$ rpki-client -vvf rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft File: gyiT0KdSAaIToGRFUyA9Aac8-v8.mft (raw, json) Hash identifier: YHYWgJc6jUAqo5v171kI9yaflfjPYNCcNjTPWD76j9Y= Subject key identifier: 5A:B4:E9:26:FF:58:BF:9F:DF:08:3A:9F:1F:ED:AD:C8:AA:A4:36:B5 Authority key identifier: 83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF Certificate issuer: /CN=A9176632/serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft Manifest number: 3C Signing time: Mon 03 Nov 2025 07:29:10 +0000 Manifest this update: Mon 03 Nov 2025 07:29:10 +0000 Manifest next update: Mon 10 Nov 2025 07:29:10 +0000 Files and hashes: 1: gyiT0KdSAaIToGRFUyA9Aac8-v8.crl (hash: SiSHKU5/ljmrj/o4JWbmZsw45S+wGIJ5bTJYxLQXAlY=) 2: 9DB90EE05E0F11F09722E15EC4F9AE02.roa (hash: YgUFuSigzbesjAaXAB7QXjCPj2vjaQ0V6QVQsQKeXvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176632, serialNumber=832893D0A75201A213A0644553203D01A73CFAFF Validity Not Before: Nov 3 07:29:10 2025 GMT Not After : Nov 10 07:29:10 2025 GMT Subject: CN=690859c6-00fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e6:19:ca:60:52:4d:7d:90:05:20:2c:2a:8b: 26:35:27:c2:7a:09:58:60:2e:21:e3:40:5a:22:bf: 04:cc:71:d5:3d:ba:cc:11:f3:a8:11:01:e3:fc:6a: 61:f9:c0:fd:17:3f:9d:d3:96:9d:a8:d2:4e:0c:0c: 1b:04:7e:04:30:36:97:61:36:67:37:f4:4b:2c:f8: e8:a4:b7:5e:72:10:56:1a:6b:91:d9:e1:15:2a:e9: 58:cc:2a:c9:bc:3e:37:c0:da:b9:a7:ff:f5:e0:b5: 84:13:42:5c:94:30:c0:d0:ab:01:76:96:c6:ff:53: 13:2d:96:42:59:14:f5:3b:0f:c0:57:b4:7f:85:af: 46:35:30:e6:dc:08:15:68:c4:f1:b9:9f:28:12:56: 14:2d:3d:1b:8c:52:7c:11:b8:e8:e5:3b:dd:e5:ce: 54:21:b3:d1:ab:b6:ec:d3:6f:e5:0a:48:27:e8:a7: 42:d1:a2:ee:ed:cb:20:5a:14:be:bc:2e:a9:c0:80: f3:c4:87:60:b8:c6:ac:d2:b4:ca:51:4c:1f:6e:4d: 86:a0:ab:7b:59:c2:25:d3:16:2f:e3:d2:0e:4d:f5: 27:4b:b7:cf:91:9a:be:6d:46:8d:cd:4e:a9:54:aa: 2b:45:98:db:77:7d:ea:6b:e2:ce:ee:e2:31:8c:32: 3d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B4:E9:26:FF:58:BF:9F:DF:08:3A:9F:1F:ED:AD:C8:AA:A4:36:B5 X509v3 Authority Key Identifier: keyid:83:28:93:D0:A7:52:01:A2:13:A0:64:45:53:20:3D:01:A7:3C:FA:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gyiT0KdSAaIToGRFUyA9Aac8-v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176632/A25439FE5E0D11F094762F13C4F9AE02/gyiT0KdSAaIToGRFUyA9Aac8-v8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a0:46:a1:87:66:f2:bd:68:b0:17:95:cc:8e:69:23:76:40: 9f:eb:a1:d8:f9:a2:86:43:c4:76:60:cb:f3:93:e2:c5:5d:b3: 06:ad:ee:fd:d6:27:cf:52:7a:fb:6f:19:27:ad:40:d4:69:2a: 61:35:ea:f4:96:57:e8:f9:78:86:14:f6:0b:42:66:ac:95:4d: aa:9f:e5:7c:90:29:2f:79:2b:e8:a6:41:d9:55:62:65:e9:22: b0:f7:eb:4a:c6:40:a7:c4:f9:50:a1:11:2c:a5:be:6f:48:ba: 36:a9:75:eb:6d:a3:ae:ed:ef:43:5f:7b:38:06:80:35:1b:26: f6:ce:b8:d5:d4:32:5c:85:42:3c:1c:50:f9:96:d3:bf:7a:b0: 4f:1c:41:a1:0b:75:37:51:1d:3d:56:6c:f3:a6:33:e8:a3:f1: c8:39:ca:1d:98:d7:61:3f:a4:11:1f:c1:24:42:37:d8:cd:5a: da:27:6b:9d:7d:9e:25:a7:55:71:08:6a:23:6a:2d:e9:32:cc: 1c:e6:db:28:de:7e:c9:e1:31:42:9c:51:64:be:4c:be:ad:fd: 9e:c9:e0:f8:aa:b4:2b:ad:da:32:ab:d3:ee:23:cc:39:d7:64: f7:d0:e4:41:2e:64:6c:49:92:e0:0d:be:e4:f6:61:4f:e7:29: 89:ef:ca:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjYzMjExMC8GA1UEBRMoODMyODkzRDBBNzUyMDFBMjEzQTA2NDQ1NTMyMDNEMDFB NzNDRkFGRjAeFw0yNTExMDMwNzI5MTBaFw0yNTExMTAwNzI5MTBaMBgxFjAUBgNV BAMTDTY5MDg1OWM2LTAwZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT5hnKYFJNfZAFICwqiyY1J8J6CVhgLiHjQFoivwTMcdU9uswR86gRAeP8amH5 wP0XP53Tlp2o0k4MDBsEfgQwNpdhNmc39Ess+Oikt15yEFYaa5HZ4RUq6VjMKsm8 PjfA2rmn//XgtYQTQlyUMMDQqwF2lsb/UxMtlkJZFPU7D8BXtH+Fr0Y1MObcCBVo xPG5nygSVhQtPRuMUnwRuOjlO93lzlQhs9GrtuzTb+UKSCfop0LRou7tyyBaFL68 LqnAgPPEh2C4xqzStMpRTB9uTYagq3tZwiXTFi/j0g5N9SdLt8+Rmr5tRo3NTqlU qitFmNt3fepr4s7u4jGMMj2TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWrTpJv9Y v5/fCDqfH+2tyKqkNrUwHwYDVR0jBBgwFoAUgyiT0KdSAaIToGRFUyA9Aac8+v8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NjMyL0EyNTQzOUZFNUUw RDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJVG9HUkZVeUE5QWFjOC12 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ3lpVDBLZFNBYUlUb0dSRlV5QTlBYWM4LXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NjMyL0EyNTQzOUZFNUUwRDExRjA5NDc2MkYxM0M0RjlBRTAyL2d5aVQwS2RTQWFJ VG9HUkZVeUE5QWFjOC12OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAKgRqGHZvK9aLAXlcyOaSN2QJ/rodj5ooZDxHZgy/OT4sVdswat7v3W J89SevtvGSetQNRpKmE16vSWV+j5eIYU9gtCZqyVTaqf5XyQKS95K+imQdlVYmXp IrD360rGQKfE+VChESylvm9Iujapdetto67t70NfezgGgDUbJvbOuNXUMlyFQjwc UPmW0796sE8cQaELdTdRHT1WbPOmM+ij8cg5yh2Y12E/pBEfwSRCN9jNWtona519 niWnVXEIaiNqLekyzBzm2yjefsnhMUKcUWS+TL6t/Z7J4PiqtCut2jKr0+4jzDnX ZPfQ5EEuZGxJkuANvuT2YU/nKYnvymY= -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:30 2025 by rpki-client