$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft File: GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft (raw, json) Hash identifier: vA3AgaSA+HcutY0FBRuNH2SZtZ6wrX7Qlw/mds16XQg= Subject key identifier: 66:E1:2D:86:69:10:FA:97:9E:44:93:86:6F:F3:C8:5C:97:36:4D:F2 Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft Manifest number: 0B Signing time: Mon 27 Oct 2025 10:39:54 +0000 Manifest this update: Mon 27 Oct 2025 10:39:54 +0000 Manifest next update: Mon 03 Nov 2025 10:39:53 +0000 Files and hashes: 1: GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl (hash: kx8RzEVEW75clDKjLoXuj0d2gtGDv9X7T0bM4WtYu5c=) 2: CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa (hash: k70gEb/vQZKVsEmAPsgRGzBkI7JP9upXlyJ2H32aUps=) 3: 6D5A36FCB2FB11F0861C2754C4F9AE02.roa (hash: OEUGMrYO6pAbSO+UePFCHSKCBYTSreP7y03ptjqbGzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 10:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Validity Not Before: Oct 27 10:39:54 2025 GMT Not After : Nov 3 10:39:53 2025 GMT Subject: CN=68ff4bfa-b799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7b:24:a4:a9:8c:d5:1c:48:a6:49:6e:13:1b: 46:15:ba:64:c2:8b:9e:b6:06:6d:24:16:97:f4:3b: 13:4a:26:bf:99:28:15:ec:46:72:a0:8f:36:59:ec: a7:dd:a1:0f:8a:04:2e:3e:18:0e:c8:d0:83:bd:1e: 3c:08:04:98:64:a8:4e:77:81:69:85:c1:f7:de:1d: 88:94:2e:99:fb:ff:ec:3a:64:1c:bb:cb:9a:7f:29: 43:ef:16:ad:4b:fd:54:7b:79:58:f3:de:a3:6a:04: 62:e2:84:01:55:b1:e1:27:99:1c:f6:7d:3b:22:59: 80:5c:a6:9c:45:f5:db:d3:af:1f:6b:3d:a9:c3:42: ea:43:5c:35:49:df:52:cf:8d:cd:ee:83:47:b0:06: b9:22:a7:c7:95:bf:50:b0:20:e4:79:66:cb:70:71: cf:c8:ce:8a:15:40:a8:f7:d1:fa:99:66:1c:25:c3: bc:60:b1:ef:78:ca:83:83:d1:d0:b1:7d:2e:03:80: 32:c2:cb:88:14:c2:e1:cc:b6:49:5c:4a:a7:b2:f2: 53:d9:d9:86:a3:d9:4c:68:23:14:7e:6e:8a:e8:7b: a5:ca:03:33:2b:fa:7d:7d:88:6e:c0:79:1d:c6:3f: 55:4b:87:b4:12:37:2d:34:5e:0d:23:f1:76:7c:f3: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E1:2D:86:69:10:FA:97:9E:44:93:86:6F:F3:C8:5C:97:36:4D:F2 X509v3 Authority Key Identifier: keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:34:0d:84:24:34:d8:7a:90:b6:18:6e:d6:be:f7:f8:90:0e: 92:fe:44:05:db:49:ca:51:20:a9:10:7c:93:65:b8:51:a1:7d: fa:b6:92:45:d5:19:5b:29:f9:54:2c:2d:d4:e1:24:20:4f:3f: 41:85:1f:6e:86:7f:8c:73:18:c8:53:5d:05:ef:dc:09:a5:77: 01:49:6a:08:74:97:39:23:a1:b0:9f:86:14:c4:9e:6e:c0:0e: 7e:d0:9c:56:4d:4d:b0:bd:40:ce:df:a2:cb:63:f9:70:be:d2: 7f:98:c3:74:0e:49:f5:ca:44:67:75:d4:cb:d1:f3:a8:0f:8b: 66:40:51:92:56:85:ee:4d:49:65:d3:94:63:3e:9a:db:74:0d: 71:8d:5b:09:49:7f:53:03:99:92:f1:a4:a1:10:bb:4b:43:20: d1:2a:0b:74:77:49:b9:cc:3f:93:76:d2:9e:83:0d:a0:b6:52: 92:70:9b:e2:54:ed:d9:83:c5:36:f9:c3:90:9c:8b:d3:8a:a5: f9:18:dc:ac:61:57:5d:75:84:28:31:46:6a:8b:ef:24:bc:5c: 78:6e:14:19:82:4d:27:fb:02:64:3e:ac:1a:1f:27:b5:06:09: 63:03:f9:50:dc:04:a7:6f:14:40:c3:61:00:19:8f:a9:34:d1: db:6b:35:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDY1NjExMC8GA1UEBRMoMTlFMDVBRkQxRTZCMzYyNTRBNUNCMTUwMzYzOTM4NEI2 QTIyQTgyNjAeFw0yNTEwMjcxMDM5NTRaFw0yNTExMDMxMDM5NTNaMBgxFjAUBgNV BAMTDTY4ZmY0YmZhLWI3OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7eySkqYzVHEimSW4TG0YVumTCi562Bm0kFpf0OxNKJr+ZKBXsRnKgjzZZ7Kfd oQ+KBC4+GA7I0IO9HjwIBJhkqE53gWmFwffeHYiULpn7/+w6ZBy7y5p/KUPvFq1L /VR7eVjz3qNqBGLihAFVseEnmRz2fTsiWYBcppxF9dvTrx9rPanDQupDXDVJ31LP jc3ug0ewBrkip8eVv1CwIOR5Zstwcc/IzooVQKj30fqZZhwlw7xgse94yoOD0dCx fS4DgDLCy4gUwuHMtklcSqey8lPZ2Yaj2UxoIxR+boroe6XKAzMr+n19iG7AeR3G P1VLh7QSNy00Xg0j8XZ881qFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZuEthmkQ +peeRJOGb/PIXJc2TfIwHwYDVR0jBBgwFoAUGeBa/R5rNiVKXLFQNjk4S2oiqCYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwNjU2LzRBNzA5NTY0QjAw RDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlWS1hMRlFOams0UzJvaXFD WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2VCYV9SNXJOaVZLWExGUU5qazRTMm9pcUNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw NjU2LzRBNzA5NTY0QjAwRDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlW S1hMRlFOams0UzJvaXFDWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANc0DYQkNNh6kLYYbta+9/iQDpL+RAXbScpRIKkQfJNluFGhffq2kkXV GVsp+VQsLdThJCBPP0GFH26Gf4xzGMhTXQXv3AmldwFJagh0lzkjobCfhhTEnm7A Dn7QnFZNTbC9QM7fostj+XC+0n+Yw3QOSfXKRGd11MvR86gPi2ZAUZJWhe5NSWXT lGM+mtt0DXGNWwlJf1MDmZLxpKEQu0tDINEqC3R3SbnMP5N20p6DDaC2UpJwm+JU 7dmDxTb5w5Cci9OKpfkY3KxhV111hCgxRmqL7yS8XHhuFBmCTSf7AmQ+rBofJ7UG CWMD+VDcBKdvFEDDYQAZj6k00dtrNd4= -----END CERTIFICATE-----Generated at Tue Oct 28 18:31:17 2025 by rpki-client