$ rpki-client -vvf rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft File: gOPDrlGaTxg3WsakP1N6hf96KoI.mft (raw, json) Hash identifier: PinKltb09Sy8MesqymeWX+k4A4q3q65Kn4QUjAVTeHM= Subject key identifier: 1D:8B:83:38:C8:AB:8B:4D:BA:B0:E6:07:EE:50:80:A3:77:38:66:3B Authority key identifier: 80:E3:C3:AE:51:9A:4F:18:37:5A:C6:A4:3F:53:7A:85:FF:7A:2A:82 Certificate issuer: /CN=A9177358/serialNumber=80E3C3AE519A4F18375AC6A43F537A85FF7A2A82 Certificate serial: 1294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft Manifest number: 1284 Signing time: Sun 02 Nov 2025 17:05:25 +0000 Manifest this update: Sun 02 Nov 2025 17:05:24 +0000 Manifest next update: Sun 09 Nov 2025 17:05:24 +0000 Files and hashes: 1: gOPDrlGaTxg3WsakP1N6hf96KoI.crl (hash: spFlwcnxqzdvRDJStYUaUUY3oM+mAHJmoHB7lVfuSZc=) 2: 98281C68C74D11EFBDEB795AC4F9AE02.roa (hash: AIVNJI4ml2hm0sk+tjU7ezgPrM6ruoUwi1BLVLUi/kc=) 3: 54EA0F76D36B11EBADF6AD2CC4F9AE02.roa (hash: kdp5b4Y2u+teTC9uos3HG7iOUgfSi1ENZs4RBMTxPNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.crl rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4756 (0x1294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177358, serialNumber=80E3C3AE519A4F18375AC6A43F537A85FF7A2A82 Validity Not Before: Nov 2 17:05:24 2025 GMT Not After : Nov 9 17:05:24 2025 GMT Subject: CN=69078f55-2f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:51:f6:f1:25:1e:50:52:a3:a4:4f:4d:b6:19: f7:87:42:db:d0:d6:85:57:7b:58:f1:a8:0f:a7:cf: 0d:43:48:ec:12:ab:53:a4:61:c4:c1:15:5e:58:a0: be:09:9b:4b:8e:62:a8:77:d4:9e:86:04:8a:01:99: e7:39:06:53:20:17:29:8d:07:be:b4:93:a6:a0:73: c0:86:53:26:3f:e9:4e:59:2b:db:74:da:eb:77:b0: be:60:10:6b:19:82:bf:a3:15:78:4f:64:20:ce:bc: 6a:0f:96:1b:d2:e8:b9:87:ed:03:dc:96:69:53:e3: a3:7a:88:d8:31:ef:38:fd:c3:0d:e2:d5:79:70:f9: e1:ac:40:eb:6c:ca:04:f5:a8:f7:9c:36:d0:1d:48: 10:f6:19:93:fa:a7:16:8d:18:f1:a4:85:71:ca:37: 26:62:66:a6:5a:74:9f:13:30:f7:28:cb:70:e5:44: 98:56:61:6a:4a:54:77:82:d1:b3:00:f0:9a:d0:a2: 65:c8:8a:2b:49:be:ce:c7:f2:7d:84:4c:46:2a:5f: 0d:16:db:58:78:e2:21:35:7d:6a:32:62:54:0a:85: b1:89:fd:b8:88:e0:8e:bc:07:a3:81:4d:c1:ea:22: a7:1c:3b:30:bc:51:f5:33:02:d5:03:d4:01:a6:6c: 82:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8B:83:38:C8:AB:8B:4D:BA:B0:E6:07:EE:50:80:A3:77:38:66:3B X509v3 Authority Key Identifier: keyid:80:E3:C3:AE:51:9A:4F:18:37:5A:C6:A4:3F:53:7A:85:FF:7A:2A:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:52:69:b0:ac:51:4b:ef:f7:b6:71:33:76:e5:f4:60:aa:ed: 9d:ee:ef:0e:b0:86:51:6d:3f:c7:35:2b:53:b4:87:9d:9c:d9: f4:9d:7e:85:b5:1e:8d:bf:89:64:30:65:50:86:04:51:cf:1e: bd:41:d0:97:4f:6f:6a:4a:ef:0c:df:d1:19:12:88:61:32:3e: 65:ae:23:8a:5e:6f:ae:a4:e6:c2:08:55:20:dd:24:48:07:fe: 18:41:3a:cc:69:36:c0:3c:e9:d9:c4:02:10:eb:fe:cb:d9:86: 20:c4:93:b9:0c:fa:09:a7:84:6e:ae:79:77:28:12:50:8b:43: e1:27:28:05:ee:b8:5a:25:8e:30:f1:1a:c6:3b:a4:1f:8e:5c: 91:6c:f4:30:b0:7e:50:10:a5:d1:88:41:68:a2:84:48:14:a3: 38:28:82:6a:25:a8:bc:c1:b8:26:37:fe:96:45:b3:01:c1:2d: e3:79:9a:41:de:c4:f5:bf:17:51:a9:9d:92:ee:95:bd:41:99: 70:54:62:9f:3a:2c:7d:48:7c:bd:5c:eb:7a:c8:18:19:fd:c2: 07:e3:a9:39:d5:42:d1:08:09:f2:a1:cc:5d:5f:45:11:ba:da: 83:0c:45:f6:07:bf:6e:13:84:6f:9d:b9:29:7b:67:d8:3e:1c: 07:1c:4c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzczNTgxMTAvBgNVBAUTKDgwRTNDM0FFNTE5QTRGMTgzNzVBQzZBNDNGNTM3QTg1 RkY3QTJBODIwHhcNMjUxMTAyMTcwNTI0WhcNMjUxMTA5MTcwNTI0WjAYMRYwFAYD VQQDEw02OTA3OGY1NS0yZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VH28SUeUFKjpE9Nthn3h0Lb0NaFV3tY8agPp88NQ0jsEqtTpGHEwRVeWKC+ CZtLjmKod9SehgSKAZnnOQZTIBcpjQe+tJOmoHPAhlMmP+lOWSvbdNrrd7C+YBBr GYK/oxV4T2QgzrxqD5Yb0ui5h+0D3JZpU+OjeojYMe84/cMN4tV5cPnhrEDrbMoE 9aj3nDbQHUgQ9hmT+qcWjRjxpIVxyjcmYmamWnSfEzD3KMtw5USYVmFqSlR3gtGz APCa0KJlyIorSb7Ox/J9hExGKl8NFttYeOIhNX1qMmJUCoWxif24iOCOvAejgU3B 6iKnHDswvFH1MwLVA9QBpmyCnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2LgzjI q4tNurDmB+5QgKN3OGY7MB8GA1UdIwQYMBaAFIDjw65Rmk8YN1rGpD9TeoX/eiqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzM1OC9CRTg0RjA5NERE MEIxMUU4ODU0NDlBNDBDNEY5QUUwMi9nT1BEcmxHYVR4ZzNXc2FrUDFONmhmOTZL b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPUERybEdhVHhnM1dzYWtQMU42aGY5NktvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzM1OC9CRTg0RjA5NEREMEIxMUU4ODU0NDlBNDBDNEY5QUUwMi9nT1BEcmxHYVR4 ZzNXc2FrUDFONmhmOTZLb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuUmmwrFFL7/e2cTN25fRgqu2d7u8OsIZRbT/HNStTtIednNn0nX6F tR6Nv4lkMGVQhgRRzx69QdCXT29qSu8M39EZEohhMj5lriOKXm+upObCCFUg3SRI B/4YQTrMaTbAPOnZxAIQ6/7L2YYgxJO5DPoJp4Rurnl3KBJQi0PhJygF7rhaJY4w 8RrGO6QfjlyRbPQwsH5QEKXRiEFoooRIFKM4KIJqJai8wbgmN/6WRbMBwS3jeZpB 3sT1vxdRqZ2S7pW9QZlwVGKfOix9SHy9XOt6yBgZ/cIH46k51ULRCAnyocxdX0UR utqDDEX2B79uE4Rvnbkpe2fYPhwHHExf -----END CERTIFICATE-----Generated at Tue Nov 4 12:35:04 2025 by rpki-client