$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: ZmMbzKBOpN13WmMmjgs0IHgLBB4xPj92q9N6auudv/0= Subject key identifier: B4:09:36:45:03:40:25:4A:B3:97:DD:73:8F:95:C6:2E:D6:F5:2F:40 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 34EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 34E6 Signing time: Wed 22 Oct 2025 14:27:33 +0000 Manifest this update: Wed 22 Oct 2025 14:27:32 +0000 Manifest next update: Wed 29 Oct 2025 14:27:32 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: 5yfs5uyFmkXxpWzP0+e9Ma92DytHxDLRA1OcLrX7ItE=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: lxqMNiae0D1WCp5yu5bfMqSlo/P+rEmoNXBcqzUVjb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13551 (0x34ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Oct 22 14:27:32 2025 GMT Not After : Oct 29 14:27:32 2025 GMT Subject: CN=68f8e9d5-2f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:0f:ce:f7:af:9b:7e:8b:d5:a5:5a:ab:21: 1b:dd:58:14:85:7a:bc:9c:cc:a8:c3:aa:6b:15:db: 1f:f0:5d:24:5f:cb:fb:5a:35:12:c6:91:b7:a0:fb: 32:97:a4:79:7d:be:a2:8f:7e:ed:e2:45:16:07:a4: eb:44:fb:8e:63:94:86:7d:14:e1:ef:0f:b3:9a:55: c2:00:aa:d8:e2:35:e8:82:14:4a:c8:83:7d:6b:28: f6:62:c7:37:77:5b:a7:f1:79:d2:22:5c:f2:89:83: 7b:99:af:89:26:87:bd:44:fd:ed:3e:a1:86:4a:cf: d3:88:0f:1d:ce:d1:86:56:e2:5a:70:9a:73:fb:27: c4:07:53:0b:b9:7b:44:64:fe:08:06:71:7b:c4:8b: a9:0b:b8:b3:32:ee:ab:49:a6:19:07:d7:2c:91:da: 78:dc:1e:be:f7:fa:60:34:68:62:97:72:2f:32:9a: 71:03:2b:98:02:a8:38:ab:84:7c:47:b9:fd:2e:2c: e7:59:c0:c3:78:2d:8b:9f:74:9d:3b:62:9d:8d:d9: ed:6c:ad:d4:4d:47:2d:31:1d:ef:7d:d3:ef:51:73: 22:71:9e:b7:bc:0a:1f:dd:37:f7:1e:f0:bb:7f:ce: 80:a0:51:04:06:64:cd:16:c3:f2:9a:dd:dd:2f:b1: fd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:09:36:45:03:40:25:4A:B3:97:DD:73:8F:95:C6:2E:D6:F5:2F:40 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:95:a4:79:8b:c8:fa:4b:a8:a5:fd:d8:c1:ba:4c:45:8c:bb: 52:a8:e7:ec:53:77:4f:d5:cd:62:47:7d:b8:86:f0:e2:68:d9: 52:36:d8:b8:db:ee:34:27:f2:30:1b:38:7f:5b:41:3a:b1:82: c5:12:36:2a:35:3c:17:8c:02:0e:14:84:8a:60:2d:a9:70:ef: 18:03:b5:f9:13:5c:2d:ac:0f:76:11:68:0c:eb:fe:9e:41:c3: 6c:37:ea:91:b4:dd:7b:5d:18:8e:62:8f:2c:68:1a:1f:94:f4: 71:e0:6d:84:1c:4f:c0:29:b0:55:2a:6d:bc:01:4b:b0:a4:3c: 66:ce:a2:0d:30:c6:0e:f9:a5:d4:e1:8d:5a:61:9d:2b:87:a4: 72:1c:a7:34:f1:e5:5c:0a:29:ea:cd:72:52:ca:2a:e3:85:11: e8:a2:3b:c4:33:a8:11:90:b0:2f:3f:45:91:52:71:a2:6e:50: 58:82:d3:08:7f:90:e4:23:bb:90:2b:10:b9:56:c9:ad:01:e5: 3b:23:f5:86:b4:f2:5e:65:13:bd:b8:91:80:2a:b5:ec:62:6b: 40:cf:fe:04:d1:3b:84:20:19:06:e3:9f:85:9e:96:ed:5a:60: 3f:e8:3e:45:8f:68:62:9c:b2:73:95:5d:89:7a:c4:00:92:df: 44:f8:cd:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUxMDIyMTQyNzMyWhcNMjUxMDI5MTQyNzMyWjAYMRYwFAYD VQQDEw02OGY4ZTlkNS0yZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv50Pzvevm36L1aVaqyEb3VgUhXq8nMyow6prFdsf8F0kX8v7WjUSxpG3oPsy l6R5fb6ij37t4kUWB6TrRPuOY5SGfRTh7w+zmlXCAKrY4jXoghRKyIN9ayj2Ysc3 d1un8XnSIlzyiYN7ma+JJoe9RP3tPqGGSs/TiA8dztGGVuJacJpz+yfEB1MLuXtE ZP4IBnF7xIupC7izMu6rSaYZB9cskdp43B6+9/pgNGhil3IvMppxAyuYAqg4q4R8 R7n9LiznWcDDeC2Ln3SdO2KdjdntbK3UTUctMR3vfdPvUXMicZ63vAof3Tf3HvC7 f86AoFEEBmTNFsPymt3dL7H9KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQJNkUD QCVKs5fdc4+Vxi7W9S9AMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmlaR5i8j6S6il/djBukxFjLtSqOfsU3dP1c1iR324hvDiaNlSNti4 2+40J/IwGzh/W0E6sYLFEjYqNTwXjAIOFISKYC2pcO8YA7X5E1wtrA92EWgM6/6e QcNsN+qRtN17XRiOYo8saBoflPRx4G2EHE/AKbBVKm28AUuwpDxmzqINMMYO+aXU 4Y1aYZ0rh6RyHKc08eVcCinqzXJSyirjhRHoojvEM6gRkLAvP0WRUnGiblBYgtMI f5DkI7uQKxC5VsmtAeU7I/WGtPJeZRO9uJGAKrXsYmtAz/4E0TuEIBkG45+Fnpbt WmA/6D5Fj2hinLJzlV2JesQAkt9E+M2U -----END CERTIFICATE-----Generated at Wed Oct 22 19:06:23 2025 by rpki-client