$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: PK5fv+NMXL9zPnvRDXiszHNppNFYbY12gci7lpeHoAA= Subject key identifier: 89:82:1F:E3:DD:62:81:2D:7A:B8:63:31:38:4C:F5:E7:87:96:1C:0B Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 061A Signing time: Tue 04 Nov 2025 22:54:46 +0000 Manifest this update: Tue 04 Nov 2025 22:54:46 +0000 Manifest next update: Tue 11 Nov 2025 22:54:46 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: NsPuSnDxbptWKLo8RF8Uj054N3wBV7aOX3+T0InsZZc=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Nov 4 22:54:46 2025 GMT Not After : Nov 11 22:54:46 2025 GMT Subject: CN=690a8436-64b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fc:db:6a:39:e2:22:2e:f2:24:ce:84:e2:d1: 43:34:2c:be:b7:d2:8a:e8:7b:5a:fe:af:aa:51:67: 4f:09:58:92:fd:ce:cb:6e:61:36:e3:59:97:de:92: 07:3a:1f:41:fb:5b:00:a9:58:1e:2e:98:0e:7e:e3: 39:d0:d1:2f:96:ce:f8:23:e1:e1:56:06:f9:4f:5e: 76:d9:9e:18:d5:2c:b3:19:fb:3e:46:f9:d0:de:cd: 57:4a:29:01:91:27:f5:7b:dc:9c:5c:af:45:5e:47: 24:65:58:58:49:a4:5c:ee:8c:13:11:5b:4e:42:83: 47:ac:f3:2f:a8:87:9d:2e:14:d3:c6:a0:73:f1:d5: 3e:21:19:3d:ec:0a:5a:9f:3f:06:f2:af:42:dd:2e: cf:d2:35:52:21:28:1c:71:16:85:3d:4c:72:5c:11: dc:f8:b3:21:a2:96:13:36:ae:22:62:3b:8c:b4:6a: e4:b8:7e:2b:c2:85:f9:1b:98:4a:85:34:ff:a2:6c: f5:06:39:5a:96:af:48:de:f8:a0:75:d8:a4:37:8b: 07:ca:66:7f:f9:86:15:42:48:7c:b0:75:a2:38:f4: d5:34:22:c9:8d:b2:1c:34:6c:da:e7:5b:bf:df:f2: 7c:6b:4d:ff:93:88:ed:9f:26:cd:5f:02:88:52:d8: d3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:82:1F:E3:DD:62:81:2D:7A:B8:63:31:38:4C:F5:E7:87:96:1C:0B X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:14:e6:be:6a:83:3e:91:29:ea:02:46:60:d5:7d:e3:16:2b: 2d:17:f5:1e:ae:19:79:c1:96:e4:a8:01:dd:5b:1f:fa:87:9b: 0d:ed:0d:1a:c0:57:75:15:22:0c:43:e3:10:85:73:2a:87:35: c3:c1:65:4b:ff:f5:75:20:22:c9:da:e0:5c:a3:6a:2a:0a:a0: a3:f9:f4:cb:48:4c:12:62:16:c3:7e:03:8c:28:95:bf:6f:36: f6:8c:1b:37:50:04:e1:37:83:4c:91:55:6c:1c:bb:7a:5e:35: c8:7f:28:01:3b:4a:d3:89:2c:80:70:b2:36:b0:16:be:dd:f2: 34:f7:89:4f:6e:ef:30:9f:3c:a5:37:b3:99:12:07:c7:bc:53: 7e:db:f8:82:4a:2c:9a:90:6a:db:18:43:c6:3b:94:5e:77:91: 85:b3:da:28:bf:8e:0f:69:99:88:09:19:b5:32:12:d7:84:bd: fc:37:2c:d7:02:ca:4a:60:e0:fb:5b:f9:35:25:4a:af:d6:f3: 00:28:8d:e1:0a:17:c2:29:23:fe:42:33:c5:f0:f0:8d:81:e7: 6d:4d:2d:66:64:ef:6d:be:36:c3:00:24:6b:80:7e:88:4d:e5: 53:5b:8e:0d:60:c1:80:26:d3:60:39:e3:e4:84:59:78:40:c6: 72:b2:34:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUxMTA0MjI1NDQ2WhcNMjUxMTExMjI1NDQ2WjAYMRYwFAYD VQQDEw02OTBhODQzNi02NGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPzbajniIi7yJM6E4tFDNCy+t9KK6Hta/q+qUWdPCViS/c7LbmE241mX3pIH Oh9B+1sAqVgeLpgOfuM50NEvls74I+HhVgb5T1522Z4Y1SyzGfs+RvnQ3s1XSikB kSf1e9ycXK9FXkckZVhYSaRc7owTEVtOQoNHrPMvqIedLhTTxqBz8dU+IRk97Apa nz8G8q9C3S7P0jVSISgccRaFPUxyXBHc+LMhopYTNq4iYjuMtGrkuH4rwoX5G5hK hTT/omz1Bjlalq9I3vigddikN4sHymZ/+YYVQkh8sHWiOPTVNCLJjbIcNGza51u/ 3/J8a03/k4jtnybNXwKIUtjTrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImCH+Pd YoEterhjMThM9eeHlhwLMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHFOa+aoM+kSnqAkZg1X3jFistF/Uerhl5wZbkqAHdWx/6h5sN7Q0a wFd1FSIMQ+MQhXMqhzXDwWVL//V1ICLJ2uBco2oqCqCj+fTLSEwSYhbDfgOMKJW/ bzb2jBs3UAThN4NMkVVsHLt6XjXIfygBO0rTiSyAcLI2sBa+3fI094lPbu8wnzyl N7OZEgfHvFN+2/iCSiyakGrbGEPGO5Red5GFs9oov44PaZmICRm1MhLXhL38NyzX AspKYOD7W/k1JUqv1vMAKI3hChfCKSP+QjPF8PCNgedtTS1mZO9tvjbDACRrgH6I TeVTW44NYMGAJtNgOePkhFl4QMZysjRN -----END CERTIFICATE-----Generated at Wed Nov 5 20:53:21 2025 by rpki-client