$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: SDk/xqnbLoyjHZbcp1GW5KyYY1toMYadhNlP+fxRrwA= Subject key identifier: BB:0A:64:ED:61:CE:60:1F:30:A4:FD:24:34:E0:AA:BF:ED:71:D5:04 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 152E Signing time: Tue 04 Nov 2025 16:53:57 +0000 Manifest this update: Tue 04 Nov 2025 16:53:56 +0000 Manifest next update: Tue 11 Nov 2025 16:53:56 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: E8uhbY/Z2qChGNKE8GJ+/Px9x4ud6Vb268+T6IWaty0=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5433 (0x1539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Nov 4 16:53:56 2025 GMT Not After : Nov 11 16:53:56 2025 GMT Subject: CN=690a2fa5-d1b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:0d:e3:25:2f:50:44:05:c7:45:d4:81:36: 69:34:ce:90:81:1c:28:54:3e:3c:fb:51:2d:e3:7f: 1f:a2:84:37:74:e1:79:f7:6b:8c:67:ec:89:9f:3a: d6:90:51:87:d3:f6:c1:b5:9e:27:94:7e:0f:a4:5d: 13:ae:94:48:72:36:60:97:3e:5e:f6:6d:37:9b:6f: ec:39:e4:6a:1c:4d:82:96:dd:59:fd:57:f3:aa:a2: 76:ea:b7:2d:54:d8:c2:5e:bf:74:58:28:40:4f:c9: 26:39:2e:53:0a:f3:55:a6:7f:9d:82:68:8e:d1:05: 2d:f2:96:f2:a9:54:d6:56:8b:ca:6f:0a:f1:6f:ed: 69:8c:a2:a0:1c:a1:ec:23:c2:ea:f3:3b:78:5d:a7: e9:7e:2d:f3:0a:78:0e:32:62:ab:47:7f:67:61:50: 8c:f6:ef:47:82:2b:7f:b6:12:84:96:9b:96:7e:98: 0f:ef:2a:22:d9:da:52:3e:de:6c:08:19:8d:65:04: dd:3e:0a:a7:e8:d9:2e:9f:48:11:a9:5d:8a:68:9d: 1f:7d:97:af:5c:8f:e0:50:6e:45:f6:b8:aa:d5:50: 84:82:34:42:27:be:9a:99:b4:33:b9:be:e3:e9:c4: de:d7:00:68:90:92:0e:a9:f6:da:e9:b3:89:b3:28: 7f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0A:64:ED:61:CE:60:1F:30:A4:FD:24:34:E0:AA:BF:ED:71:D5:04 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:bb:8e:56:e1:87:7f:fe:cc:49:99:b2:69:3f:55:25:df:35: 3a:a9:5b:11:5e:cd:dc:78:71:81:5f:c6:f0:ec:f3:c0:1f:23: a1:dd:9c:53:10:16:3d:2a:29:7a:1c:38:57:38:27:fd:dc:67: 87:54:96:80:b9:63:13:2f:d7:13:e1:13:e0:28:cf:6f:ab:dd: d4:7e:14:d0:62:6b:c2:1f:87:28:23:5a:7b:11:b4:6b:35:2d: c3:36:91:75:db:48:b7:bc:52:8c:7c:f6:52:2f:c5:c0:20:e0: d6:61:5f:5c:61:1d:ef:09:f9:72:fe:e8:74:cb:b2:79:45:a8: f5:6e:67:a5:c2:c6:06:7a:c8:19:c8:17:69:f5:08:fe:af:1c: f3:01:90:61:87:35:47:55:3d:db:63:75:5f:c2:4e:bc:31:37: 55:63:cf:73:e8:57:6e:57:6d:ee:83:f1:c7:da:0b:48:82:8f: 49:15:d1:e2:02:b6:5d:85:ca:10:90:a1:63:e9:4f:bf:91:40: 55:fa:39:3e:b5:cf:50:6b:17:25:ec:92:a4:01:5e:56:be:98: b1:45:55:53:23:0f:5d:47:3e:a9:b0:c0:4d:57:1b:18:9b:d9: ab:2f:f1:c4:fd:1e:b2:a8:31:cd:3e:a7:b3:a9:23:7e:f9:c8: f5:9c:50:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUxMTA0MTY1MzU2WhcNMjUxMTExMTY1MzU2WjAYMRYwFAYD VQQDEw02OTBhMmZhNS1kMWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQQN4yUvUEQFx0XUgTZpNM6QgRwoVD48+1Et438fooQ3dOF592uMZ+yJnzrW kFGH0/bBtZ4nlH4PpF0TrpRIcjZglz5e9m03m2/sOeRqHE2Clt1Z/VfzqqJ26rct VNjCXr90WChAT8kmOS5TCvNVpn+dgmiO0QUt8pbyqVTWVovKbwrxb+1pjKKgHKHs I8Lq8zt4Xafpfi3zCngOMmKrR39nYVCM9u9Hgit/thKElpuWfpgP7yoi2dpSPt5s CBmNZQTdPgqn6Nkun0gRqV2KaJ0ffZevXI/gUG5F9riq1VCEgjRCJ76ambQzub7j 6cTe1wBokJIOqfba6bOJsyh/owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsKZO1h zmAfMKT9JDTgqr/tcdUEMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVu45W4Yd//sxJmbJpP1Ul3zU6qVsRXs3ceHGBX8bw7PPAHyOh3ZxT EBY9Kil6HDhXOCf93GeHVJaAuWMTL9cT4RPgKM9vq93UfhTQYmvCH4coI1p7EbRr NS3DNpF120i3vFKMfPZSL8XAIODWYV9cYR3vCfly/uh0y7J5Raj1bmelwsYGesgZ yBdp9Qj+rxzzAZBhhzVHVT3bY3Vfwk68MTdVY89z6FduV23ug/HH2gtIgo9JFdHi ArZdhcoQkKFj6U+/kUBV+jk+tc9Qaxcl7JKkAV5WvpixRVVTIw9dRz6psMBNVxsY m9mrL/HE/R6yqDHNPqezqSN++cj1nFD7 -----END CERTIFICATE-----Generated at Wed Nov 5 16:30:12 2025 by rpki-client