$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: DPrrsXdzllR9KnPwOCXz+DP3i/p5kvDEYCbKNkkEPLE= Subject key identifier: C4:08:07:6F:33:E1:76:7D:28:1F:58:F9:A8:01:B4:3B:2B:B7:1D:96 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 065C Signing time: Sun 19 Oct 2025 00:10:39 +0000 Manifest this update: Sun 19 Oct 2025 00:10:38 +0000 Manifest next update: Sun 26 Oct 2025 00:10:38 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: uWwETWYAPAe7R5XsleRC2wRMHJSQdCpFTiYhRBq1SeY=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: +tI56XBeGW4f/ZvoEb+YONcyvmeUooJFS+xtnAK+AuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Oct 19 00:10:38 2025 GMT Not After : Oct 26 00:10:38 2025 GMT Subject: CN=68f42c7e-796c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bc:64:fb:af:23:7b:47:d8:85:17:db:24:88: 9a:6b:13:28:90:c2:89:1e:b7:f6:a3:23:86:29:9f: b1:36:55:ef:63:35:c2:71:75:73:66:de:0c:30:2d: b5:b3:c4:96:01:9a:59:1b:62:89:0a:66:f5:83:05: ea:0c:a0:6c:ec:bd:a0:34:05:3b:d5:4b:fa:08:6b: a8:3a:24:2c:ce:7d:cd:b9:3a:4c:64:17:a8:3a:7e: 7d:ff:7f:67:40:67:80:77:2e:cc:28:29:e4:53:f0: 67:b4:3d:e5:8f:3a:90:6e:d7:ef:da:56:fe:11:d3: 10:7e:50:ff:60:5b:17:2c:6a:4e:80:13:7f:48:d5: 5d:cd:69:5f:6c:72:38:ca:55:b3:0d:0f:e0:90:9a: 73:b3:4f:77:92:65:b8:b6:b4:a2:16:c2:b2:9c:bf: d3:1c:de:d6:7d:9e:0e:28:3e:6a:d1:06:c8:a6:79: 59:d8:7f:f4:69:be:98:81:2d:ef:f2:2c:65:ce:6b: eb:e2:c2:e0:44:10:90:71:fb:ad:1c:f1:a1:25:c4: 25:64:b7:c5:48:f9:d0:14:e6:58:3a:fc:b3:7c:4e: e2:70:9b:67:ba:ef:8f:4a:53:ab:4b:5f:88:e6:7d: 84:d2:81:38:ef:89:b7:bf:98:4b:6e:4d:20:b2:ad: 33:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:08:07:6F:33:E1:76:7D:28:1F:58:F9:A8:01:B4:3B:2B:B7:1D:96 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:9b:e3:76:62:23:4c:9d:d2:6b:25:ef:3e:86:20:ce:60:2e: d8:a7:d7:c2:35:4d:60:3b:37:dd:06:48:8b:df:df:e5:a8:7f: 0d:1b:d9:22:3a:4b:af:a9:37:e4:55:f6:a9:0d:be:8a:60:7f: 7e:6a:c3:7a:17:09:31:b8:25:62:82:33:e7:fd:f1:da:f8:4e: 7b:89:d6:80:17:98:c3:3d:72:fb:e9:86:a2:9e:f3:50:92:7b: d7:a9:5e:4b:73:c5:05:1d:d1:4f:16:38:a4:92:e0:a5:f9:56: f0:3b:10:a3:2e:ec:6f:6b:d3:2c:89:f4:55:ea:16:46:1e:c0: 85:30:eb:53:19:26:4f:15:8b:3f:4b:a9:fd:a7:b5:d8:5f:60: 0b:1d:11:43:87:02:ff:8e:9e:05:95:e7:3a:2c:27:96:6d:6f: 46:57:4c:43:49:dc:19:4c:ed:1a:86:a0:27:e4:c5:b9:ed:75: 1e:05:1a:5c:07:a6:13:68:a3:61:64:09:6a:89:cd:40:dc:fc: 51:b6:08:78:51:38:4f:90:97:2c:95:ec:0c:60:58:44:3a:38: b9:4d:25:3a:71:b1:e9:43:6e:a6:a1:a3:a1:f5:15:fd:bc:72: 79:8e:b2:29:c2:bf:3e:42:8d:ff:01:fa:8a:6c:f3:d9:be:6d: 67:1b:70:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUxMDE5MDAxMDM4WhcNMjUxMDI2MDAxMDM4WjAYMRYwFAYD VQQDEw02OGY0MmM3ZS03OTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07xk+68je0fYhRfbJIiaaxMokMKJHrf2oyOGKZ+xNlXvYzXCcXVzZt4MMC21 s8SWAZpZG2KJCmb1gwXqDKBs7L2gNAU71Uv6CGuoOiQszn3NuTpMZBeoOn59/39n QGeAdy7MKCnkU/BntD3ljzqQbtfv2lb+EdMQflD/YFsXLGpOgBN/SNVdzWlfbHI4 ylWzDQ/gkJpzs093kmW4trSiFsKynL/THN7WfZ4OKD5q0QbIpnlZ2H/0ab6YgS3v 8ixlzmvr4sLgRBCQcfutHPGhJcQlZLfFSPnQFOZYOvyzfE7icJtnuu+PSlOrS1+I 5n2E0oE474m3v5hLbk0gsq0z7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQIB28z 4XZ9KB9Y+agBtDsrtx2WMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBm+N2YiNMndJrJe8+hiDOYC7Yp9fCNU1gOzfdBkiL39/lqH8NG9ki OkuvqTfkVfapDb6KYH9+asN6FwkxuCVigjPn/fHa+E57idaAF5jDPXL76YainvNQ knvXqV5Lc8UFHdFPFjikkuCl+VbwOxCjLuxva9MsifRV6hZGHsCFMOtTGSZPFYs/ S6n9p7XYX2ALHRFDhwL/jp4Flec6LCeWbW9GV0xDSdwZTO0ahqAn5MW57XUeBRpc B6YTaKNhZAlqic1A3PxRtgh4UThPkJcslewMYFhEOji5TSU6cbHpQ26moaOh9RX9 vHJ5jrIpwr8+Qo3/AfqKbPPZvm1nG3Ar -----END CERTIFICATE-----Generated at Wed Oct 22 18:40:02 2025 by rpki-client