$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft File: GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft (raw, json) Hash identifier: nz/Pwyr7mOXF3qL+ONYkx9jx3HxknD4B4cSGbvGIRnk= Subject key identifier: 6A:77:02:21:C3:FD:16:C7:E8:D4:4A:51:54:AF:99:65:71:8F:8B:97 Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft Manifest number: 07C4 Signing time: Sat 06 Sep 2025 21:26:53 +0000 Manifest this update: Sat 06 Sep 2025 21:26:53 +0000 Manifest next update: Sat 13 Sep 2025 21:26:53 +0000 Files and hashes: 1: GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl (hash: bJDteNwOa0uN1THIAqDNLoQKORtslil0MstfpqwPJcs=) 2: 1994E0780B5B11EB80C8B15FC4F9AE02.roa (hash: BcBBZ1IV+bokAtTZ3iUNiKgQOrGhBIBLoYEFwdHdcHQ=) 3: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (hash: hLP1YV65RYOfP9UTV36s4plQryfXd3KAYO5xxCl+fH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F, serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Sep 6 21:26:53 2025 GMT Not After : Sep 13 21:26:53 2025 GMT Subject: CN=68bca71d-4832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:00:b6:e9:21:b1:d1:22:e2:c8:8e:96:b2:6d: f4:4d:bc:7e:7a:68:ef:b6:ba:5a:e9:af:6b:d6:02: 79:da:ac:90:00:30:38:5f:67:b0:11:2e:1f:97:eb: ae:97:e2:af:8d:16:6e:35:6f:5a:c7:53:ba:76:0a: 19:9b:2f:61:9f:22:71:eb:ac:68:6f:63:15:59:14: 00:30:aa:35:73:8d:2f:6b:44:83:aa:15:92:af:05: fe:79:0a:72:65:7d:1a:10:28:70:ef:1b:16:d8:27: 1c:d5:9b:8c:0c:d6:b7:2c:44:13:30:d9:c3:86:82: 8a:9d:f3:f9:86:cd:57:78:fd:9e:db:d2:37:11:15: fb:f3:4e:61:cf:49:91:8f:ba:9e:3f:1c:f2:14:5d: a3:dd:34:d1:78:03:37:28:d4:31:9e:fa:f8:52:0b: ed:a9:17:0d:ef:c6:65:ed:d4:08:43:4f:7b:0a:53: 11:4e:10:0a:10:e5:dc:ac:4d:7b:dd:1e:42:bc:53: c5:2a:af:90:96:84:0e:c1:c4:a5:94:ba:d5:c3:76: d2:5b:21:f8:26:07:b8:43:bb:a0:8b:2c:92:9f:74: ca:ec:a2:db:ae:63:3a:72:4d:92:f9:c4:77:aa:41: 27:37:d8:db:68:4a:7e:21:b2:76:86:32:c2:d4:6a: 4d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:77:02:21:C3:FD:16:C7:E8:D4:4A:51:54:AF:99:65:71:8F:8B:97 X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:2f:58:fa:94:08:59:bb:6c:49:63:d1:26:40:ad:5d:31:84: 2d:47:62:49:1c:82:a0:d5:0a:22:78:e7:a3:93:7f:64:7e:b4: 51:5c:b7:f2:47:59:7a:b6:be:95:4d:d3:14:6e:4f:91:37:26: 57:a8:37:73:dc:e3:8d:cc:67:63:01:c2:85:85:70:56:4b:72: ee:95:f9:03:8a:93:08:d6:e3:ae:33:2c:39:fc:ad:2f:af:77: a1:5a:9a:3f:af:4c:18:c1:fb:ea:0b:d6:38:12:cf:bf:ac:96: b2:e8:dd:06:53:04:e7:95:9f:52:f8:a4:8b:c3:cf:e3:a3:e4: 45:68:68:2c:32:70:a6:e9:43:50:1d:8a:ef:fc:5e:51:a7:f8: 1b:d3:ad:e8:f3:e2:76:b3:c8:5e:4f:02:4b:49:15:99:15:fb: 11:fc:2a:62:ac:94:6d:de:ea:5d:ee:b3:d9:f0:24:c3:8c:b4: ff:42:0f:5b:ad:21:bc:c7:b4:e2:8a:d9:f9:dd:7d:1d:a8:35: c0:f8:ac:d8:33:cb:99:5e:8b:fa:95:a3:0a:23:1c:95:83:54: 71:8a:61:17:ae:53:b2:b6:91:3b:62:c2:b2:29:fb:19:cc:e1: 14:a3:dc:fa:7e:97:5a:74:f2:b1:d0:ac:ba:fc:52:7b:df:e2: 22:af:e7:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjUwOTA2MjEyNjUzWhcNMjUwOTEzMjEyNjUzWjAYMRYwFAYD VQQDEw02OGJjYTcxZC00ODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwC26SGx0SLiyI6Wsm30Tbx+emjvtrpa6a9r1gJ52qyQADA4X2ewES4fl+uu l+KvjRZuNW9ax1O6dgoZmy9hnyJx66xob2MVWRQAMKo1c40va0SDqhWSrwX+eQpy ZX0aEChw7xsW2Ccc1ZuMDNa3LEQTMNnDhoKKnfP5hs1XeP2e29I3ERX7805hz0mR j7qePxzyFF2j3TTReAM3KNQxnvr4UgvtqRcN78Zl7dQIQ097ClMRThAKEOXcrE17 3R5CvFPFKq+QloQOwcSllLrVw3bSWyH4Jge4Q7ugiyySn3TK7KLbrmM6ck2S+cR3 qkEnN9jbaEp+IbJ2hjLC1GpNzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp3AiHD /RbH6NRKUVSvmWVxj4uXMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUE3Ri9FOTY0QUY0QzBCNTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VC dnNqSW4wVUJsNHdKSURhN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANL1j6lAhZu2xJY9EmQK1dMYQtR2JJHIKg1QoieOejk39kfrRRXLfy R1l6tr6VTdMUbk+RNyZXqDdz3OONzGdjAcKFhXBWS3LulfkDipMI1uOuMyw5/K0v r3ehWpo/r0wYwfvqC9Y4Es+/rJay6N0GUwTnlZ9S+KSLw8/jo+RFaGgsMnCm6UNQ HYrv/F5Rp/gb063o8+J2s8heTwJLSRWZFfsR/CpirJRt3upd7rPZ8CTDjLT/Qg9b rSG8x7Tiitn53X0dqDXA+KzYM8uZXov6laMKIxyVg1RximEXrlOytpE7YsKyKfsZ zOEUo9z6fpdadPKx0Ky6/FJ73+Iir+e5 -----END CERTIFICATE-----Generated at Sun Sep 7 14:28:09 2025 by rpki-client