$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: QvmF4O/I4FtGCcZnw++Sekmd/JaCeIMH34QVDbzT0dQ= Subject key identifier: 66:74:8F:08:CF:03:5F:DF:2F:6D:45:08:F7:F5:0B:87:9E:08:88:2D Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 076B Signing time: Sun 02 Nov 2025 21:35:12 +0000 Manifest this update: Sun 02 Nov 2025 21:35:11 +0000 Manifest next update: Sun 09 Nov 2025 21:35:11 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: 1Y/sSRldIrQ1KzqzEOAX4jjssWcOAQ4FJ+q0iAu3iJk=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5, serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: Nov 2 21:35:11 2025 GMT Not After : Nov 9 21:35:11 2025 GMT Subject: CN=6907ce90-0bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:97:29:f0:e3:da:1f:40:8d:ae:8d:47:01: 17:71:81:3c:e2:0b:52:dc:08:9d:7a:04:bb:fc:ca: a5:5c:36:15:dd:28:97:34:4c:43:4e:47:53:20:a6: 1e:d6:81:55:78:24:5e:6c:3d:f7:8a:b4:62:1e:9b: 7e:bc:57:b6:0f:94:a8:69:b3:7d:df:25:56:53:5f: d1:fd:c7:1a:4d:1b:70:f6:5a:68:a6:f0:f4:cd:57: 6e:08:0b:88:d5:5f:0a:63:e9:7b:33:b8:e6:25:27: f2:64:01:ab:53:22:cf:ca:4f:a9:b5:7e:42:22:63: df:85:13:cc:bc:45:2a:35:60:29:11:7e:c0:d9:97: dc:9b:70:0e:f6:d1:25:ea:e6:83:a1:d4:0f:cf:9b: 6e:11:e6:2b:3e:f1:4b:ec:37:4f:db:e5:de:28:bf: 70:3b:67:f3:b7:21:43:a1:86:3e:fb:19:7f:4e:61: dd:38:51:c9:1a:4f:51:44:87:7f:aa:a5:c4:3c:fd: 57:c4:54:73:f5:f1:77:a5:ce:ed:5d:43:08:18:3d: 2f:2a:d6:ce:af:0d:29:e6:00:ca:93:75:b9:94:a1: 28:ab:c8:43:4d:92:11:e2:62:57:a4:e1:6a:e5:e7: eb:76:69:4e:8c:00:66:8d:e3:f0:1d:e7:56:44:17: 83:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:74:8F:08:CF:03:5F:DF:2F:6D:45:08:F7:F5:0B:87:9E:08:88:2D X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2e:dc:ec:3e:37:8a:d0:9f:36:96:00:8b:98:e4:b2:3a:77: 3f:73:cb:b8:f7:30:11:25:b6:ad:fa:72:f4:22:45:cb:ea:f4: 94:c8:cf:09:25:9e:36:fd:0a:dc:c5:bc:da:84:83:6e:59:96: d8:2f:b6:12:07:b8:a6:0b:cd:8b:83:78:71:3a:a5:51:bb:bb: f7:ec:b7:65:58:4d:b1:2f:ef:45:77:39:ff:10:46:75:b3:2b: 33:36:32:63:bc:57:91:29:d9:ec:0f:37:61:fa:2b:15:df:99: e9:71:83:87:cc:3e:38:59:76:bd:77:ad:eb:20:54:6a:8b:39: c7:48:82:8d:30:fa:1e:23:90:11:28:69:fb:33:a4:15:13:8f: a8:2b:e0:a3:bd:c7:63:27:ef:1c:e8:f4:e6:4c:7c:78:c6:93: 3a:73:57:ab:43:8c:78:b8:36:c3:ef:8c:c3:2a:a2:3b:eb:40: 85:8a:c7:76:fd:41:e2:06:e4:35:64:65:97:30:74:ad:1e:3d: 62:e8:5c:4b:73:7c:4d:63:80:ff:5c:2a:2f:23:56:83:d4:0d: 0d:0a:08:f9:d7:c8:1f:b8:90:0f:9e:09:cc:9a:15:17:9a:40: f1:3f:03:83:95:60:f0:10:58:c6:5d:bb:7d:b8:ed:09:75:d6: db:3d:1e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjUxMTAyMjEzNTExWhcNMjUxMTA5MjEzNTExWjAYMRYwFAYD VQQDEw02OTA3Y2U5MC0wYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBSXKfDj2h9Aja6NRwEXcYE84gtS3AidegS7/MqlXDYV3SiXNExDTkdTIKYe 1oFVeCRebD33irRiHpt+vFe2D5SoabN93yVWU1/R/ccaTRtw9lpopvD0zVduCAuI 1V8KY+l7M7jmJSfyZAGrUyLPyk+ptX5CImPfhRPMvEUqNWApEX7A2Zfcm3AO9tEl 6uaDodQPz5tuEeYrPvFL7DdP2+XeKL9wO2fztyFDoYY++xl/TmHdOFHJGk9RRId/ qqXEPP1XxFRz9fF3pc7tXUMIGD0vKtbOrw0p5gDKk3W5lKEoq8hDTZIR4mJXpOFq 5efrdmlOjABmjePwHedWRBeDlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZ0jwjP A1/fL21FCPf1C4eeCIgtMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwLtzsPjeK0J82lgCLmOSyOnc/c8u49zARJbat+nL0IkXL6vSUyM8J JZ42/QrcxbzahINuWZbYL7YSB7imC82Lg3hxOqVRu7v37LdlWE2xL+9Fdzn/EEZ1 syszNjJjvFeRKdnsDzdh+isV35npcYOHzD44WXa9d63rIFRqiznHSIKNMPoeI5AR KGn7M6QVE4+oK+CjvcdjJ+8c6PTmTHx4xpM6c1erQ4x4uDbD74zDKqI760CFisd2 /UHiBuQ1ZGWXMHStHj1i6FxLc3xNY4D/XCovI1aD1A0NCgj518gfuJAPngnMmhUX mkDxPwODlWDwEFjGXbt9uO0JddbbPR51 -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:46 2025 by rpki-client