$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft File: G7spe8goFmqkl9N8cmW_tgGuA2A.mft (raw, json) Hash identifier: FZ6zT57SfOEjdxVAWDDbLln48LmKvFP+1Pt66gHibpM= Subject key identifier: AA:87:7E:4B:5D:C9:67:30:8E:87:A9:88:12:6A:85:4C:2B:28:72:32 Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0E85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft Manifest number: 0E7A Signing time: Tue 04 Nov 2025 17:49:19 +0000 Manifest this update: Tue 04 Nov 2025 17:49:19 +0000 Manifest next update: Tue 11 Nov 2025 17:49:19 +0000 Files and hashes: 1: G7spe8goFmqkl9N8cmW_tgGuA2A.crl (hash: TzgGzZGLpzUMBYnWnKFLjxRsQwo6f1UrumD+/TQUteg=) 2: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (hash: KLPJPe472S0O1L4BKJwaeNcAQbh5Hn42irMA5av03NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3717 (0xe85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Nov 4 17:49:19 2025 GMT Not After : Nov 11 17:49:19 2025 GMT Subject: CN=690a3c9f-b266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ac:1b:c5:78:2b:13:d4:bb:82:7d:2b:f4:bb: 4a:14:85:d1:6f:e5:08:ba:9c:25:33:ef:c3:08:b2: 19:6d:d9:b8:8e:f3:ff:16:a7:fb:f1:1a:f6:fb:7f: 9b:64:4e:4d:ff:76:37:ca:2a:bc:4c:a2:44:67:7e: 18:05:e4:d1:c5:fc:dc:65:da:6d:dd:69:46:9d:8d: 33:6b:50:dd:e2:f4:7c:47:f0:5b:a4:c8:44:26:d4: bb:99:c8:ae:f2:ef:60:6d:10:3a:69:86:14:71:85: 4e:f5:14:56:9d:5d:fb:92:26:ca:cf:42:50:7d:f8: ff:6a:e3:0f:1b:31:10:3f:f8:83:4a:24:60:15:75: 28:5c:15:ad:0e:13:8b:76:87:46:74:10:9c:a5:4a: 5f:de:c2:d7:11:1c:ea:1f:63:7d:af:7a:5a:1e:b3: e9:c1:f1:d1:7e:31:34:7e:ca:ff:1d:05:fa:b6:ea: dd:89:df:56:d5:5d:ff:78:8c:63:5f:ff:5c:c6:38: 1a:9d:9c:50:bb:17:eb:2a:a8:04:e0:1a:01:b2:7f: 0d:98:fe:2d:f5:f1:40:e1:c7:e0:f6:d7:67:51:bb: 24:9d:e9:98:7f:2c:85:32:dc:aa:66:44:35:9c:fa: a5:90:85:eb:d9:c6:71:5d:44:33:25:4a:ed:47:09: a1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:87:7E:4B:5D:C9:67:30:8E:87:A9:88:12:6A:85:4C:2B:28:72:32 X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:a7:63:69:3b:10:d1:1e:61:2a:7e:dd:22:71:88:f3:fd:fb: 07:d5:20:0c:b2:79:ed:fb:5e:2a:49:61:c7:b9:1c:c4:f1:36: bc:35:5b:29:a4:ac:04:7f:e9:77:5e:cb:89:57:59:d4:d2:ce: fc:04:a9:00:ba:57:60:ab:33:ee:eb:4d:ac:29:1e:41:35:08: 25:ff:0f:53:4e:d4:a3:4d:89:84:a3:b2:2c:a9:30:00:9d:1b: 68:6b:f5:99:5b:5c:69:ee:fc:64:4c:57:f4:ae:8c:eb:90:33: f8:ef:70:dc:ee:c6:7e:42:f5:ba:1c:2c:67:13:11:e1:ec:17: 56:ca:ee:36:75:53:6e:65:e5:37:c0:f6:65:a9:03:66:56:15: 80:4b:ae:da:9f:eb:f9:33:bb:6c:41:17:0a:17:b4:19:1f:5b: 2b:4e:ea:c4:01:d9:a6:8d:64:96:96:f4:9b:86:c4:a0:ea:78: f1:f7:1a:10:85:e7:00:9b:0f:9a:a6:4e:9a:0d:f1:dd:c1:5a: 55:af:11:47:e0:bc:97:59:c1:54:34:1d:4e:58:cb:26:9c:52: 31:ea:1f:89:cc:2b:be:6a:2e:b2:06:1c:69:a9:ee:6d:ca:e1: 6b:0e:c3:a3:c2:4e:eb:1d:25:36:9d:4b:1c:56:b8:92:f2:20: 79:f9:c1:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjUxMTA0MTc0OTE5WhcNMjUxMTExMTc0OTE5WjAYMRYwFAYD VQQDEw02OTBhM2M5Zi1iMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKwbxXgrE9S7gn0r9LtKFIXRb+UIupwlM+/DCLIZbdm4jvP/Fqf78Rr2+3+b ZE5N/3Y3yiq8TKJEZ34YBeTRxfzcZdpt3WlGnY0za1Dd4vR8R/BbpMhEJtS7mciu 8u9gbRA6aYYUcYVO9RRWnV37kibKz0JQffj/auMPGzEQP/iDSiRgFXUoXBWtDhOL dodGdBCcpUpf3sLXERzqH2N9r3paHrPpwfHRfjE0fsr/HQX6turdid9W1V3/eIxj X/9cxjganZxQuxfrKqgE4BoBsn8NmP4t9fFA4cfg9tdnUbsknemYfyyFMtyqZkQ1 nPqlkIXr2cZxXUQzJUrtRwmh2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqHfktd yWcwjoepiBJqhUwrKHIyMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi83QzA2RTc5Q0E2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0Zt cWtsOU44Y21XX3RnR3VBMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMp2NpOxDRHmEqft0icYjz/fsH1SAMsnnt+14qSWHHuRzE8Ta8NVsp pKwEf+l3XsuJV1nU0s78BKkAuldgqzPu602sKR5BNQgl/w9TTtSjTYmEo7IsqTAA nRtoa/WZW1xp7vxkTFf0rozrkDP473Dc7sZ+QvW6HCxnExHh7BdWyu42dVNuZeU3 wPZlqQNmVhWAS67an+v5M7tsQRcKF7QZH1srTurEAdmmjWSWlvSbhsSg6njx9xoQ hecAmw+apk6aDfHdwVpVrxFH4LyXWcFUNB1OWMsmnFIx6h+JzCu+ai6yBhxpqe5t yuFrDsOjwk7rHSU2nUscVriS8iB5+cG/ -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:11 2025 by rpki-client