$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: DmlewhyxZPXqMIzmvgURWaK6G3qoDt4Y+bNBBY42vFQ= Subject key identifier: 42:30:1B:51:D5:69:DC:9E:A6:84:2F:9B:5E:90:C5:39:35:FF:A8:B8 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0198 Signing time: Wed 05 Nov 2025 03:38:37 +0000 Manifest this update: Wed 05 Nov 2025 03:38:36 +0000 Manifest next update: Wed 12 Nov 2025 03:38:36 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: SDwKSPSrXaoG+Z7gJQx9HdhX99wxz5dsgPTp84rH2Rk=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: 2nukhqdNU6Euo+43iQiPgLSUJQocXAJN3vnaW4r7bwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Nov 5 03:38:36 2025 GMT Not After : Nov 12 03:38:36 2025 GMT Subject: CN=690ac6bd-d6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:4f:bb:5b:d9:88:d4:ee:e4:26:04:e4:cb: 44:97:1f:5a:c9:7d:fd:2a:59:34:e9:93:b0:6e:9c: c4:5d:2b:80:2d:cf:9c:b7:8e:5d:80:54:42:78:46: 6d:6c:f0:38:1b:f6:13:1a:03:6d:63:58:1d:bd:a0: 3c:65:f8:cc:98:de:b1:9a:7a:9f:39:69:af:a0:71: f4:f8:f8:89:5a:35:bb:36:fd:d2:a7:34:47:2d:43: b7:57:09:94:44:07:5d:59:c2:a4:62:2a:20:d8:e9: 60:2e:be:0e:95:e3:e2:87:99:27:2c:3e:01:57:49: 71:eb:e8:6d:15:62:a5:73:52:f2:19:60:44:9e:44: 2c:b3:bd:7a:7e:56:1a:7c:fa:90:03:69:33:23:90: fe:39:f2:1f:22:1f:5e:b5:ab:0a:d2:f5:36:7b:18: 4e:3e:09:44:2e:b1:28:d3:04:3c:9a:06:35:49:4a: 2b:6f:0d:a2:44:d5:2b:33:93:49:5e:8b:eb:ad:b4: cf:aa:c3:94:2d:f5:11:09:8c:9f:66:5d:53:f1:38: 66:54:ef:4e:b8:db:30:f5:f2:45:95:03:87:cb:0a: 28:c7:3b:5e:35:02:b6:f9:ee:33:9f:53:de:63:7a: 7b:09:77:53:90:da:56:d1:eb:51:27:cd:aa:a6:3a: 99:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:30:1B:51:D5:69:DC:9E:A6:84:2F:9B:5E:90:C5:39:35:FF:A8:B8 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:00:b4:50:2a:eb:d4:b2:ee:b5:09:d2:bc:23:9f:74:17:0e: ab:6d:b6:85:25:47:86:d0:0f:f5:85:c2:b9:15:fd:85:40:8c: 1c:05:a4:92:c6:0d:f7:6b:4b:d1:47:e4:75:7b:5a:2d:76:15: 56:96:6a:ed:ea:af:31:49:cc:96:e6:32:52:fc:94:a2:f1:88: fe:f0:a4:c1:d5:13:3d:6a:0e:4b:bf:39:fb:db:22:92:a3:5d: 5d:0d:a1:b2:15:2f:1e:bb:1e:bd:c6:f0:95:4a:b6:3e:d5:56: 3b:5f:05:f2:b6:37:78:3f:f2:68:90:2b:4c:2e:25:5b:8b:12: 98:92:c2:34:54:14:76:d6:d8:b1:bf:1b:27:ca:55:56:78:e6: 4e:53:71:61:30:ba:56:96:26:bf:79:59:94:f8:9e:76:ed:2c: b7:0f:f5:95:a2:24:9e:b4:66:05:6a:3f:84:6b:8d:50:53:f1: 4f:ce:73:18:8a:ee:3c:78:44:83:a7:32:9a:5a:93:c7:c0:67: 57:17:b4:8c:cc:af:22:c2:c3:f0:d2:50:33:2e:c1:b4:f0:e0: 5c:80:5a:12:88:ee:ce:a6:07:40:f8:bd:91:f1:2d:c4:34:08: 46:fd:d6:b6:26:eb:26:ce:fa:bc:4e:d2:0a:15:5f:1d:4a:bd: 33:bc:9a:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUxMTA1MDMzODM2WhcNMjUxMTEyMDMzODM2WjAYMRYwFAYD VQQDEw02OTBhYzZiZC1kNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6JPu1vZiNTu5CYE5MtElx9ayX39Klk06ZOwbpzEXSuALc+ct45dgFRCeEZt bPA4G/YTGgNtY1gdvaA8ZfjMmN6xmnqfOWmvoHH0+PiJWjW7Nv3SpzRHLUO3VwmU RAddWcKkYiog2OlgLr4OlePih5knLD4BV0lx6+htFWKlc1LyGWBEnkQss716flYa fPqQA2kzI5D+OfIfIh9etasK0vU2exhOPglELrEo0wQ8mgY1SUorbw2iRNUrM5NJ XovrrbTPqsOULfURCYyfZl1T8ThmVO9OuNsw9fJFlQOHywooxzteNQK2+e4zn1Pe Y3p7CXdTkNpW0etRJ82qpjqZxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIwG1HV adyepoQvm16QxTk1/6i4MB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACALRQKuvUsu61CdK8I590Fw6rbbaFJUeG0A/1hcK5Ff2FQIwcBaSS xg33a0vRR+R1e1otdhVWlmrt6q8xScyW5jJS/JSi8Yj+8KTB1RM9ag5Lvzn72yKS o11dDaGyFS8eux69xvCVSrY+1VY7XwXytjd4P/JokCtMLiVbixKYksI0VBR21tix vxsnylVWeOZOU3FhMLpWlia/eVmU+J527Sy3D/WVoiSetGYFaj+Ea41QU/FPznMY iu48eESDpzKaWpPHwGdXF7SMzK8iwsPw0lAzLsG08OBcgFoSiO7OpgdA+L2R8S3E NAhG/da2Jusmzvq8TtIKFV8dSr0zvJo3 -----END CERTIFICATE-----Generated at Wed Nov 5 11:26:23 2025 by rpki-client