$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: Vc2WL14ANCtIQAESBiGstDfSQrzHe3jixT2M9Nihiv8= Subject key identifier: 1A:96:1C:A1:A0:6E:1D:3A:10:9C:55:E7:5F:01:48:0A:64:2B:AA:EA Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 0128 Signing time: Wed 05 Nov 2025 04:54:20 +0000 Manifest this update: Wed 05 Nov 2025 04:54:19 +0000 Manifest next update: Wed 12 Nov 2025 04:54:19 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: QxXGrC3zPup5kxqqKSy9kuqODrJ2kC2MtKHcPesZy7M=) 2: 35274C3080AF11F0BAFC1E65C4F9AE02.roa (hash: 7HONP22Ru+ZwbPqR0qZD9dpRS6n+36hJIPSSh9b77BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Nov 5 04:54:19 2025 GMT Not After : Nov 12 04:54:19 2025 GMT Subject: CN=690ad87b-7e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3f:a7:2a:10:33:9a:a6:74:c9:3c:7d:1d:55: 03:19:f8:f4:34:14:4c:8b:43:b5:ce:98:0a:c4:d0: 0e:59:1c:7e:55:72:2b:05:76:44:df:c4:0c:ae:ff: 3f:37:2e:45:69:e8:b0:ee:88:3a:03:74:fb:ac:8d: f9:f8:6b:a4:77:29:9f:ee:f7:ee:a4:6e:c8:65:2b: 6b:46:a8:77:c0:1d:26:96:84:ab:c0:ad:bb:06:e4: ff:b5:70:63:23:fd:7e:ea:4d:9f:e0:26:88:e5:d6: b3:07:d2:a5:e1:6a:f4:24:af:dc:6c:b0:50:a1:49: e2:e9:44:07:f8:16:ef:74:e9:bf:d9:71:ac:40:48: 17:4b:81:cd:be:a9:a3:68:94:68:0d:b0:19:3e:1e: aa:6c:0e:5a:a5:25:cf:60:bf:9f:94:ca:65:59:78: 91:7c:c7:54:6d:9e:79:49:cc:d5:86:66:4e:e1:63: f1:a6:36:0e:8e:c7:0d:be:a1:ae:66:4a:f2:63:64: 54:61:0c:15:dd:77:c4:0b:91:e4:9d:a6:1a:08:dc: b0:19:98:6c:0e:e7:6a:72:2f:49:51:f8:88:0b:92: c7:26:63:b4:2c:cc:e2:6a:14:95:b5:78:a1:bc:b3: 0a:71:91:13:6b:56:ec:7f:15:5f:25:27:1d:01:b6: ae:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:96:1C:A1:A0:6E:1D:3A:10:9C:55:E7:5F:01:48:0A:64:2B:AA:EA X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:07:e9:26:5e:f6:41:46:4f:53:45:ab:6b:4f:de:99:0c:ad: 2a:23:fb:8e:b3:79:62:12:14:a2:37:72:ae:bc:b1:52:89:d8: 62:58:1e:33:21:17:f7:55:0d:f5:2b:03:2e:82:06:f4:c8:29: c1:f0:6f:1c:2a:ef:70:04:56:f4:a3:a2:91:57:da:e6:8d:fe: ee:29:39:02:d4:58:76:b0:50:f0:da:c8:57:1a:6d:61:58:74: ae:57:08:9a:62:2a:fe:ae:12:df:a2:32:b6:dd:a5:d9:0b:87: 23:03:8e:ac:e2:1d:05:2d:26:c7:4c:7c:5a:9c:40:d9:1a:2c: 0f:8e:57:e1:e6:87:4c:16:4c:92:df:05:b2:5f:12:4b:f3:17: dc:23:df:de:44:42:ab:03:61:ab:64:ed:63:79:1b:3c:fe:f0: 04:a3:f5:a8:be:c3:28:dd:78:a6:28:eb:bc:a8:c9:1c:d2:6d: 62:6e:ef:c1:eb:db:c2:62:86:f0:84:71:3d:03:8e:93:9f:d6: 7f:52:56:96:81:fe:e4:99:3c:36:e7:72:0c:b4:1c:6f:c0:14: 5d:5f:55:d3:25:b5:bf:58:26:4c:b9:63:c5:0c:f5:63:d0:d8: 98:0e:b7:c4:80:b4:df:f2:47:d3:e5:a0:e0:8a:79:4d:79:ba: d0:a7:f7:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUxMTA1MDQ1NDE5WhcNMjUxMTEyMDQ1NDE5WjAYMRYwFAYD VQQDEw02OTBhZDg3Yi03ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0z+nKhAzmqZ0yTx9HVUDGfj0NBRMi0O1zpgKxNAOWRx+VXIrBXZE38QMrv8/ Ny5Faeiw7og6A3T7rI35+Gukdymf7vfupG7IZStrRqh3wB0mloSrwK27BuT/tXBj I/1+6k2f4CaI5dazB9Kl4Wr0JK/cbLBQoUni6UQH+BbvdOm/2XGsQEgXS4HNvqmj aJRoDbAZPh6qbA5apSXPYL+flMplWXiRfMdUbZ55SczVhmZO4WPxpjYOjscNvqGu ZkryY2RUYQwV3XfEC5HknaYaCNywGZhsDudqci9JUfiIC5LHJmO0LMziahSVtXih vLMKcZETa1bsfxVfJScdAbauUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqWHKGg bh06EJxV518BSApkK6rqMB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKB+kmXvZBRk9TRatrT96ZDK0qI/uOs3liEhSiN3KuvLFSidhiWB4z IRf3VQ31KwMuggb0yCnB8G8cKu9wBFb0o6KRV9rmjf7uKTkC1Fh2sFDw2shXGm1h WHSuVwiaYir+rhLfojK23aXZC4cjA46s4h0FLSbHTHxanEDZGiwPjlfh5odMFkyS 3wWyXxJL8xfcI9/eREKrA2GrZO1jeRs8/vAEo/WovsMo3XimKOu8qMkc0m1ibu/B 69vCYobwhHE9A46Tn9Z/UlaWgf7kmTw253IMtBxvwBRdX1XTJbW/WCZMuWPFDPVj 0NiYDrfEgLTf8kfT5aDginlNebrQp/fw -----END CERTIFICATE-----Generated at Wed Nov 5 16:49:00 2025 by rpki-client