$ rpki-client -vvf rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft File: gkVvIaH33yOGQR-g7REgZPbrw5o.mft (raw, json) Hash identifier: Z/0XkTPO1jlPn6Fd/ucawHs/8YzG6bNSeBkc31X7/Ik= Subject key identifier: 2F:09:0A:46:B7:DB:B2:2E:F1:A4:75:98:A2:99:CD:2B:84:44:85:BD Authority key identifier: 82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A Certificate issuer: /CN=A91E94F0/serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Certificate serial: 0425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft Manifest number: 041F Signing time: Wed 05 Nov 2025 00:27:23 +0000 Manifest this update: Wed 05 Nov 2025 00:27:23 +0000 Manifest next update: Wed 12 Nov 2025 00:27:23 +0000 Files and hashes: 1: gkVvIaH33yOGQR-g7REgZPbrw5o.crl (hash: NDVuiw6lMWLLSWftcEqQfiTY68W0lqibi+mnu8+7tmo=) 2: F15E709A880611ECAF18133AC4F9AE02.roa (hash: bpLtQ8qLL6l2ZogXhZIDbdT4T6FC+6P3DrjrNo4piak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E94F0, serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Validity Not Before: Nov 5 00:27:23 2025 GMT Not After : Nov 12 00:27:23 2025 GMT Subject: CN=690a99eb-e8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d8:d6:44:6b:89:6d:5c:bf:ce:1c:4d:c0:f4: 8f:6c:3f:6d:12:8c:96:73:b2:ff:d6:12:26:f5:9d: bb:76:98:7d:76:30:31:ad:ce:39:8a:73:39:52:86: b1:d5:3f:58:e7:f1:59:6e:a3:84:21:3b:36:53:99: a6:9c:97:dd:d8:6f:91:21:9c:5f:1a:23:f6:34:e0: 3b:2c:26:1f:f7:fb:b8:5a:98:d2:c9:c2:91:42:1a: 40:17:2e:30:2e:8c:2f:4d:90:72:a9:e1:22:0d:92: df:99:46:49:de:5b:5e:c8:db:0b:05:b9:a5:67:bf: cc:8b:c6:f8:3f:e8:e0:42:e1:84:ad:25:78:93:50: 3d:78:fc:4e:c2:e0:18:68:2e:25:18:71:06:2c:89: 95:88:66:0f:9c:25:2d:fb:94:d5:b0:de:df:b1:7f: 81:c9:f4:e4:60:7b:36:3e:a6:7c:94:a5:d2:e1:57: a0:97:9b:02:cc:8b:58:48:b0:27:e5:1b:f7:dc:ac: f5:8d:a1:eb:49:d5:3c:94:4f:66:1c:e3:e4:2d:e8: d7:23:ee:fd:34:ac:ab:8b:43:ae:e5:7f:ca:05:ff: f7:30:17:34:8f:57:2f:cc:41:b9:c2:b6:37:77:61: 22:70:16:e9:29:26:33:b8:f7:e2:4b:58:02:89:49: 20:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:09:0A:46:B7:DB:B2:2E:F1:A4:75:98:A2:99:CD:2B:84:44:85:BD X509v3 Authority Key Identifier: keyid:82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:45:74:ff:67:78:2f:b0:46:56:00:bd:df:e3:9d:99:02:92: a6:04:96:de:89:a2:42:47:98:f2:4a:ee:0e:5f:8d:5a:36:8e: 82:20:06:c3:ee:fe:db:ff:dd:0b:7c:94:98:38:b7:f3:ab:bd: 04:17:cf:d3:97:aa:31:db:c4:8e:c0:31:9d:08:d6:bd:6d:20: 17:af:d1:3a:71:51:a3:a9:73:34:c3:cc:0a:7e:10:a2:7f:45: 14:04:e1:94:51:73:93:3c:da:8a:28:1e:80:27:0a:a8:cd:2f: 02:ae:32:59:2f:93:ed:ce:57:e9:e4:9c:bb:4e:ce:2b:a8:e7: 9c:94:5a:cd:e6:f5:eb:a9:e8:f2:15:88:37:b5:c7:5c:0a:dd: 0d:f0:b1:81:3f:a2:f5:a5:3b:4b:99:2a:19:c3:c9:e0:bd:fa: d9:5b:84:70:d2:7f:a4:bf:86:a8:d1:61:67:9e:3f:27:ab:cd: 80:93:a4:71:52:2e:61:70:61:43:8c:e2:1c:95:09:0d:3f:36: b1:c9:c8:d1:ef:bd:59:f8:d9:36:a1:b4:51:05:8f:e8:0d:65: f3:eb:ff:0c:4d:fb:4a:ef:5a:94:75:6d:8a:af:a9:c6:a7:db: 58:0e:1a:e8:49:8f:88:76:82:d2:07:19:e7:37:ac:40:00:bf: e2:21:b5:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0RjAxMTAvBgNVBAUTKDgyNDU2RjIxQTFGN0RGMjM4NjQxMUZBMEVEMTEyMDY0 RjZFQkMzOUEwHhcNMjUxMTA1MDAyNzIzWhcNMjUxMTEyMDAyNzIzWjAYMRYwFAYD VQQDEw02OTBhOTllYi1lOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tjWRGuJbVy/zhxNwPSPbD9tEoyWc7L/1hIm9Z27dph9djAxrc45inM5Uoax 1T9Y5/FZbqOEITs2U5mmnJfd2G+RIZxfGiP2NOA7LCYf9/u4WpjSycKRQhpAFy4w LowvTZByqeEiDZLfmUZJ3lteyNsLBbmlZ7/Mi8b4P+jgQuGErSV4k1A9ePxOwuAY aC4lGHEGLImViGYPnCUt+5TVsN7fsX+ByfTkYHs2PqZ8lKXS4Vegl5sCzItYSLAn 5Rv33Kz1jaHrSdU8lE9mHOPkLejXI+79NKyri0Ou5X/KBf/3MBc0j1cvzEG5wrY3 d2EicBbpKSYzuPfiS1gCiUkgvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8JCka3 27Iu8aR1mKKZzSuERIW9MB8GA1UdIwQYMBaAFIJFbyGh998jhkEfoO0RIGT268Oa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTRGMC9FNEIxQkQzODg4 MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5T0dRUi1nN1JFZ1pQYnJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2drVnZJYUgzM3lPR1FSLWc3UkVnWlBicnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTRGMC9FNEIxQkQzODg4MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5 T0dRUi1nN1JFZ1pQYnJ3NW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBRXT/Z3gvsEZWAL3f452ZApKmBJbeiaJCR5jySu4OX41aNo6CIAbD 7v7b/90LfJSYOLfzq70EF8/Tl6ox28SOwDGdCNa9bSAXr9E6cVGjqXM0w8wKfhCi f0UUBOGUUXOTPNqKKB6AJwqozS8CrjJZL5Ptzlfp5Jy7Ts4rqOeclFrN5vXrqejy FYg3tcdcCt0N8LGBP6L1pTtLmSoZw8ngvfrZW4Rw0n+kv4ao0WFnnj8nq82Ak6Rx Ui5hcGFDjOIclQkNPzaxycjR771Z+Nk2obRRBY/oDWXz6/8MTftK71qUdW2Kr6nG p9tYDhroSY+IdoLSBxnnN6xAAL/iIbVk -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:36 2025 by rpki-client