$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft File: GrHejsiRr6LU4cka9Vg0kL-7wgk.mft (raw, json) Hash identifier: 9LndWTq5F0OuOrEQPXmwnCDArrPrbhj6riCRNIgQU/M= Subject key identifier: C6:7B:08:DD:4B:AD:FA:CE:1D:BB:5C:2F:76:B1:FF:23:97:C7:F8:86 Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1E66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft Manifest number: 1E59 Signing time: Tue 04 Nov 2025 16:10:05 +0000 Manifest this update: Tue 04 Nov 2025 16:10:05 +0000 Manifest next update: Tue 11 Nov 2025 16:10:05 +0000 Files and hashes: 1: GrHejsiRr6LU4cka9Vg0kL-7wgk.crl (hash: jDOK3x+XjR1DYFd6S58fROrE1Mm7G/iXggcVOh7hA+w=) 2: 7E8D9A52895411E6B3538424C4F9AE02.roa (hash: SuDRS4jGJE9zSZ58w86iX8uePQ9m/GiWmqEd/5+TkEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7782 (0x1e66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F, serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Nov 4 16:10:05 2025 GMT Not After : Nov 11 16:10:05 2025 GMT Subject: CN=690a255d-4639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b7:7d:fc:9c:bb:d0:02:4c:fd:51:f7:80:9a: b2:ec:e6:d7:35:ac:96:cf:94:ce:85:41:ca:35:ed: a4:00:31:6e:cb:ae:27:f6:c9:81:20:ae:a2:2f:75: d8:da:90:8b:fc:7a:cc:f2:8d:e1:1a:da:3b:6d:35: 8b:06:26:ee:7d:17:77:26:bc:01:66:a6:d2:98:28: b0:c1:3c:cf:33:43:11:03:7e:bb:ae:99:b6:3c:29: 0a:12:3c:be:c1:ab:33:4a:f1:33:f1:d3:a2:b3:83: 39:26:45:fd:5f:04:fd:62:39:23:5c:4d:62:0a:ff: 64:aa:ca:65:3c:61:ca:7f:14:45:a6:6e:6f:ab:5f: ee:93:b9:99:e4:6b:9e:a6:a7:95:8a:bd:e8:5f:0b: 4c:63:79:a0:19:0a:88:78:1a:b2:0b:56:80:ff:ca: 79:5a:c3:a7:c5:73:00:75:a9:3e:2e:44:03:7f:2b: d1:ef:0f:66:ff:e6:26:29:ac:0b:8b:73:3e:21:e1: b1:63:c5:fb:92:fa:dc:e1:30:7f:29:6d:15:f5:b6: ef:86:a2:74:33:e4:ea:40:e9:a1:98:5e:19:23:07: 7c:4f:1b:eb:5d:1f:e3:36:09:85:5d:03:83:87:92: a6:a2:89:35:b8:c2:9f:ce:1f:9c:58:e4:f0:f6:e3: 1e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7B:08:DD:4B:AD:FA:CE:1D:BB:5C:2F:76:B1:FF:23:97:C7:F8:86 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ce:08:0e:d6:31:4e:4a:58:96:15:30:0d:d0:68:ba:38:83: 35:c8:ca:e9:3a:b8:cf:e9:12:42:87:e6:2d:55:ef:14:84:71: 54:d9:dd:2a:11:f3:ed:63:f5:ff:7c:20:59:10:66:c2:0c:81: 90:bd:27:90:1b:ca:34:28:ba:9a:6e:1c:a2:79:01:4b:5c:4f: 1a:48:2e:c0:1e:b1:00:a2:dc:c5:30:e8:f8:21:98:5f:d5:5b: 3e:0c:6b:e7:3b:3f:48:79:81:85:34:cb:1d:a5:98:e9:d8:3b: c3:d4:d3:5a:fc:a1:c0:8d:49:d0:aa:63:ba:d2:6e:cc:0f:13: d9:10:37:f8:34:6b:7e:45:e7:4d:64:60:68:35:5b:9f:03:13: db:73:62:83:82:5c:9c:da:1c:21:48:74:a5:a3:09:c2:e7:0f: bc:29:ec:27:d9:07:93:4b:44:4e:31:df:5a:ca:d4:2d:fd:de: a1:e6:fb:a0:37:d8:73:7d:07:48:31:c3:fc:02:11:08:e4:81: f0:97:6b:33:49:ce:5a:d1:ea:e7:96:41:a6:51:18:c2:cf:e6: 01:aa:76:61:59:e4:ce:ef:10:fa:60:ab:23:08:e6:71:18:ff: a7:1b:48:f0:4a:5f:d6:4c:cc:13:1e:22:61:ac:07:52:4c:0d: 3e:a2:12:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjUxMTA0MTYxMDA1WhcNMjUxMTExMTYxMDA1WjAYMRYwFAYD VQQDEw02OTBhMjU1ZC00NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rd9/Jy70AJM/VH3gJqy7ObXNayWz5TOhUHKNe2kADFuy64n9smBIK6iL3XY 2pCL/HrM8o3hGto7bTWLBibufRd3JrwBZqbSmCiwwTzPM0MRA367rpm2PCkKEjy+ waszSvEz8dOis4M5JkX9XwT9YjkjXE1iCv9kqsplPGHKfxRFpm5vq1/uk7mZ5Gue pqeVir3oXwtMY3mgGQqIeBqyC1aA/8p5WsOnxXMAdak+LkQDfyvR7w9m/+YmKawL i3M+IeGxY8X7kvrc4TB/KW0V9bbvhqJ0M+TqQOmhmF4ZIwd8TxvrXR/jNgmFXQOD h5Kmook1uMKfzh+cWOTw9uMetwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZ7CN1L rfrOHbtcL3ax/yOXx/iGMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REIzRi9EMzkxMDEzNDg5NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2 TFU0Y2thOVZnMGtMLTd3Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfzggO1jFOSliWFTAN0Gi6OIM1yMrpOrjP6RJCh+YtVe8UhHFU2d0q EfPtY/X/fCBZEGbCDIGQvSeQG8o0KLqabhyieQFLXE8aSC7AHrEAotzFMOj4IZhf 1Vs+DGvnOz9IeYGFNMsdpZjp2DvD1NNa/KHAjUnQqmO60m7MDxPZEDf4NGt+RedN ZGBoNVufAxPbc2KDglyc2hwhSHSlownC5w+8Kewn2QeTS0ROMd9aytQt/d6h5vug N9hzfQdIMcP8AhEI5IHwl2szSc5a0ernlkGmURjCz+YBqnZhWeTO7xD6YKsjCOZx GP+nG0jwSl/WTMwTHiJhrAdSTA0+ohJx -----END CERTIFICATE-----Generated at Wed Nov 5 16:29:36 2025 by rpki-client