$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: 5KgEcmQHMNmEuzmFrXafQAs7KYezteKA3s1ExAO++s8= Subject key identifier: 25:BB:5F:BC:7E:FE:F0:AE:21:C0:72:58:59:1F:CB:5F:03:0A:A2:AA Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 1819 Signing time: Sun 02 Nov 2025 16:32:52 +0000 Manifest this update: Sun 02 Nov 2025 16:32:51 +0000 Manifest next update: Sun 09 Nov 2025 16:32:51 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: u1MP+n3yfAazg+veGbHFvXrOk7lvtTZP5+4ZrUzpcDw=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6193 (0x1831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Nov 2 16:32:51 2025 GMT Not After : Nov 9 16:32:51 2025 GMT Subject: CN=690787b4-df77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e0:be:0c:24:1b:f1:7d:93:ce:32:90:e3:de: 30:a8:77:c9:cb:84:fe:87:b5:c4:dc:6f:b8:94:07: 96:b1:d8:4a:b4:71:1a:3a:72:b7:7a:d6:b7:59:4d: 9e:06:a8:c2:69:2b:db:7e:aa:30:3c:94:14:d8:27: b1:dd:81:16:a5:c8:1c:66:df:41:c7:17:0f:9a:d6: 9b:9e:7e:b3:db:e6:a5:ed:28:f0:89:24:4d:e9:79: 5a:a1:95:fd:43:93:49:ff:22:93:74:49:6f:15:1b: bb:83:94:ae:c4:09:ab:56:01:89:34:bf:ec:6c:29: 4f:da:73:37:84:fc:9e:5c:ee:55:08:52:47:3f:83: 79:8f:81:7d:ed:90:51:14:44:6a:1e:7c:fd:30:3f: 7f:94:d6:cc:a0:33:7c:37:57:76:87:53:e7:c6:b6: 7d:54:4c:21:ad:30:55:b6:3b:3d:c0:3c:44:d6:e2: 16:72:0b:da:69:a2:9e:15:8a:7d:f3:a9:8e:f0:4e: c1:25:78:c6:c1:84:fb:ba:cd:bf:e7:cc:60:89:0e: ff:33:ea:29:06:98:6a:05:00:1b:df:2d:fa:f5:4f: 89:a4:af:59:44:f9:ec:6a:8d:c3:9c:52:e8:26:f2: f9:fe:bc:9c:c3:9d:da:23:4e:4b:e7:ae:41:fb:0d: a7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:5F:BC:7E:FE:F0:AE:21:C0:72:58:59:1F:CB:5F:03:0A:A2:AA X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:30:af:10:96:8e:2b:47:fe:bb:79:ce:6f:31:a9:a5:0f:a0: e9:4d:ef:20:97:14:f8:f3:20:cc:4d:b6:5a:a1:99:d3:54:ae: 0a:21:9f:4c:7f:eb:f8:f1:98:f4:61:90:7f:a5:cf:df:d5:be: ba:62:67:c1:cd:d6:98:0a:e7:7b:96:fd:4b:8c:89:48:f4:ea: 2c:26:2d:b6:91:7d:bb:6c:f4:64:d1:58:df:6b:18:cd:9c:97: 09:25:35:87:07:7d:96:dd:95:a1:9b:98:ba:a1:c0:d0:8f:0a: 2d:cd:eb:0d:91:9f:93:d8:92:6d:73:60:80:b7:69:4f:b1:5a: 28:18:89:38:65:8b:c4:99:12:86:18:bb:be:d2:70:61:e0:44: 71:db:1c:95:69:d7:3a:1a:fa:2c:b4:e6:9d:94:14:99:6a:3c: e0:b7:47:a6:3c:d7:e4:be:fa:0d:e4:b0:a7:35:dd:d5:83:7e: 0d:4f:f4:83:74:57:8b:39:bc:e4:f3:34:ca:b2:23:d9:e0:9d: 43:1d:53:a7:00:8f:47:72:d7:14:a1:e7:25:92:97:ca:72:ae: 7f:c4:b7:42:c6:c6:68:b7:c1:f4:dd:f7:fe:a6:ed:fc:d2:a5: 80:ec:77:a7:31:eb:33:a6:79:5d:ab:af:2d:1d:0f:c9:d3:0c: 40:fd:29:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUxMTAyMTYzMjUxWhcNMjUxMTA5MTYzMjUxWjAYMRYwFAYD VQQDEw02OTA3ODdiNC1kZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAleC+DCQb8X2TzjKQ494wqHfJy4T+h7XE3G+4lAeWsdhKtHEaOnK3eta3WU2e BqjCaSvbfqowPJQU2Cex3YEWpcgcZt9BxxcPmtabnn6z2+al7SjwiSRN6XlaoZX9 Q5NJ/yKTdElvFRu7g5SuxAmrVgGJNL/sbClP2nM3hPyeXO5VCFJHP4N5j4F97ZBR FERqHnz9MD9/lNbMoDN8N1d2h1PnxrZ9VEwhrTBVtjs9wDxE1uIWcgvaaaKeFYp9 86mO8E7BJXjGwYT7us2/58xgiQ7/M+opBphqBQAb3y369U+JpK9ZRPnsao3DnFLo JvL5/rycw53aI05L565B+w2nUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW7X7x+ /vCuIcByWFkfy18DCqKqMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDMK8Qlo4rR/67ec5vMamlD6DpTe8glxT48yDMTbZaoZnTVK4KIZ9M f+v48Zj0YZB/pc/f1b66YmfBzdaYCud7lv1LjIlI9OosJi22kX27bPRk0VjfaxjN nJcJJTWHB32W3ZWhm5i6ocDQjwotzesNkZ+T2JJtc2CAt2lPsVooGIk4ZYvEmRKG GLu+0nBh4ERx2xyVadc6GvostOadlBSZajzgt0emPNfkvvoN5LCnNd3Vg34NT/SD dFeLObzk8zTKsiPZ4J1DHVOnAI9HctcUoeclkpfKcq5/xLdCxsZot8H03ff+pu38 0qWA7HenMeszpnldq68tHQ/J0wxA/Sls -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:05 2025 by rpki-client