$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: 2rrwRQJ8TN8V0LHkEwkOXRa6c6Df/i9ANqAX6dtidao= Subject key identifier: E0:CC:7A:1C:FA:66:EC:F2:95:16:42:52:7C:94:F0:1E:AE:BF:95:38 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 0582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 057B Signing time: Tue 04 Nov 2025 23:21:50 +0000 Manifest this update: Tue 04 Nov 2025 23:21:49 +0000 Manifest next update: Tue 11 Nov 2025 23:21:49 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: 68k10JubGCeRsFv31OJjnzQ9lDkEFoLEErerBwbxlGc=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: KrqWlA/SDiqH7tPY3/giTqCFhbQU+NxKtLCfFdknyhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1410 (0x582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7, serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: Nov 4 23:21:49 2025 GMT Not After : Nov 11 23:21:49 2025 GMT Subject: CN=690a8a8d-e790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:52:f9:61:dc:42:29:9e:4b:73:25:c1:48:1b: 76:38:8b:71:2e:94:e8:55:da:b2:a0:97:26:4d:de: cc:4e:05:98:fe:5e:e3:56:26:40:2c:29:07:86:db: 26:54:39:dc:04:e4:92:b7:e0:2b:66:47:62:5d:c1: ef:20:85:bb:cf:e8:2a:ba:97:0b:46:14:a6:39:9b: ec:f5:d7:bd:48:00:b3:da:39:ed:15:ca:e3:b9:17: e6:a3:94:28:b2:46:aa:a0:35:12:f0:72:8c:05:94: bc:9d:fe:96:22:88:d5:86:b9:c0:17:64:83:19:37: b0:72:b6:a8:86:5c:6a:a8:be:c7:d8:d2:85:54:39: 1a:0d:90:a8:e4:40:d1:7e:4a:92:fa:67:0b:1d:26: 66:fd:5a:82:06:d6:06:96:1e:13:5f:1f:73:25:3e: 8c:b1:23:b4:1c:10:eb:d1:80:68:80:37:90:cd:8e: 2a:09:76:de:60:0b:ce:e0:81:70:c2:cc:7b:46:a9: c1:2f:97:8b:f1:37:57:39:fa:73:dd:ea:ba:b0:ed: 42:53:30:b0:9f:d9:94:f6:9a:ff:d6:cf:03:ab:d0: fe:86:73:f1:5b:d3:4f:69:c9:8f:32:78:ba:83:e1: bb:11:9d:be:d5:06:bc:ca:27:5a:09:e5:36:06:f2: 7d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CC:7A:1C:FA:66:EC:F2:95:16:42:52:7C:94:F0:1E:AE:BF:95:38 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:b2:bc:a8:e5:df:06:32:97:65:ab:59:48:df:21:b5:b9:08: 55:c0:09:ed:ea:0e:c1:14:4e:6a:7d:cf:a7:98:a0:8f:21:78: 6a:b0:1f:7b:72:e6:60:35:1b:4e:f7:95:90:52:12:b1:78:e9: 7c:e1:4c:f3:38:d0:c4:9c:9e:dd:2d:97:9a:1d:9e:f1:96:9a: fe:0c:c0:26:36:05:d6:4a:22:6c:34:ab:02:10:3f:55:0f:69: 3d:91:af:19:d5:c6:4c:c7:f6:b1:00:1c:17:6b:9e:79:a5:b5: d5:f4:0b:67:33:7a:3b:1e:3e:37:e6:7a:cd:4f:a1:13:48:0f: 5d:38:a5:d9:9d:d5:d1:ec:28:35:bb:8a:fa:bc:ba:71:ae:40: d0:77:0e:ab:a0:73:74:36:02:94:3d:c4:4b:3d:91:ab:bf:ee: 52:85:8a:6d:ce:dd:c6:b2:0c:34:3c:5d:c8:65:c2:e4:c4:f1: 56:d3:0f:5f:b8:62:e9:12:b9:52:0b:50:24:c9:f2:7a:bd:5f: 23:a9:08:7d:25:62:a8:5d:63:6d:7b:b0:39:9d:17:dd:24:29: 0f:80:04:34:c5:0f:cf:c7:6e:86:94:6a:bd:9f:5a:cb:71:04: b9:11:31:6e:60:b6:34:3d:05:b0:c3:07:fb:87:7d:2e:2f:b5: c8:f0:97:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjUxMTA0MjMyMTQ5WhcNMjUxMTExMjMyMTQ5WjAYMRYwFAYD VQQDEw02OTBhOGE4ZC1lNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlL5YdxCKZ5LcyXBSBt2OItxLpToVdqyoJcmTd7MTgWY/l7jViZALCkHhtsm VDncBOSSt+ArZkdiXcHvIIW7z+gqupcLRhSmOZvs9de9SACz2jntFcrjuRfmo5Qo skaqoDUS8HKMBZS8nf6WIojVhrnAF2SDGTewcraohlxqqL7H2NKFVDkaDZCo5EDR fkqS+mcLHSZm/VqCBtYGlh4TXx9zJT6MsSO0HBDr0YBogDeQzY4qCXbeYAvO4IFw wsx7RqnBL5eL8TdXOfpz3eq6sO1CUzCwn9mU9pr/1s8Dq9D+hnPxW9NPacmPMni6 g+G7EZ2+1Qa8yidaCeU2BvJ9JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODMehz6 ZuzylRZCUnyU8B6uv5U4MB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRsryo5d8GMpdlq1lI3yG1uQhVwAnt6g7BFE5qfc+nmKCPIXhqsB97 cuZgNRtO95WQUhKxeOl84UzzONDEnJ7dLZeaHZ7xlpr+DMAmNgXWSiJsNKsCED9V D2k9ka8Z1cZMx/axABwXa555pbXV9AtnM3o7Hj435nrNT6ETSA9dOKXZndXR7Cg1 u4r6vLpxrkDQdw6roHN0NgKUPcRLPZGrv+5ShYptzt3Gsgw0PF3IZcLkxPFW0w9f uGLpErlSC1AkyfJ6vV8jqQh9JWKoXWNte7A5nRfdJCkPgAQ0xQ/Px26GlGq9n1rL cQS5ETFuYLY0PQWwwwf7h30uL7XI8JdJ -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:37 2025 by rpki-client