$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: MUUcERebMGL1pZkqNHTML7HK2rrIVvLv+0S35TUP2Ns= Subject key identifier: FF:AA:6F:5C:07:01:C2:84:69:22:49:67:7A:9A:56:9E:8E:43:2D:DA Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 054F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 0533 Signing time: Mon 27 Oct 2025 00:36:15 +0000 Manifest this update: Mon 27 Oct 2025 00:36:14 +0000 Manifest next update: Mon 03 Nov 2025 00:36:14 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: FSEOnC8dz/ySp91agoA1KBG0jJVyl0irB48BNA1bHPA=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Oct 27 00:36:14 2025 GMT Not After : Nov 3 00:36:14 2025 GMT Subject: CN=68febe7e-9f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:26:91:c6:1c:af:ae:ac:0b:07:08:19:15: c1:cf:98:23:03:49:18:8b:25:76:17:69:1e:e6:fa: 76:c2:12:0f:95:10:d6:58:d5:12:51:37:2d:21:8e: 9f:92:3d:13:35:7a:91:a7:5e:ca:44:0d:2d:a8:ff: 3c:6d:16:f4:2b:6b:73:e0:42:7e:72:b9:79:42:b0: f0:30:1a:6f:c8:14:7d:29:a2:4b:43:f9:a5:86:1e: ae:fe:c9:73:65:c2:3b:cc:a2:50:06:d6:bc:a2:89: 87:5b:1e:3b:93:9e:1c:77:10:fb:ed:0e:ce:cb:60: 77:cf:43:89:fb:72:7b:2f:3c:be:ee:36:ec:97:53: 71:b0:8e:a7:c7:b0:f6:46:9d:93:f5:be:7b:d8:0e: c8:a1:c5:ac:0e:89:af:d0:81:7e:6c:1e:56:b5:73: 00:96:a0:d4:4b:c2:ac:ea:93:b9:41:2e:50:cf:e1: c2:75:5d:dc:fd:1d:be:e1:21:f4:1b:f2:3c:1a:31: f9:06:c0:32:c5:89:4a:c5:af:99:e7:a7:fb:46:b1: 4f:cc:5e:ee:b4:08:84:98:49:56:1d:68:f3:d1:70: eb:03:73:a4:29:0a:fd:74:8a:55:d6:14:e0:61:ba: 3a:70:25:fc:50:7c:ed:bf:7d:62:75:6c:a8:4a:5e: e4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AA:6F:5C:07:01:C2:84:69:22:49:67:7A:9A:56:9E:8E:43:2D:DA X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fa:63:06:e4:7a:ea:e4:5a:35:4c:17:6e:dc:23:52:bd:cf: cb:da:15:0f:cb:b1:89:11:11:d1:f4:0a:2c:c9:b4:47:55:fe: 40:05:be:5b:ef:ee:7b:e5:2b:48:80:e1:d3:73:a8:1f:a1:b2: 49:7f:cd:42:15:c9:e1:e8:b5:8e:8f:f0:85:4c:7c:bf:42:c0: 78:8b:8b:cb:de:12:8f:bc:37:f9:5a:fa:46:e9:56:80:aa:69: 82:0e:6c:32:11:ac:cc:e4:2e:2b:82:83:80:65:d0:02:15:79: 22:5d:5c:64:e0:08:4d:20:f5:ad:cd:e9:d4:d6:86:ad:24:f8: d4:3e:30:75:7c:c9:9b:0a:cc:c6:a9:8b:11:91:cd:2b:71:19: 8b:c1:bd:7c:45:af:66:a9:f4:f8:62:39:cf:86:3a:97:3f:37: c7:d7:07:d5:81:ed:e9:8a:1e:39:0a:22:97:57:35:06:69:9d: f3:8c:ef:6a:cc:f2:58:ab:da:0f:1c:57:11:72:f6:54:ff:17: 2f:e7:72:4d:06:16:28:dd:24:63:04:8d:4c:2b:d2:c2:c7:dc: a0:ee:8f:23:b4:c9:f3:ba:d1:f7:4c:d9:37:20:6d:64:14:de: 39:dc:28:a8:62:00:12:41:37:4b:7a:d6:02:52:a5:66:32:d9: af:a1:67:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUxMDI3MDAzNjE0WhcNMjUxMTAzMDAzNjE0WjAYMRYwFAYD VQQDEw02OGZlYmU3ZS05ZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNkmkcYcr66sCwcIGRXBz5gjA0kYiyV2F2ke5vp2whIPlRDWWNUSUTctIY6f kj0TNXqRp17KRA0tqP88bRb0K2tz4EJ+crl5QrDwMBpvyBR9KaJLQ/mlhh6u/slz ZcI7zKJQBta8oomHWx47k54cdxD77Q7Oy2B3z0OJ+3J7Lzy+7jbsl1NxsI6nx7D2 Rp2T9b572A7IocWsDomv0IF+bB5WtXMAlqDUS8Ks6pO5QS5Qz+HCdV3c/R2+4SH0 G/I8GjH5BsAyxYlKxa+Z56f7RrFPzF7utAiEmElWHWjz0XDrA3OkKQr9dIpV1hTg Ybo6cCX8UHztv31idWyoSl7kIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+qb1wH AcKEaSJJZ3qaVp6OQy3aMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+mMG5Hrq5Fo1TBdu3CNSvc/L2hUPy7GJERHR9AosybRHVf5ABb5b 7+575StIgOHTc6gfobJJf81CFcnh6LWOj/CFTHy/QsB4i4vL3hKPvDf5WvpG6VaA qmmCDmwyEazM5C4rgoOAZdACFXkiXVxk4AhNIPWtzenU1oatJPjUPjB1fMmbCszG qYsRkc0rcRmLwb18Ra9mqfT4YjnPhjqXPzfH1wfVge3pih45CiKXVzUGaZ3zjO9q zPJYq9oPHFcRcvZU/xcv53JNBhYo3SRjBI1MK9LCx9yg7o8jtMnzutH3TNk3IG1k FN453CioYgASQTdLetYCUqVmMtmvoWeR -----END CERTIFICATE-----Generated at Mon Oct 27 21:47:56 2025 by rpki-client