$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: mjmERhJiMjr82964Dx6Ts1ESjOm6MVBGkBAFqRZ6v7U= Subject key identifier: 14:44:C3:EE:A4:FE:CE:05:DC:7E:A3:A0:20:03:1B:79:04:B0:75:67 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 093D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 092E Signing time: Thu 06 Nov 2025 18:55:01 +0000 Manifest this update: Thu 06 Nov 2025 18:55:01 +0000 Manifest next update: Thu 13 Nov 2025 18:55:01 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: I2Nn7U7N/4BvS3pERu2T5xKOjzqy11C8SZNJHk+LDs4=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 18:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2365 (0x93d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Nov 6 18:55:01 2025 GMT Not After : Nov 13 18:55:01 2025 GMT Subject: CN=690cef05-161c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:5c:1c:2b:dd:05:b8:45:4d:c7:87:c9:68: a7:d3:f4:ce:02:a2:3e:b7:81:e5:4c:48:99:1b:c2: 93:a3:25:e0:22:71:7f:3c:fb:30:01:07:81:09:4f: f8:48:c2:53:a9:98:f1:7d:07:f1:78:d5:ec:ec:d3: 17:0c:44:40:2b:77:5d:df:8f:99:58:27:9b:6c:4b: e3:a9:aa:01:23:2b:eb:d3:1a:7c:67:c4:5a:ef:14: b9:6f:67:9e:33:3b:9a:a1:70:5a:57:c4:b4:39:db: 7d:54:00:61:b9:c4:3d:60:cf:c8:ef:20:46:e3:3e: 74:4d:cd:35:bb:61:5a:9b:8c:5c:38:8b:ed:ee:b3: 74:aa:8d:e0:34:3c:11:87:f2:4b:f8:10:e9:4d:c7: 08:2e:d6:2a:09:4a:a8:cb:7b:f9:5f:67:57:e8:9b: 8c:6e:20:4e:e1:6b:24:e3:da:7e:34:e8:81:84:1f: e3:62:1d:67:21:28:cb:23:31:67:08:30:e4:57:0f: f2:7b:eb:5d:b8:bd:01:ce:85:13:60:54:ab:46:93: 55:5c:1d:44:1f:10:06:c8:99:5d:e1:92:18:f4:fb: f7:ac:3d:7c:91:27:17:2d:c6:16:9b:11:ee:61:fa: 2e:8f:82:04:39:5e:58:d4:e7:a8:2f:cd:ce:a9:e0: 37:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:44:C3:EE:A4:FE:CE:05:DC:7E:A3:A0:20:03:1B:79:04:B0:75:67 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:8b:4d:81:b8:15:a3:ca:8b:49:bb:a7:5c:38:4b:02:65:1c: 43:f9:df:9d:c3:a0:52:14:d6:19:0b:8e:c4:19:43:1a:14:73: ef:30:38:d9:20:f1:bb:9e:4a:f5:a7:cb:45:77:6e:a3:1a:ff: c9:4c:c4:c4:56:b4:75:f0:50:19:cb:8d:02:58:1f:85:1b:01: b0:01:d4:c3:99:ac:75:56:1f:d9:95:f2:d9:d4:09:16:2e:84: f1:f4:32:23:99:9b:49:17:2b:bf:f5:00:ae:e4:e9:b2:56:e1: 97:49:ae:2c:2b:e8:f8:2f:5d:94:7a:75:6c:ec:7f:04:51:b5: 37:81:75:fb:18:ad:48:31:9d:6d:fb:1f:e9:ca:23:be:7d:a2: a0:e2:33:8b:7d:18:4b:98:2f:c7:84:b7:10:dc:fc:b0:e2:c9: d5:7d:a8:02:58:df:f5:e6:c4:19:75:10:fe:4b:2f:e4:51:d8: fc:dc:8d:24:84:24:36:63:3f:7c:90:5a:d6:d4:1e:3d:fd:b2: 88:f8:4b:b4:cc:07:cd:6e:c9:3f:d0:0b:6a:e3:26:78:ae:17: eb:3b:ed:19:b7:eb:f4:fa:e4:ad:f7:fe:fd:24:d3:23:a6:3f: 1c:ed:2b:01:8b:5c:ee:bc:68:45:fe:37:b8:97:cd:cb:d0:a0: 6d:0b:8c:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUxMTA2MTg1NTAxWhcNMjUxMTEzMTg1NTAxWjAYMRYwFAYD VQQDEw02OTBjZWYwNS0xNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8lcHCvdBbhFTceHyWin0/TOAqI+t4HlTEiZG8KToyXgInF/PPswAQeBCU/4 SMJTqZjxfQfxeNXs7NMXDERAK3dd34+ZWCebbEvjqaoBIyvr0xp8Z8Ra7xS5b2ee MzuaoXBaV8S0Odt9VABhucQ9YM/I7yBG4z50Tc01u2Fam4xcOIvt7rN0qo3gNDwR h/JL+BDpTccILtYqCUqoy3v5X2dX6JuMbiBO4Wsk49p+NOiBhB/jYh1nISjLIzFn CDDkVw/ye+tduL0BzoUTYFSrRpNVXB1EHxAGyJld4ZIY9Pv3rD18kScXLcYWmxHu Yfouj4IEOV5Y1OeoL83OqeA30QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBREw+6k /s4F3H6joCADG3kEsHVnMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0i02BuBWjyotJu6dcOEsCZRxD+d+dw6BSFNYZC47EGUMaFHPvMDjZ IPG7nkr1p8tFd26jGv/JTMTEVrR18FAZy40CWB+FGwGwAdTDmax1Vh/ZlfLZ1AkW LoTx9DIjmZtJFyu/9QCu5OmyVuGXSa4sK+j4L12UenVs7H8EUbU3gXX7GK1IMZ1t +x/pyiO+faKg4jOLfRhLmC/HhLcQ3Pyw4snVfagCWN/15sQZdRD+Sy/kUdj83I0k hCQ2Yz98kFrW1B49/bKI+Eu0zAfNbsk/0Atq4yZ4rhfrO+0Zt+v0+uSt9/79JNMj pj8c7SsBi1zuvGhF/je4l83L0KBtC4xC -----END CERTIFICATE-----Generated at Fri Nov 7 17:08:12 2025 by rpki-client