q3a +x7mXEyxSlce04ay/4/3pFj6ZXmQgJQjN0BND6L4KFr52er+7y19YJoWPRjnjJe7 RhPUoxLVDZPmq9446U/gJ9OJm7XiZrNzyIjhmcihmNFs1nq8nRvZXQEXoVqMPfgH 7w+lo4wOoZJ9yTIYC5mguiRcVIf+PYtAU+KYPOwVLRbGos2UD8KAlMvKiFFGMD7A KrA3Em5f+6Ehgnt7KcDVjSg7mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYTUTVp scn1WgzArw+XsdrwZ3EfMB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/f8KuGWPIj1DwUjTOrsZqBaQx16/ZMgtyN3+cd4lQcZTYU0PtE4NY 8jFlFjrGo7MbvtoWbvk7bstglUeb4sNaud+YezunVGCfRG7D0VD0dxIo8TJgPBXO YdzHWdCxCktSelGv83P2wRYUufb+xLtwD5yfay9Uya1IqtGt9e+vzouzBNqHel9B tpxdwG1qDkjJZ+ZTc89WB4ltCvzHALUSD5bJaZxQZJmjylVnKxQKjOlxUiU9xNcr epAlclEp2FXk1U1VKk2p9b2qv/Foi79+Q3kSI15kmApn8oFWEFYJrtPWH7AVY22b OQWTvIfrch2GoGgmrHbp5MxG9/RP7Okh -----END CERTIFICATE-----Generated at Tue Nov 4 19:01:41 2025 by rpki-client