$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: SbGryplkG2eWxOy3PY8gIsYCq0VX8WcPhbjM4LRiRis= Subject key identifier: C3:B8:0B:DD:58:70:C2:8D:2C:50:2E:97:0C:9B:F3:DF:2E:0A:F0:E9 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 0310 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 0307 Signing time: Wed 05 Nov 2025 01:17:03 +0000 Manifest this update: Wed 05 Nov 2025 01:17:03 +0000 Manifest next update: Wed 12 Nov 2025 01:17:03 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: mCCh0uSqZ92JIwYqjbhoqXbS97e6tSib1gONtTe8+z0=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 784 (0x310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Nov 5 01:17:03 2025 GMT Not After : Nov 12 01:17:03 2025 GMT Subject: CN=690aa58f-1e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a5:2b:f9:73:94:64:52:9f:68:55:fe:7c:1e: 98:30:8c:64:85:ed:61:dc:69:8f:fb:2d:44:fa:89: 45:ca:44:68:1d:a4:7c:7e:b8:ea:9f:4e:62:71:b0: 9a:a0:52:4c:77:c4:a7:d7:4b:a9:38:da:2e:c8:c2: 25:9a:9c:42:9d:69:43:d7:ab:bd:3b:f9:63:ee:20: 66:ae:b7:70:dd:47:3f:05:11:9c:7f:b0:c1:84:89: e3:42:49:f1:60:a4:c5:f4:ff:76:c0:e9:be:78:f0: e5:10:7b:ab:c9:06:c9:e3:aa:51:20:49:42:6f:0c: 6e:3d:b1:52:e0:0e:7f:f5:9d:5b:e6:6d:b7:cd:00: e8:da:ac:52:c6:1f:9c:34:c0:46:14:1b:d1:11:80: 97:d0:41:c4:28:de:ec:7f:99:14:7f:36:bd:67:f3: cd:cb:31:0f:5c:81:0b:65:b0:2a:60:f7:d0:59:50: 62:24:35:b0:8e:4f:c9:cc:20:b6:40:65:45:c1:b5: 0b:86:86:78:ce:60:51:2a:1c:4a:61:2c:cc:88:f9: 26:aa:45:75:33:d0:eb:30:2d:b3:b1:af:85:dc:47: 24:d4:8c:8b:47:7c:1e:87:37:e6:7f:1c:69:8c:f7: de:8e:07:2a:c8:dd:d4:4c:de:7d:09:f8:71:a3:cd: 63:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B8:0B:DD:58:70:C2:8D:2C:50:2E:97:0C:9B:F3:DF:2E:0A:F0:E9 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:98:1b:46:5f:47:33:65:13:2f:d4:4c:65:a5:43:8c:e2:72: 19:d8:11:dd:87:a7:e4:28:0a:76:56:dc:a8:72:f3:cf:12:c8: 60:67:06:b8:82:3e:2b:88:d8:ed:8f:87:3a:b0:15:cd:77:ee: f1:1e:af:9a:68:70:8d:8a:39:58:ed:9c:44:26:b8:1c:0d:1b: e2:e3:47:11:cd:33:3e:63:3c:05:e8:45:3a:66:63:11:c4:c7: a9:d0:ff:52:dc:80:dc:7c:5c:ac:bb:97:f4:64:09:67:49:be: 58:93:09:dc:ce:e2:6c:c9:5e:d3:39:8d:38:0c:3b:47:37:5d: 15:30:d9:03:57:70:c5:a7:57:e2:83:94:7c:2b:00:25:18:c8: 7e:47:71:6e:5a:72:4f:b5:11:a4:92:1b:d6:86:bb:78:cd:a2: ec:5b:1a:65:e4:88:02:8c:c3:90:c5:71:3c:3b:67:6f:df:80: f4:bc:f3:7a:40:4a:d5:f2:4a:6e:38:1f:e6:42:bb:1e:1a:20: 9e:b6:79:90:0d:6a:dd:16:05:bf:6e:ff:37:44:71:57:34:2e: cf:7c:62:d6:c7:8e:0e:d8:a5:2f:d2:b9:24:9b:1d:d1:14:a9: 31:bd:e6:97:0d:bb:a8:8d:15:0e:b0:65:a8:29:43:6a:0c:76: 16:d1:88:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUxMTA1MDExNzAzWhcNMjUxMTEyMDExNzAzWjAYMRYwFAYD VQQDEw02OTBhYTU4Zi0xZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaUr+XOUZFKfaFX+fB6YMIxkhe1h3GmP+y1E+olFykRoHaR8frjqn05icbCa oFJMd8Sn10upONouyMIlmpxCnWlD16u9O/lj7iBmrrdw3Uc/BRGcf7DBhInjQknx YKTF9P92wOm+ePDlEHuryQbJ46pRIElCbwxuPbFS4A5/9Z1b5m23zQDo2qxSxh+c NMBGFBvREYCX0EHEKN7sf5kUfza9Z/PNyzEPXIELZbAqYPfQWVBiJDWwjk/JzCC2 QGVFwbULhoZ4zmBRKhxKYSzMiPkmqkV1M9DrMC2zsa+F3Eck1IyLR3wehzfmfxxp jPfejgcqyN3UTN59Cfhxo81j/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMO4C91Y cMKNLFAulwyb898uCvDpMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDmBtGX0czZRMv1ExlpUOM4nIZ2BHdh6fkKAp2VtyocvPPEshgZwa4 gj4riNjtj4c6sBXNd+7xHq+aaHCNijlY7ZxEJrgcDRvi40cRzTM+YzwF6EU6ZmMR xMep0P9S3IDcfFysu5f0ZAlnSb5YkwnczuJsyV7TOY04DDtHN10VMNkDV3DFp1fi g5R8KwAlGMh+R3FuWnJPtRGkkhvWhrt4zaLsWxpl5IgCjMOQxXE8O2dv34D0vPN6 QErV8kpuOB/mQrseGiCetnmQDWrdFgW/bv83RHFXNC7PfGLWx44O2KUv0rkkmx3R FKkxveaXDbuojRUOsGWoKUNqDHYW0YjC -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:55 2025 by rpki-client