$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft File: GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft (raw, json) Hash identifier: +QmiCeYXYWRp1HiE/I7wSjG0Bs9wVPcQp3EPR92zuLA= Subject key identifier: 5C:36:6C:E3:C6:7C:B9:94:DE:19:22:8C:53:81:17:E3:07:E0:43:E6 Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft Manifest number: 0500 Signing time: Sun 19 Oct 2025 01:24:51 +0000 Manifest this update: Sun 19 Oct 2025 01:24:51 +0000 Manifest next update: Sun 26 Oct 2025 01:24:51 +0000 Files and hashes: 1: GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl (hash: WGq1U3VakP/lWTXKJwknx6+qs2OyxWcvtuOZ2ooHoWY=) 2: 9BC1C0762BD411EC81C16155C4F9AE02.roa (hash: a+Y61sonWEkeUKpiRdmPcvnEh5eS40fnFCOIgfk3fv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C, serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Oct 19 01:24:51 2025 GMT Not After : Oct 26 01:24:51 2025 GMT Subject: CN=68f43de3-7764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7f:fd:7d:df:99:b1:2a:57:66:43:ed:e2:65: bb:36:df:15:10:9a:26:7d:20:fc:4d:c5:41:9c:2a: d4:a7:e1:bf:5a:76:60:df:a5:35:0d:47:66:93:dc: 00:e2:81:a5:1c:59:fd:ac:7e:bf:3c:63:33:6a:94: c9:32:de:01:39:53:ae:99:4d:b4:c4:43:a9:bf:5c: 4c:81:22:e2:78:1e:d3:cd:ac:c1:ca:d5:43:75:cf: f2:65:98:0b:de:06:85:a6:ea:b9:54:5e:e9:34:0b: 2a:07:00:a5:98:fa:8f:12:74:1a:09:40:87:bc:a6: a3:7e:15:6a:0a:c2:ea:4b:1e:d1:28:10:c1:90:f8: e7:e4:3e:c8:d5:0d:b3:0b:4d:59:a1:ec:d8:a4:07: 62:8a:8b:c3:f7:73:5a:e9:1b:82:54:d9:57:18:28: 45:1b:77:65:f5:a6:8a:f4:c9:c4:67:97:24:ba:66: ee:08:a8:73:e8:4b:15:1a:7e:49:9e:44:0b:21:25: 71:c1:7e:7f:06:93:59:81:c9:2e:a7:28:a9:0b:86: 10:65:1f:8b:b8:89:39:3b:70:8f:ac:fa:c6:92:25: 0a:6c:2b:1a:bd:77:d5:3d:b4:22:2d:8e:e9:58:be: 98:3b:24:21:c2:dd:db:57:8a:d3:6f:2f:f1:03:b8: 57:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:36:6C:E3:C6:7C:B9:94:DE:19:22:8C:53:81:17:E3:07:E0:43:E6 X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:25:bc:3e:ec:34:6a:df:95:4f:6d:37:ea:e3:a0:f7:30:30: bf:01:da:98:88:8d:e6:26:4f:52:37:a5:7d:20:69:6b:30:4b: 50:9c:9e:d8:0d:15:b0:c7:30:dc:09:87:35:b3:2f:37:cb:f3: 68:70:ef:77:e8:0a:df:09:38:5c:9b:b5:56:a4:da:e4:fb:77: 73:8a:87:a9:fe:0e:58:eb:d1:5f:7b:31:9a:60:ce:e2:8b:34: cd:ea:5e:8c:7e:48:61:38:30:f2:f5:09:2a:e2:c6:eb:6a:0b: e3:4a:c5:6d:12:71:0c:0a:6a:df:cf:a5:d3:66:63:53:f4:1e: 2c:62:72:0f:0f:ad:72:46:a5:8d:66:60:67:15:c0:4a:a6:7b: af:36:77:6f:99:de:a5:bd:cd:40:55:aa:10:55:2d:8a:3c:ae: fe:59:5a:c1:6c:62:7f:a3:a4:35:fc:59:d9:c2:c2:a0:05:19: e2:d7:39:b4:6f:8a:37:04:0e:d2:bd:8f:88:3e:91:74:64:17: f2:58:2e:bf:58:bd:5e:7c:8a:24:ac:14:f3:ac:3f:db:e0:8d: 82:40:15:d3:f8:5a:f0:3b:09:9b:18:fa:47:c6:36:96:ae:74: 7b:93:bd:0a:5d:d8:f4:37:c2:5e:10:15:8d:1a:ea:53:ed:cb: c8:18:17:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjUxMDE5MDEyNDUxWhcNMjUxMDI2MDEyNDUxWjAYMRYwFAYD VQQDEw02OGY0M2RlMy03NzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArX/9fd+ZsSpXZkPt4mW7Nt8VEJomfSD8TcVBnCrUp+G/WnZg36U1DUdmk9wA 4oGlHFn9rH6/PGMzapTJMt4BOVOumU20xEOpv1xMgSLieB7TzazBytVDdc/yZZgL 3gaFpuq5VF7pNAsqBwClmPqPEnQaCUCHvKajfhVqCsLqSx7RKBDBkPjn5D7I1Q2z C01ZoezYpAdiiovD93Na6RuCVNlXGChFG3dl9aaK9MnEZ5ckumbuCKhz6EsVGn5J nkQLISVxwX5/BpNZgckupyipC4YQZR+LuIk5O3CPrPrGkiUKbCsavXfVPbQiLY7p WL6YOyQhwt3bV4rTby/xA7hXdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw2bOPG fLmU3hkijFOBF+MH4EPmMB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTkxQy9CQzI2M0E4RTJCRDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVD SVlxaV9IYjJGYlFDVlpZVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Jbw+7DRq35VPbTfq46D3MDC/AdqYiI3mJk9SN6V9IGlrMEtQnJ7Y DRWwxzDcCYc1sy83y/NocO936ArfCThcm7VWpNrk+3dzioep/g5Y69FfezGaYM7i izTN6l6MfkhhODDy9Qkq4sbragvjSsVtEnEMCmrfz6XTZmNT9B4sYnIPD61yRqWN ZmBnFcBKpnuvNndvmd6lvc1AVaoQVS2KPK7+WVrBbGJ/o6Q1/FnZwsKgBRni1zm0 b4o3BA7SvY+IPpF0ZBfyWC6/WL1efIokrBTzrD/b4I2CQBXT+FrwOwmbGPpHxjaW rnR7k70KXdj0N8JeEBWNGupT7cvIGBej -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:26 2025 by rpki-client