$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: fqSKQ3uc0IQ87MdlTFnKExPmm7NciS+zfCVAuDRD52Q= Subject key identifier: 3F:43:50:35:A3:00:E6:80:3C:D1:68:42:26:28:40:75:F2:6B:B5:E7 Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 02BD Signing time: Mon 03 Nov 2025 01:23:46 +0000 Manifest this update: Mon 03 Nov 2025 01:23:46 +0000 Manifest next update: Mon 10 Nov 2025 01:23:46 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: i9HwF5j9T3ZIIfK4dWQEqC4uMLV3dF4+ZSqc/bhJT/8=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Nov 3 01:23:46 2025 GMT Not After : Nov 10 01:23:46 2025 GMT Subject: CN=69080422-fd54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:dd:9e:b5:88:02:32:f3:a7:1d:16:26:c6: c8:ff:29:05:d2:af:8e:10:8e:17:1a:d1:68:f9:36: 92:a9:76:ac:3b:62:13:39:7b:2b:81:02:20:28:70: 6d:72:84:a2:a7:a5:e3:33:17:c2:61:37:be:c7:d0: 4e:7a:3a:51:81:58:fc:11:74:1a:a0:33:2f:4f:b8: f4:dd:5c:70:2f:3b:69:89:11:05:c4:47:0f:df:a5: 52:20:6e:b4:88:d9:5e:36:65:26:0f:db:af:a5:fc: ec:a4:e5:06:fc:b2:7d:56:44:3b:9d:32:c6:cd:61: 08:6a:20:ae:9e:81:2b:04:93:a2:ee:dd:3f:3c:4a: 89:85:2e:9e:07:c9:5e:17:6d:7f:d6:41:44:d3:55: 18:40:2f:4e:24:e9:7d:42:ba:ca:dd:9d:62:08:c9: 78:a8:7e:5a:65:c5:65:2b:86:cb:58:e4:c6:dc:d1: 1f:db:a6:d4:ed:ae:d0:c7:c3:aa:d0:95:c9:0a:a5: a2:ce:f0:5e:30:4c:10:92:7f:01:8a:bb:31:24:5b: 12:d8:f5:c7:69:8a:f4:bf:d0:23:00:94:1b:6d:1b: 2b:62:63:1c:8d:98:39:8c:df:89:c4:d9:b0:ab:4f: 1b:ba:d3:6c:1c:9a:68:08:e0:e8:05:6e:df:b1:2e: 50:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:43:50:35:A3:00:E6:80:3C:D1:68:42:26:28:40:75:F2:6B:B5:E7 X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7b:ff:bf:3a:d8:fc:43:65:9a:56:23:cc:4b:92:e9:b4:e3: 38:82:d6:c9:10:75:ef:d3:68:ec:a3:9f:db:61:3d:dc:ea:a0: 65:c3:2a:43:d7:bb:3d:85:81:97:88:52:f4:12:ca:2b:ce:7e: 41:7b:ec:62:1b:9d:e6:8f:af:0a:2f:c9:cc:87:ab:35:33:ca: b9:ed:71:10:1f:c5:67:f0:cd:78:f1:85:c9:61:14:e8:f7:e2: 13:c2:33:b0:3a:af:ae:c8:74:54:90:fe:52:dc:8c:b5:aa:90: 2d:6b:b7:4a:b2:d4:63:85:1f:23:44:53:af:e2:ce:13:7e:c7: ea:c7:41:4d:a1:12:77:29:46:ed:1d:f4:a9:c7:f1:0d:0b:73: 24:48:a3:9c:b9:90:58:ec:6e:51:5e:0a:3d:ac:43:94:31:a5: 9c:d2:1a:77:86:be:43:3e:1a:40:3b:cf:5a:a6:17:5d:96:54: 63:8e:94:26:92:dd:47:9b:90:55:d5:b5:f9:a6:0c:1b:09:8c: 7b:29:d2:b2:d0:07:b4:f8:2e:45:eb:bf:cc:0b:86:e5:47:ce: 1d:20:73:94:6d:ce:ef:fb:27:d4:71:95:fe:97:5d:25:39:f7: 74:5a:5d:2e:b1:59:85:91:48:c3:83:72:15:1a:35:16:44:37: c6:ae:71:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUxMTAzMDEyMzQ2WhcNMjUxMTEwMDEyMzQ2WjAYMRYwFAYD VQQDEw02OTA4MDQyMi1mZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7vdnrWIAjLzpx0WJsbI/ykF0q+OEI4XGtFo+TaSqXasO2ITOXsrgQIgKHBt coSip6XjMxfCYTe+x9BOejpRgVj8EXQaoDMvT7j03VxwLztpiREFxEcP36VSIG60 iNleNmUmD9uvpfzspOUG/LJ9VkQ7nTLGzWEIaiCunoErBJOi7t0/PEqJhS6eB8le F21/1kFE01UYQC9OJOl9QrrK3Z1iCMl4qH5aZcVlK4bLWOTG3NEf26bU7a7Qx8Oq 0JXJCqWizvBeMEwQkn8BirsxJFsS2PXHaYr0v9AjAJQbbRsrYmMcjZg5jN+JxNmw q08butNsHJpoCODoBW7fsS5Q4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9DUDWj AOaAPNFoQiYoQHXya7XnMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAre/+/Otj8Q2WaViPMS5LptOM4gtbJEHXv02jso5/bYT3c6qBlwypD 17s9hYGXiFL0Esorzn5Be+xiG53mj68KL8nMh6s1M8q57XEQH8Vn8M148YXJYRTo 9+ITwjOwOq+uyHRUkP5S3Iy1qpAta7dKstRjhR8jRFOv4s4Tfsfqx0FNoRJ3KUbt HfSpx/ENC3MkSKOcuZBY7G5RXgo9rEOUMaWc0hp3hr5DPhpAO89aphddllRjjpQm kt1Hm5BV1bX5pgwbCYx7KdKy0Ae0+C5F67/MC4blR84dIHOUbc7v+yfUcZX+l10l Ofd0Wl0usVmFkUjDg3IVGjUWRDfGrnGd -----END CERTIFICATE-----Generated at Tue Nov 4 02:17:02 2025 by rpki-client