$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft File: gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft (raw, json) Hash identifier: j3eIta9wMlTXe4E7mMUurljxCnfh+Nghwn7F1p6kjnI= Subject key identifier: 30:B2:0F:72:79:0B:40:77:57:D6:E7:6C:D9:1A:E4:AD:7E:C4:0E:68 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft Manifest number: 0B6C Signing time: Thu 06 Nov 2025 18:13:39 +0000 Manifest this update: Thu 06 Nov 2025 18:13:38 +0000 Manifest next update: Thu 13 Nov 2025 18:13:38 +0000 Files and hashes: 1: gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl (hash: xz1AJSx1/ENP+sQRBov7V2CFEty02fWFxSzT+Ce7WFw=) 2: 89340B10B5E011EE91DD4D53C4F9AE02.roa (hash: Q9mMB9C2C5zqftIwQCLURXaOhu4FrV/pPVzwERgSn2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 18:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2942 (0xb7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Nov 6 18:13:38 2025 GMT Not After : Nov 13 18:13:38 2025 GMT Subject: CN=690ce552-43e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3f:c1:63:87:20:70:4f:50:e8:f4:b7:bd:40: 2b:23:86:4f:58:e3:35:47:75:1b:c0:16:d8:d1:da: 96:cb:c0:18:a8:67:92:f0:9c:40:c3:a0:e6:14:86: 12:62:01:3a:b3:89:ce:ee:a3:df:f2:6e:5b:22:16: 3a:e9:34:61:9a:35:96:c7:37:9f:54:f7:ee:54:cd: 10:dd:51:69:83:3b:18:c8:33:d1:da:b6:37:20:70: 69:21:e1:ee:ab:62:5d:19:29:0f:70:c0:6e:62:59: 60:ae:09:c0:71:c6:ed:f7:f5:10:2e:11:60:0d:be: d5:ac:51:d4:01:19:1a:4c:b5:ad:79:0b:17:20:53: 37:42:a7:27:01:aa:95:db:78:57:a6:82:d8:37:0d: 2e:ba:f2:14:ef:5a:3d:90:8e:6f:6e:5c:a3:6a:d6: 34:d6:71:f9:8f:a6:43:f1:57:66:0e:9b:98:bb:da: 56:36:ea:79:ad:e9:74:c3:04:b0:05:76:9c:2a:be: aa:aa:7c:7b:5a:be:b6:16:3b:a4:d2:54:bb:aa:a4: 59:b2:c4:32:7a:a9:ce:e6:e9:df:eb:96:a2:5a:3e: c1:e6:23:6b:26:cd:8a:67:b8:bb:65:38:e1:4f:e4: 61:bf:25:45:b6:27:aa:3e:20:d0:ed:f6:ca:7c:3c: e4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B2:0F:72:79:0B:40:77:57:D6:E7:6C:D9:1A:E4:AD:7E:C4:0E:68 X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7b:23:11:9b:56:e3:64:44:74:a4:fc:1d:32:5e:f4:fa:2c: 44:94:46:6a:7e:1f:38:d1:a3:20:a4:05:70:19:7d:70:14:02: 2d:ac:b0:c6:8c:26:5b:02:e2:0b:83:d9:da:d9:35:4d:e0:0f: 59:77:9c:4d:c5:13:c2:cf:fd:6a:a7:8f:70:a8:dc:e6:72:03: 04:ae:42:45:35:4e:70:e8:d9:d7:dd:59:a6:2a:3b:9c:1e:c3: f2:8e:cd:9e:fa:5b:b8:cf:82:a5:3c:00:66:ea:a4:59:3e:eb: 64:fa:dc:c1:d5:f4:52:cc:c1:a8:db:ce:21:a4:88:35:5e:57: 4d:71:93:69:c5:ae:b9:6e:bd:81:62:fe:6a:4e:8d:d5:90:47: f8:19:4b:44:3c:f6:a3:7c:67:07:85:07:28:57:bb:d4:c9:3b: 0a:5b:7c:b9:72:23:4d:4c:bb:9f:59:fa:7d:1c:70:da:5d:e1: f6:75:dc:fb:35:0e:a0:c2:b3:89:62:78:67:52:60:b1:06:8d: 56:8b:3d:40:88:9e:7d:05:60:3b:e8:02:87:6b:5a:6f:72:8b: 2c:9f:23:a1:bc:0f:07:79:9a:a8:04:58:47:75:96:3c:07:a0: f8:d5:8f:6d:c1:17:37:1d:85:43:5f:87:9f:f7:35:d2:78:af: a4:44:8d:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUxMTA2MTgxMzM4WhcNMjUxMTEzMTgxMzM4WjAYMRYwFAYD VQQDEw02OTBjZTU1Mi00M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj/BY4cgcE9Q6PS3vUArI4ZPWOM1R3UbwBbY0dqWy8AYqGeS8JxAw6DmFIYS YgE6s4nO7qPf8m5bIhY66TRhmjWWxzefVPfuVM0Q3VFpgzsYyDPR2rY3IHBpIeHu q2JdGSkPcMBuYllgrgnAccbt9/UQLhFgDb7VrFHUARkaTLWteQsXIFM3QqcnAaqV 23hXpoLYNw0uuvIU71o9kI5vblyjatY01nH5j6ZD8VdmDpuYu9pWNup5rel0wwSw BXacKr6qqnx7Wr62Fjuk0lS7qqRZssQyeqnO5unf65aiWj7B5iNrJs2KZ7i7ZTjh T+RhvyVFtieqPiDQ7fbKfDzkCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCyD3J5 C0B3V9bnbNka5K1+xA5oMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTI5OS8yNjg5MEVEQTQyQzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2 aG9JN2FmUTNZazZjQUMza0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAreyMRm1bjZER0pPwdMl70+ixElEZqfh840aMgpAVwGX1wFAItrLDG jCZbAuILg9na2TVN4A9Zd5xNxRPCz/1qp49wqNzmcgMErkJFNU5w6NnX3VmmKjuc HsPyjs2e+lu4z4KlPABm6qRZPutk+tzB1fRSzMGo284hpIg1XldNcZNpxa65br2B Yv5qTo3VkEf4GUtEPPajfGcHhQcoV7vUyTsKW3y5ciNNTLufWfp9HHDaXeH2ddz7 NQ6gwrOJYnhnUmCxBo1Wiz1AiJ59BWA76AKHa1pvcossnyOhvA8HeZqoBFhHdZY8 B6D41Y9twRc3HYVDX4ef9zXSeK+kRI2t -----END CERTIFICATE-----Generated at Fri Nov 7 15:21:25 2025 by rpki-client