$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft File: GF_2ZH4elndQE3e1UVR5uelGEGc.mft (raw, json) Hash identifier: qdwiKoKinuwFHPKYumcXErXdWz+83pLuxU1LmobnzUI= Subject key identifier: 3A:F7:9F:6B:2F:9E:AF:8A:3F:AF:75:9F:D6:78:E1:C1:93:FC:7B:4B Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 11D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft Manifest number: 11CE Signing time: Sat 18 Oct 2025 17:42:55 +0000 Manifest this update: Sat 18 Oct 2025 17:42:54 +0000 Manifest next update: Sat 25 Oct 2025 17:42:54 +0000 Files and hashes: 1: GF_2ZH4elndQE3e1UVR5uelGEGc.crl (hash: iV/1GVEoqkbFyYVf4qO0Qzg7grmB2GHYtYGQ7+lBvvU=) 2: A1E87910832A11ECA409521EC4F9AE02.roa (hash: pWwzKrBi4ex9pqtRPtIPRabSwqTwDTnYV8iW2v8i1Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4569 (0x11d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: Oct 18 17:42:54 2025 GMT Not After : Oct 25 17:42:54 2025 GMT Subject: CN=68f3d19f-99f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8e:c4:81:a4:29:60:f6:16:86:59:f0:df:07: 62:75:76:30:79:dd:af:6f:5d:f1:34:55:3c:05:04: 8a:57:b6:f0:0d:14:bb:92:41:32:8c:89:20:29:fe: 8b:34:14:0c:29:d1:c5:35:3c:3f:3a:39:d8:13:bd: e5:11:2a:84:f0:23:44:63:f0:d8:ba:7b:92:9d:b6: ed:92:91:bf:dd:e5:01:d0:c1:22:1f:71:22:18:dd: 3f:19:27:b8:3b:9f:89:1c:f9:17:ac:b2:d9:2a:a4: 1f:63:cf:b2:e5:9b:9d:a0:58:9c:ca:ef:1d:30:04: e8:b1:b6:46:08:b1:6b:e3:ae:4d:b5:90:6b:75:71: 76:aa:9e:49:a0:8d:41:35:e9:e0:eb:4c:66:64:bd: 60:48:81:c6:2c:38:6f:ce:05:fe:49:41:ae:42:68: 05:bd:f2:13:19:21:3e:13:c7:a0:59:34:e3:fb:99: 07:b6:b6:71:e2:15:fd:d7:cb:ac:e5:b2:c1:53:f8: fd:ba:f6:80:e2:e4:c9:b5:3e:d4:71:ed:e5:f0:79: 8b:df:c1:97:5a:3a:77:b0:04:ca:40:72:af:4f:19: bf:7e:93:83:3a:9f:09:bf:92:04:c0:7d:a1:66:7d: 87:a3:5d:cf:72:f0:5c:23:84:63:e0:c4:a2:1a:38: 1d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F7:9F:6B:2F:9E:AF:8A:3F:AF:75:9F:D6:78:E1:C1:93:FC:7B:4B X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c5:f4:36:f6:6f:f3:4c:98:a2:2b:36:66:a2:f6:be:d3:99: cf:dc:6f:59:24:4b:c7:d0:5b:35:64:33:b8:ca:0f:ec:26:85: 1f:6a:36:ac:b0:d8:b4:cc:d7:a9:f4:48:95:b8:6e:70:22:e9: 13:32:54:f2:00:29:f7:89:55:37:09:cf:06:fb:95:e9:31:a5: 16:af:72:b3:df:be:9c:f9:ae:4a:a3:de:f7:14:a1:cb:3c:6b: 79:46:fe:32:a2:4d:4f:72:43:00:fb:15:67:3c:01:c8:5f:2d: 34:da:df:5a:ed:52:60:19:27:fa:e4:01:97:e1:02:31:c2:c0: 88:13:50:a2:bf:25:d5:5b:62:5c:19:0e:a3:bb:5e:1a:14:b0: 59:c5:a9:78:d1:d2:c3:2e:21:44:68:46:4a:29:36:65:a3:b6: de:5c:6d:13:70:3e:ac:e9:39:42:14:19:04:29:96:25:11:a4: 78:5a:12:2a:76:9b:5c:ba:9f:d7:5c:34:32:80:bb:f9:b0:7d: be:57:6a:2f:cb:33:26:37:20:ef:7b:e4:03:3b:e1:42:10:8e: c8:2c:d5:6c:6f:bc:13:6a:2f:f5:15:c4:52:db:25:11:10:ac: bb:e4:c8:b9:b6:59:01:5e:ff:34:dd:a1:5c:17:a5:fc:4b:ba: 20:c5:2e:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjUxMDE4MTc0MjU0WhcNMjUxMDI1MTc0MjU0WjAYMRYwFAYD VQQDEw02OGYzZDE5Zi05OWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsI7EgaQpYPYWhlnw3wdidXYwed2vb13xNFU8BQSKV7bwDRS7kkEyjIkgKf6L NBQMKdHFNTw/OjnYE73lESqE8CNEY/DYunuSnbbtkpG/3eUB0MEiH3EiGN0/GSe4 O5+JHPkXrLLZKqQfY8+y5ZudoFicyu8dMATosbZGCLFr465NtZBrdXF2qp5JoI1B Neng60xmZL1gSIHGLDhvzgX+SUGuQmgFvfITGSE+E8egWTTj+5kHtrZx4hX918us 5bLBU/j9uvaA4uTJtT7Uce3l8HmL38GXWjp3sATKQHKvTxm/fpODOp8Jv5IEwH2h Zn2Ho13PcvBcI4Rj4MSiGjgdvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDr3n2sv nq+KP691n9Z44cGT/HtLMB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxu ZFFFM2UxVVZSNXVlbEdFR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvxfQ29m/zTJiiKzZmova+05nP3G9ZJEvH0Fs1ZDO4yg/sJoUfajas sNi0zNep9EiVuG5wIukTMlTyACn3iVU3Cc8G+5XpMaUWr3Kz376c+a5Ko973FKHL PGt5Rv4yok1PckMA+xVnPAHIXy002t9a7VJgGSf65AGX4QIxwsCIE1CivyXVW2Jc GQ6ju14aFLBZxal40dLDLiFEaEZKKTZlo7beXG0TcD6s6TlCFBkEKZYlEaR4WhIq dptcup/XXDQygLv5sH2+V2ovyzMmNyDve+QDO+FCEI7ILNVsb7wTai/1FcRS2yUR EKy75Mi5tlkBXv803aFcF6X8S7ogxS62 -----END CERTIFICATE-----Generated at Mon Oct 20 11:39:27 2025 by rpki-client