$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: vIjHAEkk+t82aIsvxMtAqsa4U2TefD28c3lnjft+Qbk= Subject key identifier: 53:8C:8A:F3:21:D4:D1:5D:85:C9:32:52:D0:FF:9C:8C:AB:0A:9D:B9 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 027C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 06E7 Signing time: Wed 05 Nov 2025 00:09:12 +0000 Manifest this update: Wed 05 Nov 2025 00:09:11 +0000 Manifest next update: Wed 12 Nov 2025 00:09:11 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: yNf34qwH0lnYM/68HKHhX6/tWVQMPn/wU9L2sd3Wazs=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: g9az2eJZ2fUas4ad3d/QH9wXCAIefnJD9ePsqv2jusw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Nov 5 00:09:11 2025 GMT Not After : Nov 12 00:09:11 2025 GMT Subject: CN=690a95a8-58a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:a9:5e:4e:0b:08:7b:58:0a:d4:ed:ce:af: c4:24:d0:1a:6b:11:55:0c:37:e5:5c:35:5f:9d:5b: eb:25:40:e0:b7:4f:4d:77:5c:50:93:a7:30:86:7b: 7b:1e:5e:c8:65:bb:6b:28:88:8c:28:c0:04:77:80: 86:8d:98:5c:c0:2d:f8:23:15:a8:2f:3c:5f:70:8f: 6a:95:5f:9c:a1:77:3b:71:fa:b8:a0:7c:04:19:1e: 01:e2:e9:17:b3:6e:25:dc:ef:f2:0c:3b:87:fe:05: 54:9a:4b:4c:11:78:75:b8:6c:78:2c:7a:ba:15:c9: 1e:c1:a8:d4:ba:a6:90:86:d5:02:fa:d1:2e:ca:2e: c1:16:ad:31:40:82:9b:e9:0f:d9:86:44:de:94:39: 55:1c:27:80:06:1c:2a:21:ad:0a:6b:c4:4e:74:8e: c1:9b:3c:ba:13:0d:0e:13:4d:09:eb:dd:4d:cf:cd: e6:5a:da:9f:80:07:79:ec:30:db:ea:66:e0:bd:27: bf:d4:70:19:50:1f:9c:c5:5a:72:c8:79:fe:49:58: 8c:4e:88:9d:55:95:24:63:19:fd:5a:21:1c:d7:a5: 18:65:b8:0a:d5:a2:91:ec:ac:8f:76:3f:94:bb:50: 46:cb:25:54:d3:c9:e8:fa:e1:06:17:11:f6:cf:a8: 26:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8C:8A:F3:21:D4:D1:5D:85:C9:32:52:D0:FF:9C:8C:AB:0A:9D:B9 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c8:2a:ef:16:f8:b4:39:c9:0f:fd:d1:e3:e5:8b:f5:7c:50: 05:93:05:28:db:c1:61:2a:5b:81:fd:11:90:1b:5c:a9:3c:69: 7a:08:d4:db:18:f3:74:97:43:5f:68:da:9c:6c:b1:d1:a3:20: 85:75:43:d2:83:2b:2e:b0:77:bd:40:45:13:d6:f2:9d:3a:45: 56:9d:f8:1b:bc:4d:75:23:46:2b:d5:ea:67:9c:83:38:dc:74: b8:07:fb:45:43:82:36:2a:aa:e5:c3:d0:d7:59:18:0a:09:d8: 06:e1:94:d6:6c:23:b1:ab:c5:d4:70:88:11:09:dc:6e:b6:65: d3:ca:0e:95:42:25:82:c8:31:8d:63:08:b8:80:57:10:ad:59: 6d:ee:1f:1e:e5:96:91:20:8c:c6:40:43:7c:da:25:3a:18:90: 6c:52:06:16:a5:20:16:93:cf:50:e9:f1:b5:9f:d1:83:e2:2b: 45:df:2e:4e:59:f6:39:fc:9f:85:64:63:f9:eb:78:ab:72:7f: 12:6f:71:81:79:a5:f2:f2:ce:68:bd:58:0e:60:4b:18:bb:c2: 4b:bc:f2:72:79:72:d6:a9:98:a8:3e:b6:79:e4:89:88:f1:49: 6e:df:a0:ce:95:0a:59:ee:63:31:78:e7:3f:90:c6:a8:c4:82: 75:a1:25:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUxMTA1MDAwOTExWhcNMjUxMTEyMDAwOTExWjAYMRYwFAYD VQQDEw02OTBhOTVhOC01OGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuapXk4LCHtYCtTtzq/EJNAaaxFVDDflXDVfnVvrJUDgt09Nd1xQk6cwhnt7 Hl7IZbtrKIiMKMAEd4CGjZhcwC34IxWoLzxfcI9qlV+coXc7cfq4oHwEGR4B4ukX s24l3O/yDDuH/gVUmktMEXh1uGx4LHq6FckewajUuqaQhtUC+tEuyi7BFq0xQIKb 6Q/ZhkTelDlVHCeABhwqIa0Ka8ROdI7Bmzy6Ew0OE00J691Nz83mWtqfgAd57DDb 6mbgvSe/1HAZUB+cxVpyyHn+SViMToidVZUkYxn9WiEc16UYZbgK1aKR7KyPdj+U u1BGyyVU08no+uEGFxH2z6gm5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOMivMh 1NFdhckyUtD/nIyrCp25MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuyCrvFvi0OckP/dHj5Yv1fFAFkwUo28FhKluB/RGQG1ypPGl6CNTb GPN0l0NfaNqcbLHRoyCFdUPSgysusHe9QEUT1vKdOkVWnfgbvE11I0Yr1epnnIM4 3HS4B/tFQ4I2Kqrlw9DXWRgKCdgG4ZTWbCOxq8XUcIgRCdxutmXTyg6VQiWCyDGN Ywi4gFcQrVlt7h8e5ZaRIIzGQEN82iU6GJBsUgYWpSAWk89Q6fG1n9GD4itF3y5O WfY5/J+FZGP563ircn8Sb3GBeaXy8s5ovVgOYEsYu8JLvPJyeXLWqZioPrZ55ImI 8Ulu36DOlQpZ7mMxeOc/kMaoxIJ1oSUq -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:32 2025 by rpki-client