$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft File: gqPk4CGF_7caxsaYwGdUjZzBhxA.mft (raw, json) Hash identifier: qvEjIapyALG1BkEGVAmemIYLrf7upwy4NrG41CysTIU= Subject key identifier: 01:C4:6D:88:5E:0F:A8:DE:FB:C2:22:FF:1B:9D:36:60:AE:8F:6C:87 Authority key identifier: 82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 Certificate issuer: /CN=A91F33D6/serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft Manifest number: 06AF Signing time: Tue 04 Nov 2025 22:19:48 +0000 Manifest this update: Tue 04 Nov 2025 22:19:47 +0000 Manifest next update: Tue 11 Nov 2025 22:19:47 +0000 Files and hashes: 1: gqPk4CGF_7caxsaYwGdUjZzBhxA.crl (hash: kUZWSCT3HnqYIQssJbva8fvlJ7slKHNVB9xJFGsjIZw=) 2: 9C53117E83FB11EBB159507AC4F9AE02.roa (hash: vkyP11luhnXeWA23/INygAjf676dmOUmLr8+nJsgHpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33D6, serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Validity Not Before: Nov 4 22:19:47 2025 GMT Not After : Nov 11 22:19:47 2025 GMT Subject: CN=690a7c04-9914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:28:9c:07:be:42:54:16:ad:22:c5:27:65: 1f:80:d1:d1:81:50:19:f4:be:ce:df:cb:1b:e7:cf: 2b:91:d2:33:19:69:93:cc:f9:a7:13:f9:04:c2:25: 84:cb:d8:16:e5:b5:92:e6:d6:be:30:01:73:2b:8e: 5b:93:e9:f6:cd:c6:6e:47:e0:ee:38:22:da:03:6d: 07:59:69:1a:86:e2:08:7c:af:e9:06:d1:4f:58:3b: 08:e1:b1:7b:4f:19:2f:76:d1:5a:75:a4:51:84:73: 0e:87:5c:4c:d1:2d:db:35:61:21:69:82:3d:b6:d5: ab:90:b1:c5:79:2d:ae:9e:3b:22:bf:98:8b:5d:15: ef:75:71:38:89:e7:77:ac:31:ba:bc:59:4f:38:2f: e8:38:68:4a:91:1c:68:b9:98:a0:58:3e:f7:17:b0: 83:ff:86:fe:1b:8e:a8:46:39:6a:c1:1c:6c:e4:e8: df:e6:82:8e:2c:55:90:14:85:94:22:f9:48:4e:64: 00:ab:cc:53:d0:95:11:d7:3b:e8:d2:ad:f6:ea:21: 23:22:b1:38:00:60:40:37:46:eb:39:42:e6:36:20: 92:60:42:31:39:56:bd:66:61:35:a8:e9:15:ed:38: 9f:ee:f2:26:6e:5e:f3:b4:70:25:61:f8:83:41:5c: 70:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C4:6D:88:5E:0F:A8:DE:FB:C2:22:FF:1B:9D:36:60:AE:8F:6C:87 X509v3 Authority Key Identifier: keyid:82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:ad:16:c7:73:e0:a8:f8:13:b3:03:1e:28:a7:e8:0f:de:33: ce:85:c9:ae:c7:33:53:82:2f:dc:04:74:21:e4:5f:fe:d7:2f: 70:c7:1c:f5:7c:2a:e0:5a:1f:c7:7a:0f:11:12:b7:17:62:05: 1a:59:70:73:4d:69:d9:79:aa:c4:1c:04:51:fd:b1:2c:9e:37: 8c:24:cb:7c:67:48:ba:4c:fb:22:7c:f8:1d:8b:d6:9b:a5:2b: 83:fc:a3:03:d5:eb:7c:db:73:a1:1b:23:b4:2d:6a:30:fb:8a: 6d:91:46:ca:54:d8:70:15:e5:8e:e2:83:06:e8:21:bb:16:04: ac:4b:d7:2d:c0:5f:3b:18:99:d7:7e:0c:29:17:5e:c8:31:98: b3:af:41:2e:38:c7:9f:14:ee:ef:4a:78:74:17:5e:85:8f:3a: 2d:f3:a5:03:10:c1:bd:f5:80:e2:06:91:30:5e:75:53:63:f9: de:41:4a:4b:16:f5:db:91:e2:0b:e6:7a:f4:7f:e0:f2:c1:07: ba:1d:1f:00:8d:75:df:e7:cc:9d:00:f7:e1:4f:f3:ce:06:6b: c2:3f:91:80:a5:e4:05:94:b7:a9:c5:29:f5:ef:91:47:54:74: 0e:bd:44:06:14:e2:c1:d5:ae:81:cc:09:57:18:3f:00:e9:51: c0:82:42:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzRDYxMTAvBgNVBAUTKDgyQTNFNEUwMjE4NUZGQjcxQUM2QzY5OEMwNjc1NDhE OUNDMTg3MTAwHhcNMjUxMTA0MjIxOTQ3WhcNMjUxMTExMjIxOTQ3WjAYMRYwFAYD VQQDEw02OTBhN2MwNC05OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh8onAe+QlQWrSLFJ2UfgNHRgVAZ9L7O38sb588rkdIzGWmTzPmnE/kEwiWE y9gW5bWS5ta+MAFzK45bk+n2zcZuR+DuOCLaA20HWWkahuIIfK/pBtFPWDsI4bF7 TxkvdtFadaRRhHMOh1xM0S3bNWEhaYI9ttWrkLHFeS2unjsiv5iLXRXvdXE4ied3 rDG6vFlPOC/oOGhKkRxouZigWD73F7CD/4b+G46oRjlqwRxs5Ojf5oKOLFWQFIWU IvlITmQAq8xT0JUR1zvo0q326iEjIrE4AGBAN0brOULmNiCSYEIxOVa9ZmE1qOkV 7Tif7vImbl7ztHAlYfiDQVxwhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHEbYhe D6je+8Ii/xudNmCuj2yHMB8GA1UdIwQYMBaAFIKj5OAhhf+3GsbGmMBnVI2cwYcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNENi84M0I2NTE5Njgz RjkxMUVCQTcxNTc3NzdDNEY5QUUwMi9ncVBrNENHRl83Y2F4c2FZd0dkVWpaekJo eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxUGs0Q0dGXzdjYXhzYVl3R2RValp6Qmh4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzNENi84M0I2NTE5NjgzRjkxMUVCQTcxNTc3NzdDNEY5QUUwMi9ncVBrNENHRl83 Y2F4c2FZd0dkVWpaekJoeEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqrRbHc+Co+BOzAx4op+gP3jPOhcmuxzNTgi/cBHQh5F/+1y9wxxz1 fCrgWh/Heg8RErcXYgUaWXBzTWnZearEHARR/bEsnjeMJMt8Z0i6TPsifPgdi9ab pSuD/KMD1et823OhGyO0LWow+4ptkUbKVNhwFeWO4oMG6CG7FgSsS9ctwF87GJnX fgwpF17IMZizr0EuOMefFO7vSnh0F16Fjzot86UDEMG99YDiBpEwXnVTY/neQUpL FvXbkeIL5nr0f+DywQe6HR8AjXXf58ydAPfhT/POBmvCP5GApeQFlLepxSn175FH VHQOvUQGFOLB1a6BzAlXGD8A6VHAgkIw -----END CERTIFICATE-----Generated at Wed Nov 5 13:28:59 2025 by rpki-client