$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: nRLjTbiWL/vPXLi6o2YYTBrqtmv3l8ljjZxR2aBM800= Subject key identifier: 2A:25:BA:EB:32:1D:C8:CC:63:26:FB:FA:A4:8A:5C:6F:A2:36:00:07 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C7D Signing time: Sun 02 Nov 2025 18:27:12 +0000 Manifest this update: Sun 02 Nov 2025 18:27:12 +0000 Manifest next update: Sun 09 Nov 2025 18:27:12 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: CZC7ciQ4LLXByABGtgsGO+hBiutoo3SEtZrPtiaoK/w=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: bP4mtdPcC9gJRT9cgoHrxBppsqMyFJRwGR6OCAipZzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Nov 2 18:27:12 2025 GMT Not After : Nov 9 18:27:12 2025 GMT Subject: CN=6907a280-7141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:44:56:cc:39:47:88:92:37:d7:9b:fe:51:df: 92:20:9e:4c:a4:93:c7:64:64:64:b0:9d:e3:14:8c: 1d:ff:24:1b:9a:5b:89:82:6c:38:8b:54:01:6f:0f: ed:d3:db:a9:3e:b1:25:aa:f4:3f:a9:f8:f5:82:ed: 43:78:8b:60:26:86:26:23:aa:4e:95:6c:83:04:47: eb:d7:9b:2e:a2:a4:39:e2:c5:7d:10:de:d7:b2:46: 13:e7:ee:14:bb:98:70:35:c7:5f:93:a8:6a:cb:13: 01:93:8c:47:05:1e:04:55:1a:5b:f3:4a:a0:d1:2a: 0c:52:fc:31:f6:1b:23:5b:a8:03:39:79:ac:84:01: c5:cc:70:2e:e8:b9:0a:e0:25:66:53:7e:96:86:4f: f4:e3:76:d4:89:b1:7a:60:b4:e2:34:5c:f3:35:26: 58:98:c7:ac:13:00:e3:a3:78:ea:18:e2:0d:e5:a2: 8e:74:3d:0a:33:83:56:85:f2:dc:ba:56:42:fb:d7: 39:93:56:c3:ea:9e:a2:2d:69:20:e7:93:96:48:d4: b4:eb:c6:17:1b:d5:2a:c1:97:a4:4c:ec:16:e5:32: 4e:8f:6f:49:6a:8a:cc:0d:d0:d8:93:0a:e0:89:14: 7e:de:e2:a7:da:9a:34:c9:7d:8b:b8:b2:d3:4c:de: 78:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:25:BA:EB:32:1D:C8:CC:63:26:FB:FA:A4:8A:5C:6F:A2:36:00:07 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:68:01:70:96:b0:90:bb:f4:68:17:cb:ac:86:fd:a9:73:0a: 93:3b:cf:53:74:1f:4b:b1:c6:c7:03:fb:67:bc:28:f0:9e:47: 30:f4:02:25:87:73:c2:27:81:b9:ca:c1:d8:d6:14:09:4c:a9: 79:4a:85:74:cf:27:05:56:08:15:3e:63:6c:8c:d7:be:53:7b: 60:e2:ae:68:14:dc:57:ba:49:9c:c1:11:12:8b:b8:e9:b2:69: 0b:7c:28:f0:37:f4:c0:bf:81:45:a5:d3:c8:51:c5:3f:10:79: 1e:e0:90:da:9f:93:8b:8d:ec:55:6f:c3:f0:2a:9b:2a:34:13: e0:16:00:64:93:e0:39:61:24:b6:e3:a7:96:98:c1:00:d2:f7: f2:3b:7f:61:f2:c5:b5:16:cd:9a:73:eb:5a:a5:d9:bd:fe:16: 48:54:7a:5f:27:4f:e0:7f:d0:dd:3e:3d:63:ad:e9:df:ee:e3: df:ec:1e:34:56:12:93:3a:f2:e1:e6:40:67:ad:7f:cd:4f:b9: 36:a5:c9:30:3c:50:2c:ee:a3:4a:f6:c6:0f:46:b5:42:7c:86: b0:e3:19:83:84:23:a3:a0:9d:40:b9:cf:de:4c:78:df:11:0d: 01:43:a2:9d:0c:fc:87:4c:8f:62:fc:c3:4b:53:27:ec:1c:50: 4c:92:f8:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUxMTAyMTgyNzEyWhcNMjUxMTA5MTgyNzEyWjAYMRYwFAYD VQQDEw02OTA3YTI4MC03MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnERWzDlHiJI315v+Ud+SIJ5MpJPHZGRksJ3jFIwd/yQbmluJgmw4i1QBbw/t 09upPrElqvQ/qfj1gu1DeItgJoYmI6pOlWyDBEfr15suoqQ54sV9EN7XskYT5+4U u5hwNcdfk6hqyxMBk4xHBR4EVRpb80qg0SoMUvwx9hsjW6gDOXmshAHFzHAu6LkK 4CVmU36Whk/043bUibF6YLTiNFzzNSZYmMesEwDjo3jqGOIN5aKOdD0KM4NWhfLc ulZC+9c5k1bD6p6iLWkg55OWSNS068YXG9UqwZekTOwW5TJOj29JaorMDdDYkwrg iRR+3uKn2po0yX2LuLLTTN54jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFColuusy HcjMYyb7+qSKXG+iNgAHMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAaAFwlrCQu/RoF8ushv2pcwqTO89TdB9LscbHA/tnvCjwnkcw9AIl h3PCJ4G5ysHY1hQJTKl5SoV0zycFVggVPmNsjNe+U3tg4q5oFNxXukmcwRESi7jp smkLfCjwN/TAv4FFpdPIUcU/EHke4JDan5OLjexVb8PwKpsqNBPgFgBkk+A5YSS2 46eWmMEA0vfyO39h8sW1Fs2ac+tapdm9/hZIVHpfJ0/gf9DdPj1jrenf7uPf7B40 VhKTOvLh5kBnrX/NT7k2pckwPFAs7qNK9sYPRrVCfIaw4xmDhCOjoJ1Auc/eTHjf EQ0BQ6KdDPyHTI9i/MNLUyfsHFBMkvgk -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:01 2025 by rpki-client