$ rpki-client -vvf rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft File: GNdIiJK3LFSvZOLdI4thnIm3LWg.mft (raw, json) Hash identifier: eLAIXYRxYVakpmoZ9U6lc52/ZmCbTgB44FRzYxDD4mA= Subject key identifier: DB:A9:5D:C2:F2:32:10:51:78:B8:ED:60:35:22:49:90:88:91:ED:D0 Authority key identifier: 18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 Certificate issuer: /CN=A91E17BF/serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft Manifest number: 02DC Signing time: Wed 05 Nov 2025 01:25:05 +0000 Manifest this update: Wed 05 Nov 2025 01:25:05 +0000 Manifest next update: Wed 12 Nov 2025 01:25:05 +0000 Files and hashes: 1: GNdIiJK3LFSvZOLdI4thnIm3LWg.crl (hash: qTmW/0c70RjkR/rV/Gkoto2hYmAaB0nnRBIzN196n78=) 2: 83D6FAEE077511EDBD013D37C4F9AE02.roa (hash: vDQoZAtho3Zfc3fEMkNHvcrZRkN5p0mTf80o1+Yo2ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E17BF, serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Validity Not Before: Nov 5 01:25:05 2025 GMT Not After : Nov 12 01:25:05 2025 GMT Subject: CN=690aa771-2eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fe:f9:4b:59:38:09:7b:1b:ab:1f:f1:4d:55: 54:5e:44:f3:9a:32:61:c8:ad:82:e8:6e:b8:af:66: f9:43:95:88:4f:06:d7:1e:83:da:ff:16:2b:7a:2e: ec:46:b8:98:07:36:e4:ac:42:ef:2b:5e:e8:b6:fb: ff:14:4a:ac:67:1c:d7:66:e9:27:29:15:b2:be:1e: 9a:dc:cf:9e:e7:27:32:8a:72:3a:56:7a:e7:1e:9e: d1:c2:33:50:12:cf:33:70:53:05:09:d7:7b:a2:cd: ba:27:57:9e:3f:0c:ca:07:ed:46:c2:b2:a3:4c:46: 2b:3e:7c:8e:4a:86:d2:d6:2a:82:4e:e8:4a:71:f0: 0a:52:bd:39:36:53:0f:3d:01:3c:8a:25:a5:78:d8: 12:eb:36:44:04:81:8a:dc:7b:71:42:d7:6e:ad:2f: 1b:23:45:bb:43:e8:83:aa:14:03:6d:a0:fd:47:a1: 2e:c9:12:c0:66:d9:d2:48:e2:5c:89:b8:d8:eb:2d: 82:78:82:b5:8a:4a:96:42:f3:87:27:95:62:62:ae: 0f:c4:b5:f2:8c:1a:f7:40:c4:b2:c7:11:a7:79:a6: d8:b6:2e:a0:0c:62:c4:7c:76:6a:29:df:71:2e:e1: e0:ad:42:8a:2b:29:9d:a9:de:cd:d7:96:2d:33:a4: f7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A9:5D:C2:F2:32:10:51:78:B8:ED:60:35:22:49:90:88:91:ED:D0 X509v3 Authority Key Identifier: keyid:18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:cf:5b:ce:d1:0a:df:c0:76:96:13:7c:6e:55:42:66:32:05: 7f:ee:51:fa:59:1a:ea:e5:7e:fd:6f:03:86:1f:a0:ac:b7:15: 11:98:df:c7:43:06:d6:64:99:70:59:1f:40:d9:f5:68:b4:8b: 43:23:60:66:0f:93:3c:e8:78:de:aa:eb:46:10:2f:a2:83:14: 82:a0:76:c2:52:8f:e0:4e:a8:6e:77:53:83:b3:8f:da:75:25: f5:52:91:72:93:26:09:74:85:b2:0b:51:a9:64:d9:81:5b:26: 3d:16:04:93:77:8c:65:fc:53:7e:83:bd:7b:07:69:1c:75:50: 3e:19:cb:ea:67:79:9d:59:18:0a:f2:33:e2:de:ef:27:17:56: 9d:5a:ef:f6:54:1e:43:49:4a:18:08:57:83:a2:29:a7:68:f3: 17:86:ad:17:b3:35:88:40:42:02:ee:1b:8d:1f:ea:6a:08:24: c7:17:8f:bb:95:c9:40:16:75:60:df:e3:df:ac:17:71:3c:08: 2c:c4:fc:77:6c:84:b1:36:c5:3f:ad:f6:fc:02:3a:ef:d1:e1: 90:93:2b:58:7b:6c:c6:6e:7e:5d:b4:68:0f:f1:b0:c7:fd:77: 0a:8e:6c:70:d3:fc:22:29:06:04:c2:e7:6a:6a:92:0c:74:a9: e0:68:72:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3QkYxMTAvBgNVBAUTKDE4RDc0ODg4OTJCNzJDNTRBRjY0RTJERDIzOEI2MTlD ODlCNzJENjgwHhcNMjUxMTA1MDEyNTA1WhcNMjUxMTEyMDEyNTA1WjAYMRYwFAYD VQQDEw02OTBhYTc3MS0yZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5f75S1k4CXsbqx/xTVVUXkTzmjJhyK2C6G64r2b5Q5WITwbXHoPa/xYrei7s RriYBzbkrELvK17otvv/FEqsZxzXZuknKRWyvh6a3M+e5ycyinI6VnrnHp7RwjNQ Es8zcFMFCdd7os26J1eePwzKB+1GwrKjTEYrPnyOSobS1iqCTuhKcfAKUr05NlMP PQE8iiWleNgS6zZEBIGK3HtxQtdurS8bI0W7Q+iDqhQDbaD9R6EuyRLAZtnSSOJc ibjY6y2CeIK1ikqWQvOHJ5ViYq4PxLXyjBr3QMSyxxGneabYti6gDGLEfHZqKd9x LuHgrUKKKymdqd7N15YtM6T3GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNupXcLy MhBReLjtYDUiSZCIke3QMB8GA1UdIwQYMBaAFBjXSIiStyxUr2Ti3SOLYZyJty1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTdCRi84RDBEQzA5NjA3 NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xGU3ZaT0xkSTR0aG5JbTNM V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOZElpSkszTEZTdlpPTGRJNHRobkltM0xXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTdCRi84RDBEQzA5NjA3NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xG U3ZaT0xkSTR0aG5JbTNMV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyz1vO0QrfwHaWE3xuVUJmMgV/7lH6WRrq5X79bwOGH6CstxURmN/H QwbWZJlwWR9A2fVotItDI2BmD5M86HjequtGEC+igxSCoHbCUo/gTqhud1ODs4/a dSX1UpFykyYJdIWyC1GpZNmBWyY9FgSTd4xl/FN+g717B2kcdVA+GcvqZ3mdWRgK 8jPi3u8nF1adWu/2VB5DSUoYCFeDoimnaPMXhq0XszWIQEIC7huNH+pqCCTHF4+7 lclAFnVg3+PfrBdxPAgsxPx3bISxNsU/rfb8Ajrv0eGQkytYe2zGbn5dtGgP8bDH /XcKjmxw0/wiKQYEwudqapIMdKngaHKn -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:05 2025 by rpki-client