$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: Rt2HCk9IiAucgOrkYvEIoAXeg2J1ZAJKKj2LLJn9qxg= Subject key identifier: E2:67:03:28:D3:03:FA:98:99:9B:5B:80:3B:5D:CD:95:D3:E6:F2:36 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0136 Signing time: Mon 03 Nov 2025 04:29:33 +0000 Manifest this update: Mon 03 Nov 2025 04:29:33 +0000 Manifest next update: Mon 10 Nov 2025 04:29:33 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: qqdANJZ273zBAXYxmGTv9JlDt9vbkQGWUjkpGme/sOg=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Nov 3 04:29:33 2025 GMT Not After : Nov 10 04:29:33 2025 GMT Subject: CN=69082fad-7750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:58:1f:da:86:62:fa:fa:6e:f7:b1:98:e7:13: 59:2b:0d:2b:81:cc:3f:b7:6b:3b:a2:0b:6d:08:ff: e6:8f:6e:da:5f:3d:6b:cb:7f:22:b2:82:bd:91:b6: c2:6a:fe:85:56:c0:29:6e:51:4e:c8:37:3c:82:42: 8f:1f:d9:55:23:0e:b1:d5:fa:a0:24:43:90:ec:30: 0d:fb:96:c2:d3:40:22:d1:f9:31:30:25:f7:78:c6: c2:dc:fc:95:59:2d:1a:a4:89:e9:ff:f3:8a:b6:17: 4e:1d:d6:90:25:53:6d:64:8e:cb:09:86:a9:5d:70: b7:ae:9f:bf:43:31:8a:0c:37:0b:ef:c1:42:53:db: 22:89:f9:94:fb:20:be:93:9b:99:0e:7a:c5:27:47: 0f:7d:54:70:51:89:fa:1c:0e:af:0a:14:94:8e:ef: 54:f3:86:f4:4a:26:23:d7:36:9b:08:52:16:28:8e: d2:c4:87:c0:ba:f2:a1:69:64:b7:8f:a7:0e:3d:d4: b0:73:07:c1:ca:52:62:8d:30:9d:dd:80:96:64:b9: 25:f1:95:d4:49:d0:82:5c:cf:13:ab:1e:3f:37:eb: aa:bc:d4:b2:b7:a5:12:8f:a5:c9:5c:07:91:61:dd: 2e:37:a4:98:3e:fd:67:9a:1c:14:f8:df:6d:96:77: df:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:67:03:28:D3:03:FA:98:99:9B:5B:80:3B:5D:CD:95:D3:E6:F2:36 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4a:89:a7:76:16:2a:53:5a:9d:db:b1:32:34:9c:bf:b3:71: 6c:f4:15:1a:b6:1d:b6:17:96:94:0a:ec:8c:42:82:08:03:8b: 0a:1e:a6:5b:c4:ae:6f:f9:80:a7:70:cc:ed:b9:d2:f1:df:6a: fe:61:89:d8:63:73:2f:2d:cf:8e:3e:db:f5:b3:7c:7b:a6:01: ae:82:1f:56:25:b3:2a:61:de:5e:2d:75:14:84:78:d3:95:d4: 32:fb:ff:2c:71:95:34:8e:6e:ee:29:a9:98:6e:23:2b:8a:bd: 6e:d3:3c:04:ac:e8:0b:35:ff:87:1a:85:d4:10:dc:b2:0e:c8: b7:88:e0:51:9b:e8:2f:fd:c1:8c:a6:5e:e4:50:8d:74:2f:9b: 4d:b0:e2:7c:2c:78:79:5d:72:13:c0:17:3c:55:d8:d8:3c:09: 23:44:89:a7:d9:b0:9d:83:39:96:36:dc:40:9f:18:08:65:94: d6:68:c2:26:c0:d3:3a:f2:45:a1:c8:ae:ab:2a:e0:aa:35:42: c8:d7:b2:f5:44:0b:ae:50:16:f4:0b:0d:eb:5c:9d:03:e5:0a: 01:0f:d7:3d:9e:6a:02:83:65:53:4f:70:de:bb:1d:6c:a2:e1: 8e:54:ab:7b:ff:85:e0:68:6d:3a:f5:7e:6b:36:34:47:bf:8b: eb:90:92:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUxMTAzMDQyOTMzWhcNMjUxMTEwMDQyOTMzWjAYMRYwFAYD VQQDEw02OTA4MmZhZC03NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+1gf2oZi+vpu97GY5xNZKw0rgcw/t2s7ogttCP/mj27aXz1ry38isoK9kbbC av6FVsApblFOyDc8gkKPH9lVIw6x1fqgJEOQ7DAN+5bC00Ai0fkxMCX3eMbC3PyV WS0apInp//OKthdOHdaQJVNtZI7LCYapXXC3rp+/QzGKDDcL78FCU9siifmU+yC+ k5uZDnrFJ0cPfVRwUYn6HA6vChSUju9U84b0SiYj1zabCFIWKI7SxIfAuvKhaWS3 j6cOPdSwcwfBylJijTCd3YCWZLkl8ZXUSdCCXM8Tqx4/N+uqvNSyt6USj6XJXAeR Yd0uN6SYPv1nmhwU+N9tlnff3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJnAyjT A/qYmZtbgDtdzZXT5vI2MB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfSomndhYqU1qd27EyNJy/s3Fs9BUath22F5aUCuyMQoIIA4sKHqZb xK5v+YCncMztudLx32r+YYnYY3MvLc+OPtv1s3x7pgGugh9WJbMqYd5eLXUUhHjT ldQy+/8scZU0jm7uKamYbiMrir1u0zwErOgLNf+HGoXUENyyDsi3iOBRm+gv/cGM pl7kUI10L5tNsOJ8LHh5XXITwBc8VdjYPAkjRImn2bCdgzmWNtxAnxgIZZTWaMIm wNM68kWhyK6rKuCqNULI17L1RAuuUBb0Cw3rXJ0D5QoBD9c9nmoCg2VTT3Deux1s ouGOVKt7/4XgaG069X5rNjRHv4vrkJIF -----END CERTIFICATE-----Generated at Wed Nov 5 05:17:25 2025 by rpki-client