$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft File: -_gSoLmqiu1iGHbIkgH_8QQytpc.mft (raw, json) Hash identifier: fu/lKPQdZC6zG149j5SKhZiyRiSYPizsbm8wVGltrkU= Subject key identifier: 93:AB:52:7E:D4:20:26:70:7C:F0:D5:71:54:DB:7E:64:1A:1A:27:8B Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft Manifest number: 75 Signing time: Wed 05 Nov 2025 07:02:38 +0000 Manifest this update: Wed 05 Nov 2025 07:02:37 +0000 Manifest next update: Wed 12 Nov 2025 07:02:37 +0000 Files and hashes: 1: -_gSoLmqiu1iGHbIkgH_8QQytpc.crl (hash: rOvzu3XXMb6v87MRVYcCSXXKuYOI9oiQisgxk+i5FEI=) 2: 5F2F693A061211F0BA5A2029C4F9AE02.roa (hash: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330, serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Validity Not Before: Nov 5 07:02:37 2025 GMT Not After : Nov 12 07:02:37 2025 GMT Subject: CN=690af68d-0c91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6f:c7:07:b9:8c:e8:3c:4a:c1:ec:e7:90:1a: 26:9a:89:3d:69:06:b6:6f:80:6a:2a:6e:14:22:9e: 99:da:ca:28:74:b8:e0:90:4e:20:53:f8:8b:88:73: 2f:d3:63:3e:4d:bd:0d:53:47:8a:eb:af:c4:ee:1a: 4a:23:ef:65:d1:66:b3:a6:ac:5c:8e:f1:54:36:bb: cd:3c:4b:54:35:4e:14:2d:43:bc:39:d5:95:2e:8b: a1:76:6c:cf:7e:ff:f2:94:48:5a:29:f3:0a:93:0a: f1:35:a8:a2:4d:7e:f0:d7:d3:4a:13:72:81:d3:6e: 95:46:70:c5:ef:4e:11:c5:0f:5f:3a:81:93:e2:f5: ef:03:96:7a:ce:65:5c:a8:79:a2:81:d5:c2:67:ec: 1d:6f:18:7f:65:3d:b1:7e:7c:e6:89:b5:be:ef:96: 4a:03:16:90:fe:36:70:58:9b:42:23:7f:8b:c4:8f: 11:8f:d5:31:a9:57:95:c9:ce:04:97:72:08:0d:55: 09:3a:f4:e8:70:63:27:fa:60:aa:88:2b:22:a1:03: 07:66:ee:de:45:f0:82:b5:b8:72:2e:d4:76:97:b2: 59:73:46:7e:c9:8f:9b:81:a3:e7:85:a2:51:7c:f3: 1a:9f:5f:60:db:45:dd:12:18:79:ad:2a:7e:94:4e: be:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:AB:52:7E:D4:20:26:70:7C:F0:D5:71:54:DB:7E:64:1A:1A:27:8B X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:77:c3:22:c9:59:a6:a2:37:9f:a2:87:1b:59:c9:9e:63:47: 48:d3:06:a9:ca:d5:c1:0d:49:e1:2e:a0:81:7d:4a:a5:13:c9: d0:df:5f:bd:0f:a7:46:ea:10:01:38:0b:b3:ff:23:30:72:9f: 38:7e:25:8c:44:5b:01:91:28:4b:f5:1a:aa:40:85:f2:57:27: d2:92:15:c0:57:dc:56:64:c9:11:8b:50:4b:ac:17:05:ba:b6: 14:81:eb:96:5c:81:eb:9b:32:cb:d5:a7:58:5b:c2:e9:36:9f: 77:66:83:8d:de:ab:04:e8:50:35:10:72:41:47:cc:47:9c:bc: 81:e9:0a:48:1d:ec:59:ee:08:92:2b:2e:dc:33:3c:ad:03:88: f2:12:41:36:3a:cf:9e:24:4f:93:c0:38:0f:ef:74:65:1d:fb: 36:b5:9e:42:d6:a3:c0:4e:b1:59:f8:e1:ba:de:ff:ae:d1:25: b1:1c:5a:6b:52:14:d5:30:87:07:b4:b6:96:f0:9e:b2:1c:5c: 4f:cd:8e:19:c0:43:40:90:e3:56:52:b7:ef:6e:63:39:1d:83: fb:fa:95:38:61:5e:d5:a6:3a:18:42:d0:91:99:6d:a2:ff:ba: 6c:70:44:1b:e8:4d:93:57:47:17:49:b1:8c:f0:c6:da:db:f6: 6e:82:4d:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTExMDUwNzAyMzdaFw0yNTExMTIwNzAyMzdaMBgxFjAUBgNV BAMTDTY5MGFmNjhkLTBjOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVb8cHuYzoPErB7OeQGiaaiT1pBrZvgGoqbhQinpnayih0uOCQTiBT+IuIcy/T Yz5NvQ1TR4rrr8TuGkoj72XRZrOmrFyO8VQ2u808S1Q1ThQtQ7w51ZUui6F2bM9+ //KUSFop8wqTCvE1qKJNfvDX00oTcoHTbpVGcMXvThHFD186gZPi9e8DlnrOZVyo eaKB1cJn7B1vGH9lPbF+fOaJtb7vlkoDFpD+NnBYm0Ijf4vEjxGP1TGpV5XJzgSX cggNVQk69OhwYyf6YKqIKyKhAwdm7t5F8IK1uHIu1HaXsllzRn7Jj5uBo+eFolF8 8xqfX2DbRd0SGHmtKn6UTr6XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUk6tSftQg JnB88NVxVNt+ZBoaJ4swHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MzMwL0FBRTQ5QTM4MDYwRjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUx aUdIYklrZ0hfOFFReXRwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ93wyLJWaaiN5+ihxtZyZ5jR0jTBqnK1cENSeEuoIF9SqUTydDfX70P p0bqEAE4C7P/IzBynzh+JYxEWwGRKEv1GqpAhfJXJ9KSFcBX3FZkyRGLUEusFwW6 thSB65ZcgeubMsvVp1hbwuk2n3dmg43eqwToUDUQckFHzEecvIHpCkgd7FnuCJIr LtwzPK0DiPISQTY6z54kT5PAOA/vdGUd+za1nkLWo8BOsVn44bre/67RJbEcWmtS FNUwhwe0tpbwnrIcXE/NjhnAQ0CQ41ZSt+9uYzkdg/v6lThhXtWmOhhC0JGZbaL/ umxwRBvoTZNXRxdJsYzwxtrb9m6CTSQ= -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:12 2025 by rpki-client