$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: PjbNAWWk8Ak66xpQS28Wrb0wplvqvZwmuiS9XncDbH0= Subject key identifier: 90:86:AF:B1:0C:9B:D0:EA:5F:92:3A:E5:53:45:4D:EC:F3:5D:A7:25 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E50 Signing time: Sat 18 Oct 2025 16:21:55 +0000 Manifest this update: Sat 18 Oct 2025 16:21:54 +0000 Manifest next update: Sat 25 Oct 2025 16:21:54 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: RWHwHUWP3guW76YTH5ayJmoXdi3sLR1na78ktwrjEog=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7773 (0x1e5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Oct 18 16:21:54 2025 GMT Not After : Oct 25 16:21:54 2025 GMT Subject: CN=68f3bea2-e67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9d:d7:28:17:9b:4e:c9:40:58:7e:56:95:b2: af:fa:ad:66:e2:40:c5:e9:f5:ec:6d:93:03:9a:b5: a3:80:65:4c:3f:bd:21:64:3b:bc:a2:c6:ae:82:8a: 55:0c:b6:98:76:5a:e4:f9:a9:51:e5:89:e6:7d:f3: 48:63:10:77:f3:ab:23:ec:2b:9b:a0:b7:1b:85:48: 60:d5:8b:f5:2a:80:0f:1b:cb:43:0f:4b:4f:48:44: d1:c7:b1:f8:eb:c0:2c:3e:2f:48:64:ef:9b:67:88: 74:e9:67:75:14:22:e9:41:31:6c:9a:0c:b2:3d:46: d1:b3:8e:85:41:7d:71:be:62:71:81:3a:9d:38:eb: d2:74:f3:df:60:e9:5d:99:34:a9:cd:8c:3c:29:d4: f0:38:82:2d:75:75:6b:56:b5:26:71:c3:1a:5b:be: 22:7d:90:a6:48:c1:07:ef:86:b5:14:43:ef:e0:64: b3:f1:ca:69:f6:3f:36:5a:bd:b1:5e:83:9a:69:59: 99:65:c7:0c:94:83:1a:b1:59:64:0c:af:c2:88:ef: 79:60:0b:04:70:8f:d3:38:ee:3e:3b:d6:e4:85:ff: d1:d6:e4:4e:a5:7d:bc:f1:02:ef:5c:c5:a2:d8:f3: b5:57:a2:63:29:66:2d:08:ee:34:42:45:9e:f6:b1: 6a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:86:AF:B1:0C:9B:D0:EA:5F:92:3A:E5:53:45:4D:EC:F3:5D:A7:25 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:71:a4:c3:54:da:5c:dd:da:40:82:7d:d3:6a:a8:dd:c8:6e: 58:e7:b6:55:b3:ec:d9:48:f4:04:1b:88:03:3f:c2:4b:28:26: 5f:8a:c9:f2:6a:af:b2:75:83:3d:21:23:d2:82:f6:9c:c8:c9: 11:be:cf:6b:c3:99:8e:73:55:f7:b6:c0:09:40:14:49:e4:c7: e9:ad:82:46:da:ee:5c:ca:89:a5:ad:53:56:2d:84:15:94:d9: 29:cd:80:6e:d6:97:b5:fb:da:79:f3:14:50:c3:4a:5b:9c:a6: a7:6e:6b:46:84:fb:38:66:16:7e:9d:fd:e1:6c:44:65:c4:bd: f8:2b:a5:f9:46:01:32:df:af:55:1b:72:31:39:22:e6:cc:84: 0e:3b:a5:5d:bc:ee:56:34:98:b4:cb:e6:5b:47:2c:bd:8e:52: 41:fe:80:a5:92:0c:7c:9c:d8:33:1e:2a:55:93:d7:ed:bf:fc: d9:c0:1e:a8:0b:c9:b8:dd:82:d2:d6:8e:e3:a2:e9:a3:30:28: 8a:87:a8:f5:5e:d8:c3:b0:ff:19:b8:67:dc:fd:82:ea:d2:09: 7a:7e:fc:f3:e1:a7:4f:f7:57:8e:75:03:2c:a6:ed:dc:82:4b: ef:5a:67:fd:46:36:0f:c9:b8:e6:dd:18:d3:da:fe:02:13:06: 93:fe:50:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUxMDE4MTYyMTU0WhcNMjUxMDI1MTYyMTU0WjAYMRYwFAYD VQQDEw02OGYzYmVhMi1lNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ3XKBebTslAWH5WlbKv+q1m4kDF6fXsbZMDmrWjgGVMP70hZDu8osaugopV DLaYdlrk+alR5YnmffNIYxB386sj7CuboLcbhUhg1Yv1KoAPG8tDD0tPSETRx7H4 68AsPi9IZO+bZ4h06Wd1FCLpQTFsmgyyPUbRs46FQX1xvmJxgTqdOOvSdPPfYOld mTSpzYw8KdTwOIItdXVrVrUmccMaW74ifZCmSMEH74a1FEPv4GSz8cpp9j82Wr2x XoOaaVmZZccMlIMasVlkDK/CiO95YAsEcI/TOO4+O9bkhf/R1uROpX288QLvXMWi 2PO1V6JjKWYtCO40QkWe9rFq5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCGr7EM m9DqX5I65VNFTezzXaclMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmcaTDVNpc3dpAgn3TaqjdyG5Y57ZVs+zZSPQEG4gDP8JLKCZfisny aq+ydYM9ISPSgvacyMkRvs9rw5mOc1X3tsAJQBRJ5MfprYJG2u5cyomlrVNWLYQV lNkpzYBu1pe1+9p58xRQw0pbnKanbmtGhPs4ZhZ+nf3hbERlxL34K6X5RgEy369V G3IxOSLmzIQOO6VdvO5WNJi0y+ZbRyy9jlJB/oClkgx8nNgzHipVk9ftv/zZwB6o C8m43YLS1o7joumjMCiKh6j1XtjDsP8ZuGfc/YLq0gl6fvzz4adP91eOdQMspu3c gkvvWmf9RjYPybjm3RjT2v4CEwaT/lCR -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:38 2025 by rpki-client