$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft File: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft (raw, json) Hash identifier: Nd5Q7/36lfL1oxrlNqd+N1nMBrgHIj+R8SApEoHaOFY= Subject key identifier: C1:82:A7:8F:F6:B0:75:EB:B2:89:84:5C:58:45:D2:6D:3C:34:CF:1B Authority key identifier: 81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B Certificate issuer: /CN=A91CDC32/serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft Manifest number: E7 Signing time: Mon 03 Nov 2025 05:22:12 +0000 Manifest this update: Mon 03 Nov 2025 05:22:12 +0000 Manifest next update: Mon 10 Nov 2025 05:22:12 +0000 Files and hashes: 1: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl (hash: E4/ZXO4DxNFS9ULdJF/3jZsOqU8KvangO9nrOwP/9ho=) 2: 997D587CABD011F0AA576211C4F9AE02.roa (hash: eqFr7d/2/7J+tBqwKqs+V3n0lNlzzsND/P+LSGAEIcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC32, serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Validity Not Before: Nov 3 05:22:12 2025 GMT Not After : Nov 10 05:22:12 2025 GMT Subject: CN=69083c04-af04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:32:19:dc:92:28:87:f9:2a:0a:4d:09:12:2c: 1b:22:5c:d4:c5:24:52:68:11:ae:70:87:3c:42:14: 8c:eb:01:e2:a1:af:61:b3:4e:d4:a4:e6:fb:82:20: 01:fb:40:d6:e8:54:79:aa:f2:35:48:8d:25:3d:19: 1c:92:77:cb:e8:90:29:80:4a:0b:f0:43:22:2b:1f: 89:3e:f9:da:3a:f5:91:c4:d6:44:06:50:76:db:f7: 41:61:8f:79:58:35:c6:50:b8:97:72:30:62:76:0d: 04:db:75:02:71:f9:e4:94:a2:f1:47:c2:0c:41:49: 6b:d0:dd:08:07:27:05:98:2f:f8:f6:c1:50:e5:86: 1c:33:74:89:4f:f0:30:26:1a:23:88:38:89:ae:3e: d5:68:ad:81:4f:90:84:48:93:35:61:a2:9a:c9:13: 1f:1f:57:e1:f4:f7:8d:3f:75:42:68:e9:69:2b:de: 26:78:71:ca:60:48:9a:c1:f2:42:cc:f2:ef:da:e0: 71:2b:e8:e5:d0:64:b5:0a:79:a8:02:ed:98:eb:80: b8:2f:36:8b:c5:9c:64:48:75:50:b0:54:7d:57:fd: ff:71:a4:05:28:69:3c:0c:2c:6c:02:b1:19:e2:72: 43:d8:a4:10:32:18:7f:d0:82:71:a2:e5:76:1f:71: 60:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:82:A7:8F:F6:B0:75:EB:B2:89:84:5C:58:45:D2:6D:3C:34:CF:1B X509v3 Authority Key Identifier: keyid:81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:9c:60:20:3e:2b:33:a3:f9:05:30:66:91:ec:06:c2:a9:35: 76:ab:89:ce:7c:c0:ca:6d:07:24:ac:a4:c7:b8:df:e8:da:77: 9b:78:28:8d:13:09:42:a9:bb:de:e3:48:06:7c:66:1e:c3:23: a2:5c:83:79:3c:6d:44:ae:79:7b:24:3c:63:26:0c:6a:54:50: c3:76:98:37:84:c1:9a:d2:dd:2a:db:73:d6:81:74:95:46:4a: 1d:b2:1e:07:89:9b:c8:dc:2a:f9:60:c6:f6:e7:3b:3a:30:91: 9d:d5:c5:36:4a:5b:9f:e4:94:fe:fe:94:88:ce:59:0a:96:16: f5:be:2c:3f:0b:c3:9e:a3:da:14:c1:9c:3d:5a:40:e6:f4:de: 11:0e:f4:0d:a6:67:db:5b:b3:77:4a:24:fb:b1:07:c6:1c:a2: 4b:1b:b5:a1:dd:83:b2:db:35:24:89:87:f3:9d:84:cd:c1:83: 59:a6:93:ea:ec:90:a9:bd:4d:6a:f7:1a:4d:ea:b2:28:d0:41: 44:20:ae:68:83:4e:9b:dc:f9:c5:6d:4d:77:16:a2:58:98:98: 0a:3d:b8:b1:b1:4d:d7:d8:c0:69:2c:3b:e7:17:33:44:6c:54: 6e:58:3b:7f:8e:5c:b6:05:4b:a3:ee:bf:4c:f4:65:b9:f7:1b: bc:f4:b4:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDMzIxMTAvBgNVBAUTKDgxOTk0OTNBRDI2NUFEMkRDNzMzOTZGNkJBMEI2RUQ2 Q0M0MUUxMEIwHhcNMjUxMTAzMDUyMjEyWhcNMjUxMTEwMDUyMjEyWjAYMRYwFAYD VQQDEw02OTA4M2MwNC1hZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6DIZ3JIoh/kqCk0JEiwbIlzUxSRSaBGucIc8QhSM6wHioa9hs07UpOb7giAB +0DW6FR5qvI1SI0lPRkcknfL6JApgEoL8EMiKx+JPvnaOvWRxNZEBlB22/dBYY95 WDXGULiXcjBidg0E23UCcfnklKLxR8IMQUlr0N0IBycFmC/49sFQ5YYcM3SJT/Aw JhojiDiJrj7VaK2BT5CESJM1YaKayRMfH1fh9PeNP3VCaOlpK94meHHKYEiawfJC zPLv2uBxK+jl0GS1CnmoAu2Y64C4LzaLxZxkSHVQsFR9V/3/caQFKGk8DCxsArEZ 4nJD2KQQMhh/0IJxouV2H3FgZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGCp4/2 sHXrsomEXFhF0m08NM8bMB8GA1UdIwQYMBaAFIGZSTrSZa0txzOW9roLbtbMQeEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREMzMi8wRjA5Mjg1NDVB REUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJTM0hNNWIydWd0dTFzeEI0 UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dabEpPdEpsclMzSE01YjJ1Z3R1MXN4QjRRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REMzMi8wRjA5Mjg1NDVBREUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJT M0hNNWIydWd0dTFzeEI0UXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNnGAgPiszo/kFMGaR7AbCqTV2q4nOfMDKbQckrKTHuN/o2nebeCiN EwlCqbve40gGfGYewyOiXIN5PG1Ernl7JDxjJgxqVFDDdpg3hMGa0t0q23PWgXSV Rkodsh4HiZvI3Cr5YMb25zs6MJGd1cU2Sluf5JT+/pSIzlkKlhb1viw/C8Oeo9oU wZw9WkDm9N4RDvQNpmfbW7N3SiT7sQfGHKJLG7Wh3YOy2zUkiYfznYTNwYNZppPq 7JCpvU1q9xpN6rIo0EFEIK5og06b3PnFbU13FqJYmJgKPbixsU3X2MBpLDvnFzNE bFRuWDt/jly2BUuj7r9M9GW59xu89LSy -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:10 2025 by rpki-client