$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft File: GHL5iLZXI3g3mSN-VU28xuSdFLA.mft (raw, json) Hash identifier: DsCAn5j36RScMniV/k5LsFQJ66hrwkFzcBE4x4kv4vg= Subject key identifier: 09:42:4D:CE:6D:14:42:40:D8:AE:27:4F:7F:F4:F3:3C:C1:52:40:3F Authority key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Certificate issuer: /CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Certificate serial: 0B43 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft Manifest number: 0B43 Signing time: Tue 04 Nov 2025 15:40:56 +0000 Manifest this update: Tue 04 Nov 2025 15:40:56 +0000 Manifest next update: Tue 11 Nov 2025 15:40:56 +0000 Files and hashes: 1: GHL5iLZXI3g3mSN-VU28xuSdFLA.crl (hash: KIiOB8aLI8+b5pp2+poPj9K/9A+Nrhex6UtQheOHijg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Validity Not Before: Nov 4 15:40:56 2025 GMT Not After : Nov 11 15:40:56 2025 GMT Subject: CN=690a1e88-6910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:eb:cb:f5:f9:17:72:94:62:22:de:4f:38: 13:de:67:87:23:a0:b2:d4:64:02:18:d8:fe:8b:4d: a1:60:05:21:96:06:ac:9f:4c:31:67:03:e4:4d:7b: 14:b4:b4:af:59:44:34:d7:83:62:eb:3b:9f:a1:3a: 7d:6b:e1:d2:14:f3:f8:27:08:69:98:e9:92:97:cf: 5e:fc:68:ab:a6:e5:23:62:4b:24:59:a4:32:16:53: 6c:7e:95:94:e7:83:71:8d:09:f6:5c:0f:d8:f3:b1: df:15:7d:2a:e4:02:e2:e7:4c:a6:a7:1f:3e:51:78: b7:b9:c8:97:89:01:dd:86:f7:cc:2d:72:ed:f0:31: 11:a7:f0:03:48:5f:fa:a7:e1:54:e8:51:55:b3:cb: bc:e6:02:39:7e:1d:fb:94:a1:92:16:3c:1a:82:93: 4d:b6:72:32:08:cf:b9:3f:e5:02:4a:5d:8c:ff:6a: 17:5d:e0:ef:c0:9e:d4:64:81:b7:f5:72:f3:7c:fa: 30:08:f3:90:0f:8f:1d:6b:64:f7:c3:cb:37:d7:41: f0:b9:ec:8b:ca:a8:89:7d:c1:2d:9c:69:c5:3a:95: 46:0f:19:8b:53:a7:0d:cd:c7:f0:b8:72:b2:bd:b4: 02:da:9b:2b:15:92:1f:ab:7d:00:6f:04:65:1e:6e: da:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:42:4D:CE:6D:14:42:40:D8:AE:27:4F:7F:F4:F3:3C:C1:52:40:3F X509v3 Authority Key Identifier: keyid:18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:00:84:ea:8a:74:97:d4:2b:e2:7b:ef:df:5a:38:39:e9:cb: b5:6f:0e:de:a6:b9:ab:1f:82:cf:11:5e:e1:d7:e5:92:52:24: 61:a6:df:d3:88:88:85:53:4b:57:4d:d1:48:7f:41:8c:d5:00: e4:32:4e:3b:a8:95:6a:4c:ab:03:62:3f:53:29:36:5f:a3:8d: 0f:0a:39:26:84:45:44:97:78:8c:b0:be:38:b8:88:03:52:30: 8b:c2:c8:ec:ba:20:1e:c7:66:1d:5f:a5:c5:ab:ab:93:1d:cf: f1:6e:eb:dc:c5:b9:b3:9d:05:17:32:dc:49:6e:d8:2d:c4:6e: d7:68:71:18:8e:08:87:c6:db:f6:2e:70:cf:bd:9b:9b:65:65: db:e5:9f:81:fd:91:ff:cc:01:43:8a:cf:d7:ec:bf:bb:4a:ca: 87:67:41:78:bd:c1:0d:21:43:e5:9e:5d:49:26:5b:0f:44:c5: 11:03:e5:6a:07:af:71:54:35:d4:89:0c:20:e0:21:ad:73:d8: a9:d5:cf:3a:a1:1f:4a:38:de:7d:db:c2:d1:ae:1d:37:73:a4: da:85:33:38:fd:1e:3b:a5:83:3d:33:d8:7a:e5:20:6f:be:46: 20:16:76:96:15:64:84:6f:4e:99:d5:57:f8:08:09:b5:f0:f1: 14:b8:19:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKDE4NzJGOTg4QjY1NzIzNzgzNzk5MjM3RTU1NERCQ0M2 RTQ5RDE0QjAwHhcNMjUxMTA0MTU0MDU2WhcNMjUxMTExMTU0MDU2WjAYMRYwFAYD VQQDEw02OTBhMWU4OC02OTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYrry/X5F3KUYiLeTzgT3meHI6Cy1GQCGNj+i02hYAUhlgasn0wxZwPkTXsU tLSvWUQ014Ni6zufoTp9a+HSFPP4JwhpmOmSl89e/GirpuUjYkskWaQyFlNsfpWU 54NxjQn2XA/Y87HfFX0q5ALi50ympx8+UXi3uciXiQHdhvfMLXLt8DERp/ADSF/6 p+FU6FFVs8u85gI5fh37lKGSFjwagpNNtnIyCM+5P+UCSl2M/2oXXeDvwJ7UZIG3 9XLzfPowCPOQD48da2T3w8s310HwueyLyqiJfcEtnGnFOpVGDxmLU6cNzcfwuHKy vbQC2psrFZIfq30AbwRlHm7a5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlCTc5t FEJA2K4nT3/08zzBUkA/MB8GA1UdIwQYMBaAFBhy+Yi2VyN4N5kjflVNvMbknRSw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9BNjFERjFEQTQ2 NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkzZzNtU04tVlUyOHh1U2RG TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0dITDVpTFpYSTNnM21TTi1WVTI4eHVTZEZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9BNjFERjFEQTQ2NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkz ZzNtU04tVlUyOHh1U2RGTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFAITqinSX1Cvie+/fWjg56cu1bw7eprmrH4LPEV7h1+WSUiRhpt/T iIiFU0tXTdFIf0GM1QDkMk47qJVqTKsDYj9TKTZfo40PCjkmhEVEl3iMsL44uIgD UjCLwsjsuiAex2YdX6XFq6uTHc/xbuvcxbmznQUXMtxJbtgtxG7XaHEYjgiHxtv2 LnDPvZubZWXb5Z+B/ZH/zAFDis/X7L+7SsqHZ0F4vcENIUPlnl1JJlsPRMURA+Vq B69xVDXUiQwg4CGtc9ip1c86oR9KON5928LRrh03c6TahTM4/R47pYM9M9h65SBv vkYgFnaWFWSEb06Z1Vf4CAm18PEUuBkc -----END CERTIFICATE-----Generated at Wed Nov 5 20:05:17 2025 by rpki-client