$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: VxVqVcnP+7FVe4llQgQHwWDwLf8DV1kv8GoRLo84jPw= Subject key identifier: A7:7D:AC:B2:25:6A:20:0D:0F:3C:A7:E6:10:83:CF:41:7C:A1:42:3D Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 02CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 02C6 Signing time: Mon 03 Nov 2025 01:21:51 +0000 Manifest this update: Mon 03 Nov 2025 01:21:50 +0000 Manifest next update: Mon 10 Nov 2025 01:21:50 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: hGdYh9PQCC8JJvE0g080/0izw9nbLRlVH9BKtd+pCCQ=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: Nov 3 01:21:50 2025 GMT Not After : Nov 10 01:21:50 2025 GMT Subject: CN=690803ae-555f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a1:31:f5:70:61:8d:15:b7:5f:66:26:67:68: 28:30:46:a9:aa:f9:7c:04:12:f1:13:8a:c8:69:fa: 5a:6f:b3:22:1a:89:e3:8b:db:6a:ab:db:35:53:dd: d1:5c:74:27:44:53:e6:a1:42:ef:e8:9e:a9:b4:97: 5a:15:ce:5f:06:45:53:42:53:35:8a:ce:e6:02:c8: 29:1c:86:c4:21:b0:fc:42:df:c8:df:9e:96:4a:0f: 4b:b1:78:62:39:be:07:0a:f6:88:76:3f:f6:68:ef: 9a:7c:38:e6:4e:aa:26:b7:eb:48:3a:da:01:50:f0: 62:06:bb:ff:38:b8:81:dc:4c:f2:cf:62:4c:1d:f4: ca:17:6c:de:2f:7b:d0:9f:0f:81:8a:01:ab:42:6b: d1:91:04:44:e7:b2:6e:61:06:d1:9a:50:75:29:9a: 73:dd:6b:6e:ec:0f:20:a8:0b:1b:b6:07:c7:d9:94: 2b:72:d1:4d:51:ca:d9:d9:69:89:0d:71:2b:0d:86: d4:7e:a4:03:55:a2:c4:8e:7a:59:8a:b2:2b:51:b3: 64:d9:ec:9c:11:25:8b:cd:0a:82:07:ca:f9:fb:7a: 37:37:ba:9d:d3:a6:3a:38:4b:fe:bc:b4:15:3b:02: 0a:0b:23:28:e4:c3:3e:ce:f4:6d:cb:92:3c:a6:9b: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:7D:AC:B2:25:6A:20:0D:0F:3C:A7:E6:10:83:CF:41:7C:A1:42:3D X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:09:da:81:70:fc:18:7d:07:35:d7:08:31:cb:53:32:53:1e: 20:51:32:43:35:09:3a:be:7a:9d:f6:4b:fc:af:02:5b:31:e2: 28:4b:3a:d1:7f:1a:a8:83:0e:84:07:22:dd:7d:0e:39:19:74: fe:0f:c5:19:cc:4f:35:a8:ef:11:5f:5e:4a:f9:d4:0a:77:ee: 5e:6a:e9:a6:0c:d7:91:b4:25:01:19:b9:ed:0c:7a:19:c4:9b: ee:f6:bb:e7:de:2b:66:73:c0:c0:81:d0:02:9b:fb:b3:7e:f4: 5a:e2:6c:db:2f:a2:78:5d:bc:f2:98:28:2c:39:d7:ed:11:51: c0:99:28:93:50:58:9f:85:d7:10:a0:9c:38:fc:ea:7c:6c:6e: 3d:ac:b3:43:a1:91:48:6e:d5:60:1e:eb:d9:c4:32:0c:f6:6d: c1:92:14:97:de:b2:d9:16:07:ac:81:55:35:db:35:37:8c:b0: a2:cd:22:64:47:a7:f9:1b:15:b1:8d:03:ec:d8:9a:15:cd:93: b5:2a:5e:77:e2:4a:8b:d5:0a:45:f5:16:d9:87:76:22:67:dc: b9:3e:e5:a0:2c:40:08:69:0b:0d:5b:a5:1d:c0:96:b4:11:56: e8:5d:56:28:60:b5:48:8c:51:f6:a2:75:99:c1:f8:10:5a:ae: cb:d6:7b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUxMTAzMDEyMTUwWhcNMjUxMTEwMDEyMTUwWjAYMRYwFAYD VQQDEw02OTA4MDNhZS01NTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7aEx9XBhjRW3X2YmZ2goMEapqvl8BBLxE4rIafpab7MiGonji9tqq9s1U93R XHQnRFPmoULv6J6ptJdaFc5fBkVTQlM1is7mAsgpHIbEIbD8Qt/I356WSg9LsXhi Ob4HCvaIdj/2aO+afDjmTqomt+tIOtoBUPBiBrv/OLiB3Ezyz2JMHfTKF2zeL3vQ nw+BigGrQmvRkQRE57JuYQbRmlB1KZpz3Wtu7A8gqAsbtgfH2ZQrctFNUcrZ2WmJ DXErDYbUfqQDVaLEjnpZirIrUbNk2eycESWLzQqCB8r5+3o3N7qd06Y6OEv+vLQV OwIKCyMo5MM+zvRty5I8pptCjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKd9rLIl aiANDzyn5hCDz0F8oUI9MB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsCdqBcPwYfQc11wgxy1MyUx4gUTJDNQk6vnqd9kv8rwJbMeIoSzrR fxqogw6EByLdfQ45GXT+D8UZzE81qO8RX15K+dQKd+5eaummDNeRtCUBGbntDHoZ xJvu9rvn3itmc8DAgdACm/uzfvRa4mzbL6J4XbzymCgsOdftEVHAmSiTUFifhdcQ oJw4/Op8bG49rLNDoZFIbtVgHuvZxDIM9m3BkhSX3rLZFgesgVU12zU3jLCizSJk R6f5GxWxjQPs2JoVzZO1Kl534kqL1QpF9RbZh3YiZ9y5PuWgLEAIaQsNW6UdwJa0 EVboXVYoYLVIjFH2onWZwfgQWq7L1nt0 -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:03 2025 by rpki-client