$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: u6DINaeLQHQHpSf3aYAsb4vR0gDTis/paO70nU+dAqM= Subject key identifier: 08:C6:7F:7C:D8:A2:89:D4:00:71:F9:26:9D:79:32:4B:FC:BE:6F:7F Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C4C Signing time: Tue 04 Nov 2025 16:17:16 +0000 Manifest this update: Tue 04 Nov 2025 16:17:16 +0000 Manifest next update: Tue 11 Nov 2025 16:17:16 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: ukJ27MhVkEiSR6NYqNuGnswmyd2vC4o8GJRYvZK0fcg=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 87Eagj9nbEvxROvw6iIl3FH0KdIVxp+aZzvllNFI0J8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7255 (0x1c57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Nov 4 16:17:16 2025 GMT Not After : Nov 11 16:17:16 2025 GMT Subject: CN=690a270c-3b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ff:0c:97:79:53:66:f7:73:ad:9c:c9:c3:54: 10:63:43:eb:db:0d:9a:bf:e1:0e:c2:6c:d4:b3:9d: 95:e4:64:91:96:f1:24:c7:c3:23:ec:a6:24:36:21: 41:6b:87:ad:ba:69:bb:79:e0:9c:a6:0d:ce:d3:62: b3:12:f6:77:6f:bb:75:d1:47:1c:2e:1e:a5:84:c3: a1:b1:8c:6a:d0:68:43:3f:8f:77:73:7e:20:92:69: 43:2c:5b:de:6e:ca:0b:b7:fd:a2:b5:5f:aa:8e:17: 29:dd:f8:cc:e3:7a:91:6b:9c:17:51:dc:31:ad:c6: 91:28:ef:7c:8b:73:69:c5:c4:a6:76:9d:20:93:a2: 62:4e:2b:08:eb:13:92:89:fe:0e:0a:4f:7f:d9:26: e5:0b:65:2a:6a:5e:b9:51:93:6a:b9:49:9f:11:53: 98:34:9d:00:a0:22:bb:ba:9c:34:b1:6b:6d:be:06: 3d:97:ff:88:d2:ee:c7:78:e1:b1:7f:cf:56:30:03: 3f:7c:07:97:6c:1e:29:2c:f1:e4:79:c4:05:a0:77: 9e:f6:32:bd:9a:64:be:30:1d:6b:8a:75:40:04:7c: 2d:ea:ea:d7:76:df:ff:2e:c7:fe:41:dd:4f:d3:65: c3:53:b7:41:47:28:68:e3:c1:f4:6a:07:0c:15:fb: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C6:7F:7C:D8:A2:89:D4:00:71:F9:26:9D:79:32:4B:FC:BE:6F:7F X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2e:b3:60:5e:1a:47:78:7a:36:95:f9:7c:9b:da:a1:20:3e: fa:6e:b2:44:08:bb:b9:20:81:a5:fa:e2:38:bd:b7:f9:73:5e: 2b:4c:fd:9f:86:dd:18:bf:89:6a:c4:f6:15:36:6a:55:ff:d7: f7:9b:2d:5c:b4:10:89:68:22:d7:64:b2:f6:d7:d4:b9:f9:96: 55:dd:9d:87:90:2b:9a:fe:57:7c:a5:48:b0:a8:7a:ca:d9:d4: 5e:49:93:36:1d:65:87:54:51:4e:72:fe:9f:8d:79:f3:7a:43: e8:b3:e0:dd:49:4b:6d:01:1d:1d:87:e9:c7:00:2a:4a:84:47: 5c:03:1b:a4:1d:ae:20:66:22:ab:83:fa:58:6a:bf:1f:45:3e: 91:af:00:b6:4c:0f:80:f8:b9:db:a6:f0:29:15:e3:a3:10:35: 3d:de:3d:41:17:29:23:1a:f6:f9:c2:e8:c2:15:69:a4:04:44: 2b:25:7f:aa:55:b1:26:6f:38:8d:e0:59:ad:e5:2e:45:33:3c: ba:79:de:ca:3c:37:85:b9:61:96:96:13:80:e8:3b:38:39:55: 71:fd:82:06:4f:c3:17:1b:fe:77:be:fc:5e:54:c1:2f:00:52: 0c:3e:42:3b:bd:10:19:61:b1:e2:d1:21:bb:b7:10:bb:67:d0: 57:32:00:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjUxMTA0MTYxNzE2WhcNMjUxMTExMTYxNzE2WjAYMRYwFAYD VQQDEw02OTBhMjcwYy0zYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqf8Ml3lTZvdzrZzJw1QQY0Pr2w2av+EOwmzUs52V5GSRlvEkx8Mj7KYkNiFB a4etumm7eeCcpg3O02KzEvZ3b7t10UccLh6lhMOhsYxq0GhDP493c34gkmlDLFve bsoLt/2itV+qjhcp3fjM43qRa5wXUdwxrcaRKO98i3NpxcSmdp0gk6JiTisI6xOS if4OCk9/2SblC2Uqal65UZNquUmfEVOYNJ0AoCK7upw0sWttvgY9l/+I0u7HeOGx f89WMAM/fAeXbB4pLPHkecQFoHee9jK9mmS+MB1rinVABHwt6urXdt//Lsf+Qd1P 02XDU7dBRyho48H0agcMFft5PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjGf3zY oonUAHH5Jp15Mkv8vm9/MB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDLrNgXhpHeHo2lfl8m9qhID76brJECLu5IIGl+uI4vbf5c14rTP2f ht0Yv4lqxPYVNmpV/9f3my1ctBCJaCLXZLL219S5+ZZV3Z2HkCua/ld8pUiwqHrK 2dReSZM2HWWHVFFOcv6fjXnzekPos+DdSUttAR0dh+nHACpKhEdcAxukHa4gZiKr g/pYar8fRT6RrwC2TA+A+LnbpvApFeOjEDU93j1BFykjGvb5wujCFWmkBEQrJX+q VbEmbziN4Fmt5S5FMzy6ed7KPDeFuWGWlhOA6Ds4OVVx/YIGT8MXG/53vvxeVMEv AFIMPkI7vRAZYbHi0SG7txC7Z9BXMgDT -----END CERTIFICATE-----Generated at Wed Nov 5 12:21:12 2025 by rpki-client