$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: WLsAixUUkvUpxdrRZUFEytV2HEj3FK1c4nFIWHfrh80= Subject key identifier: 20:F3:DB:43:04:41:99:70:B0:AA:59:5E:F5:0E:0F:68:2E:B8:19:9D Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34DC Signing time: Tue 04 Nov 2025 14:44:51 +0000 Manifest this update: Tue 04 Nov 2025 14:44:50 +0000 Manifest next update: Tue 11 Nov 2025 14:44:50 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: W7UELF08niKwrtvbRhrIl15sNXF/NUvRK6E51jReT5M=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Nov 4 14:44:50 2025 GMT Not After : Nov 11 14:44:50 2025 GMT Subject: CN=690a1162-338d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2f:64:9c:53:8a:a6:1f:47:8f:09:d0:90:1b: a3:54:97:54:97:af:05:a8:47:ae:8e:6b:bc:9c:d8: c0:2d:3d:42:02:51:3b:9b:01:b1:88:d0:d7:2c:13: bc:5e:43:1e:bc:d1:9f:6d:51:a0:6d:b3:8d:29:c6: 00:e4:af:a4:e6:d9:a0:15:55:7a:8c:a5:5c:cc:16: f2:ba:d8:e8:5b:f4:f1:e9:69:13:6f:8d:b7:88:73: 97:3d:31:72:24:f1:b7:54:d1:b3:df:4e:02:4f:33: 61:dd:d7:de:46:02:f0:f8:3f:94:6d:d3:32:fd:6e: 0c:3a:92:96:5d:09:8c:62:18:04:61:3e:e6:a7:c5: 48:2a:44:d6:9f:39:72:08:01:bd:b7:92:a1:2f:45: f9:7e:c6:68:50:fe:bb:f6:f3:51:99:d8:ce:f6:d2: 96:60:2c:7f:d3:95:60:39:23:c9:66:c6:77:eb:2d: 19:77:3b:ad:16:fd:80:82:81:3b:ee:09:38:a5:c6: 5e:07:c6:71:6a:dc:44:d2:3b:fa:c3:1e:12:59:7f: 36:1c:f2:07:44:32:22:0d:97:70:4e:79:17:35:0f: d5:87:a9:f9:60:35:16:c3:01:5e:e0:82:17:20:05: 62:1d:dc:72:7e:17:09:01:62:2b:3b:c2:61:0c:5a: 00:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F3:DB:43:04:41:99:70:B0:AA:59:5E:F5:0E:0F:68:2E:B8:19:9D X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:bc:34:88:9a:df:23:12:46:8e:9d:f5:16:00:e3:1c:be:65: 3c:ae:ca:dd:2b:15:e3:54:52:09:0f:f8:d5:a0:37:df:90:98: 75:f5:62:7d:15:2c:1f:5e:5a:26:ff:ee:da:be:25:2d:3e:5c: b7:84:b9:d6:eb:7b:16:68:6e:88:f5:fe:f6:5b:6b:75:8d:b7: 27:d2:22:36:9b:34:76:a0:91:6f:a7:97:95:63:a3:cc:bb:47: c1:b8:66:c8:77:27:11:b0:be:3e:7c:f9:26:e8:9d:cc:fa:33: cc:77:7a:92:ab:62:8f:ea:8b:8b:57:38:6d:58:f0:34:29:1d: d0:ee:68:45:9f:3c:75:1d:bc:b8:56:f0:f9:3a:e1:17:9d:85: c5:c3:e1:b4:9d:de:37:2d:90:85:e8:f9:e3:eb:ad:2d:5c:44: c2:cc:d4:3d:27:fa:80:75:21:b5:a5:a7:fa:c4:3b:12:b8:b2: 18:e5:64:da:82:4a:15:7f:63:ad:f5:00:b8:32:66:53:21:45: 36:03:80:61:90:dc:49:f1:11:bd:38:79:ea:fc:f1:5f:aa:0a: c8:54:02:68:eb:39:e0:6c:68:57:ac:51:1d:c2:ac:af:4d:b4: fd:06:1e:ad:57:a2:e1:28:de:41:ff:81:48:cf:3b:c1:c7:84: 5f:e1:9a:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUxMTA0MTQ0NDUwWhcNMjUxMTExMTQ0NDUwWjAYMRYwFAYD VQQDEw02OTBhMTE2Mi0zMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApS9knFOKph9HjwnQkBujVJdUl68FqEeujmu8nNjALT1CAlE7mwGxiNDXLBO8 XkMevNGfbVGgbbONKcYA5K+k5tmgFVV6jKVczBbyutjoW/Tx6WkTb423iHOXPTFy JPG3VNGz304CTzNh3dfeRgLw+D+UbdMy/W4MOpKWXQmMYhgEYT7mp8VIKkTWnzly CAG9t5KhL0X5fsZoUP679vNRmdjO9tKWYCx/05VgOSPJZsZ36y0ZdzutFv2AgoE7 7gk4pcZeB8ZxatxE0jv6wx4SWX82HPIHRDIiDZdwTnkXNQ/Vh6n5YDUWwwFe4IIX IAViHdxyfhcJAWIrO8JhDFoAswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDz20ME QZlwsKpZXvUOD2guuBmdMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxvDSImt8jEkaOnfUWAOMcvmU8rsrdKxXjVFIJD/jVoDffkJh19WJ9 FSwfXlom/+7aviUtPly3hLnW63sWaG6I9f72W2t1jbcn0iI2mzR2oJFvp5eVY6PM u0fBuGbIdycRsL4+fPkm6J3M+jPMd3qSq2KP6ouLVzhtWPA0KR3Q7mhFnzx1Hby4 VvD5OuEXnYXFw+G0nd43LZCF6Pnj660tXETCzNQ9J/qAdSG1paf6xDsSuLIY5WTa gkoVf2Ot9QC4MmZTIUU2A4BhkNxJ8RG9OHnq/PFfqgrIVAJo6zngbGhXrFEdwqyv TbT9Bh6tV6LhKN5B/4FIzzvBx4Rf4ZoU -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:29 2025 by rpki-client