$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft File: GSl33aoJW0B37g12I4Rj8bb0Cu4.mft (raw, json) Hash identifier: P1MWOY7eubJDbNqv3g1hq4UtfPT+Dv4IbaA4kcL3Gao= Subject key identifier: FF:77:BF:F5:9C:18:F2:38:25:EB:81:02:BE:D4:E2:A7:81:23:5F:8D Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 040E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft Manifest number: 0404 Signing time: Wed 05 Nov 2025 00:32:16 +0000 Manifest this update: Wed 05 Nov 2025 00:32:15 +0000 Manifest next update: Wed 12 Nov 2025 00:32:15 +0000 Files and hashes: 1: GSl33aoJW0B37g12I4Rj8bb0Cu4.crl (hash: 4AWxe3d8MbtyfkTX1VzmP11K9AbtEmrYH4m4vcnd9/M=) 2: AEFCCA501F5A11F0BA7E6961C4F9AE02.roa (hash: oAqMSF81/AVYaU8nGd+cBMsrnw20XyD/T/zdIoEB4NE=) 3: 9FC8CE38936E11EC92AF8421C4F9AE02.roa (hash: uVo2rPhsS7W1KbzxX340wlAGRoyErXUypsSK5B5R8HQ=) 4: 2B46EF64951211F0A6C6AF5AC4F9AE02.roa (hash: CZf1VlKoEaqshjSK2lnVUILrCRzYZXt31OkqsPRaGqc=) 5: AFDE92321F5A11F0BA7E6961C4F9AE02.roa (hash: S2zfaKcticTwAxwJXdMxgXbdbp4SN51y6QSWO83OIuc=) 6: AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa (hash: 7DU3GXxB2biRDfFfxqVKJQEvwzXZf1dP2MF5wRULxe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1038 (0x40e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Nov 5 00:32:15 2025 GMT Not After : Nov 12 00:32:15 2025 GMT Subject: CN=690a9b0f-fb87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:88:6e:0b:78:78:ed:06:b0:16:67:79:e6:00: 6f:f9:b9:a0:90:13:5f:a0:1d:65:c7:13:2a:98:4f: 91:50:84:e8:90:6c:3a:e0:58:9e:7a:15:63:08:0d: 32:46:19:61:79:fa:0b:97:3a:ca:f0:56:67:ae:38: c4:33:0a:27:fd:fc:74:2a:ef:43:c2:0b:00:5c:1b: 61:14:dc:32:ba:fe:e1:69:3c:72:e8:63:1b:03:cb: c8:02:6e:f0:6d:a6:33:70:db:ed:a4:07:8a:b4:bd: 4f:b5:87:b2:a2:ce:a7:9f:e4:e2:77:0d:2f:7f:f9: aa:f4:72:a3:cf:15:c0:0e:2b:eb:2f:21:8d:48:23: 6a:28:eb:60:29:56:a1:1c:a0:b9:ae:ae:92:2e:0b: d3:cc:98:12:10:b8:6f:e8:15:81:4b:74:0f:5b:cc: cf:81:b1:03:d9:12:a2:07:12:3c:39:b5:35:c1:51: be:37:19:41:8e:ba:52:19:a1:0f:05:bd:16:0d:06: 8b:3f:e2:69:51:e3:01:41:de:83:a6:d5:33:69:c5: 44:45:f9:d1:e1:f4:46:42:eb:4e:07:41:fb:b7:be: cf:f3:73:81:f9:d4:9d:cc:5c:8d:64:40:8e:c8:ce: bb:cc:d8:93:56:57:fc:a4:13:2d:f0:d4:46:52:e2: 11:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:77:BF:F5:9C:18:F2:38:25:EB:81:02:BE:D4:E2:A7:81:23:5F:8D X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:cd:58:e6:b2:44:1f:ae:38:f7:73:ab:75:35:3e:87:7b:3e: 00:80:ba:0a:63:09:6a:ee:38:10:3a:8d:00:d1:b3:42:84:fc: 29:05:e8:02:db:f6:c2:5a:56:3d:5c:52:df:45:4f:c0:87:3d: 10:dd:31:de:10:8e:aa:2b:31:0b:58:71:52:7f:6e:1f:bc:2a: ba:c4:99:18:45:9c:25:a8:cb:ac:7a:17:92:f5:66:fe:74:c4: 0c:ca:57:ab:f4:57:3a:b5:9d:78:59:fd:58:af:48:bc:fe:ae: b9:5a:1f:fb:08:a7:00:7d:25:73:bb:01:2a:1a:70:9f:a3:ba: 6a:48:89:e2:4d:56:6d:e3:47:01:54:ab:a0:87:8b:17:05:2e: a8:1b:33:64:37:d1:64:84:d1:f5:68:f4:34:6f:d1:86:6e:06: 39:b0:89:1a:d4:ca:db:a8:d8:a7:b6:02:1b:44:ad:79:48:46: 03:33:18:eb:d2:77:3c:7c:32:10:60:1e:a6:5b:7f:3b:1d:65: 71:78:d1:d5:52:f9:61:a5:3b:0f:21:06:ec:eb:bf:55:96:04: b4:61:35:89:57:06:37:a1:fb:39:6f:50:2d:8f:f4:2f:0b:f9: 2b:1b:8d:19:fd:c0:7e:54:bc:64:75:ed:4e:02:78:4e:c1:0f: 5a:ff:bd:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUxMTA1MDAzMjE1WhcNMjUxMTEyMDAzMjE1WjAYMRYwFAYD VQQDEw02OTBhOWIwZi1mYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4huC3h47QawFmd55gBv+bmgkBNfoB1lxxMqmE+RUITokGw64FieehVjCA0y RhlhefoLlzrK8FZnrjjEMwon/fx0Ku9DwgsAXBthFNwyuv7haTxy6GMbA8vIAm7w baYzcNvtpAeKtL1PtYeyos6nn+Tidw0vf/mq9HKjzxXADivrLyGNSCNqKOtgKVah HKC5rq6SLgvTzJgSELhv6BWBS3QPW8zPgbED2RKiBxI8ObU1wVG+NxlBjrpSGaEP Bb0WDQaLP+JpUeMBQd6DptUzacVERfnR4fRGQutOB0H7t77P83OB+dSdzFyNZECO yM67zNiTVlf8pBMt8NRGUuIRlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP93v/Wc GPI4JeuBAr7U4qeBI1+NMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NThDOS80MEUwQzBFRTkzNkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcw QjM3ZzEySTRSajhiYjBDdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7zVjmskQfrjj3c6t1NT6Hez4AgLoKYwlq7jgQOo0A0bNChPwpBegC 2/bCWlY9XFLfRU/Ahz0Q3THeEI6qKzELWHFSf24fvCq6xJkYRZwlqMuseheS9Wb+ dMQMyler9Fc6tZ14Wf1Yr0i8/q65Wh/7CKcAfSVzuwEqGnCfo7pqSIniTVZt40cB VKugh4sXBS6oGzNkN9FkhNH1aPQ0b9GGbgY5sIka1MrbqNintgIbRK15SEYDMxjr 0nc8fDIQYB6mW387HWVxeNHVUvlhpTsPIQbs679VlgS0YTWJVwY3ofs5b1Atj/Qv C/krG40Z/cB+VLxkde1OAnhOwQ9a/70L -----END CERTIFICATE-----Generated at Wed Nov 5 21:16:55 2025 by rpki-client