$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft File: GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft (raw, json) Hash identifier: 2WBTgwzH9ywuB4GcU7oTqLwSJ1qQ4wZSPcT8vo7hri8= Subject key identifier: 1C:36:0B:1F:9C:73:23:F9:90:29:EF:2E:94:39:B2:EA:A2:A8:A4:BA Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 07ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft Manifest number: 07E1 Signing time: Tue 04 Nov 2025 21:13:04 +0000 Manifest this update: Tue 04 Nov 2025 21:13:03 +0000 Manifest next update: Tue 11 Nov 2025 21:13:03 +0000 Files and hashes: 1: GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl (hash: qpyE1a090Sm5lQeFAceHK53brv81EvGszbARLM/Q22I=) 2: 1994E0780B5B11EB80C8B15FC4F9AE02.roa (hash: BcBBZ1IV+bokAtTZ3iUNiKgQOrGhBIBLoYEFwdHdcHQ=) 3: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (hash: hLP1YV65RYOfP9UTV36s4plQryfXd3KAYO5xxCl+fH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F, serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Nov 4 21:13:03 2025 GMT Not After : Nov 11 21:13:03 2025 GMT Subject: CN=690a6c5f-caba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:65:a4:95:3c:cf:ff:33:9e:db:42:5c:a0: c1:37:d8:9f:f8:c8:d6:0b:56:9c:0d:d7:9d:24:32: d8:a1:19:26:1f:9f:b2:7a:6c:c6:89:fa:c3:f1:e3: ef:29:e6:53:b7:70:42:47:d9:7e:32:2b:f8:28:4a: 62:06:d5:e9:f2:77:4f:a0:10:9d:d2:a6:c4:f9:6e: 36:89:2c:92:e1:75:de:a9:34:6c:87:b8:3d:f5:cb: 8a:a4:e0:52:f8:96:1c:ee:5d:dc:2e:19:54:51:55: 1e:17:55:10:0f:62:92:f1:f1:8d:0a:1b:f5:f6:e8: 29:fd:63:05:1e:20:4c:e6:10:cf:c8:64:ab:21:4a: 62:ef:ec:f8:a2:9a:ff:0d:ba:ad:0f:93:34:5c:8c: 63:e4:e8:3c:19:6c:3b:a7:fa:1c:3c:4f:1c:5f:6f: fe:3f:c5:9d:da:80:e3:b1:3b:06:29:71:94:44:26: 0c:90:f9:a1:c3:48:0d:35:20:16:8d:7f:34:75:55: be:08:a9:17:a8:1c:a2:3f:5f:89:fc:22:f1:ea:9d: 38:a8:17:81:d0:d2:98:77:b7:29:a6:6d:fa:6e:20: 3e:35:8e:a3:d8:38:9e:c3:63:08:70:1c:62:65:50: f2:31:f3:53:c2:4c:df:fb:93:df:30:6e:2a:64:ef: f5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:36:0B:1F:9C:73:23:F9:90:29:EF:2E:94:39:B2:EA:A2:A8:A4:BA X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b1:be:da:19:fc:7b:ac:a5:d5:f9:aa:db:2a:4e:a9:51:eb: 27:96:36:f2:25:3c:5f:e6:5e:fa:99:9a:4c:69:2c:32:f5:93: 9e:ee:11:9c:75:8a:38:2e:2b:77:91:3f:43:3d:cd:02:98:0e: 0b:1d:fb:92:11:4d:94:bd:87:57:5b:d8:01:8b:e8:33:ca:f6: 03:6c:fd:97:59:73:24:e4:64:e0:da:18:1e:9f:b2:c4:b4:ac: c5:39:2d:d7:72:e4:f7:d3:29:5a:b2:42:b1:7f:45:2a:f2:8c: f5:b3:41:e3:bf:ed:46:e1:2b:9a:4a:82:c5:26:d2:f5:59:03: 94:18:55:25:e7:67:a7:a2:be:fd:19:45:25:72:ec:9e:9d:ff: ad:ba:ea:75:9c:6a:f5:20:d6:40:85:82:be:7f:40:7a:09:32: 02:42:47:6d:bd:6b:8d:51:ee:00:4d:35:3b:5a:e0:10:09:cb: bf:bf:b1:37:58:7c:db:ac:75:d8:a6:c6:f0:53:45:0d:12:7f: 84:e2:ec:41:ac:23:f9:d6:bd:d6:3a:a3:c4:00:cf:19:2e:24: d0:e4:ee:1b:03:65:5d:56:4b:7b:74:30:a7:2c:3f:1e:08:d4: ef:c8:8d:74:bc:58:69:d6:aa:bf:1f:f2:81:06:a3:95:91:44: aa:b0:5d:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjUxMTA0MjExMzAzWhcNMjUxMTExMjExMzAzWjAYMRYwFAYD VQQDEw02OTBhNmM1Zi1jYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVRlpJU8z/8znttCXKDBN9if+MjWC1acDdedJDLYoRkmH5+yemzGifrD8ePv KeZTt3BCR9l+Miv4KEpiBtXp8ndPoBCd0qbE+W42iSyS4XXeqTRsh7g99cuKpOBS +JYc7l3cLhlUUVUeF1UQD2KS8fGNChv19ugp/WMFHiBM5hDPyGSrIUpi7+z4opr/ DbqtD5M0XIxj5Og8GWw7p/ocPE8cX2/+P8Wd2oDjsTsGKXGURCYMkPmhw0gNNSAW jX80dVW+CKkXqByiP1+J/CLx6p04qBeB0NKYd7cppm36biA+NY6j2Diew2MIcBxi ZVDyMfNTwkzf+5PfMG4qZO/1AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBw2Cx+c cyP5kCnvLpQ5suqiqKS6MB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUE3Ri9FOTY0QUY0QzBCNTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VC dnNqSW4wVUJsNHdKSURhN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANsb7aGfx7rKXV+arbKk6pUesnljbyJTxf5l76mZpMaSwy9ZOe7hGc dYo4Lit3kT9DPc0CmA4LHfuSEU2UvYdXW9gBi+gzyvYDbP2XWXMk5GTg2hgen7LE tKzFOS3XcuT30ylaskKxf0Uq8oz1s0Hjv+1G4SuaSoLFJtL1WQOUGFUl52enor79 GUUlcuyenf+tuup1nGr1INZAhYK+f0B6CTICQkdtvWuNUe4ATTU7WuAQCcu/v7E3 WHzbrHXYpsbwU0UNEn+E4uxBrCP51r3WOqPEAM8ZLiTQ5O4bA2VdVkt7dDCnLD8e CNTvyI10vFhp1qq/H/KBBqOVkUSqsF1X -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:15 2025 by rpki-client