$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: bWRnRaftAKWFMG/dOnQXRGpxq4r54MORHMexOp322cU= Subject key identifier: AD:61:47:6C:1D:45:B7:92:23:11:C6:53:EC:5D:D6:9F:04:2D:EE:D9 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 0386 Signing time: Mon 03 Nov 2025 00:45:28 +0000 Manifest this update: Mon 03 Nov 2025 00:45:28 +0000 Manifest next update: Mon 10 Nov 2025 00:45:28 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: 1ZpXpqsLhw6CDm+BhkU9jlo1pwZVvecTLw6ao1zYYOQ=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Nov 3 00:45:28 2025 GMT Not After : Nov 10 00:45:28 2025 GMT Subject: CN=6907fb28-e8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fc:7e:1c:64:81:dc:4d:5c:89:70:28:ec:9b: 93:6a:18:79:4d:e3:06:27:bd:f2:b7:ad:aa:58:bc: 45:74:72:8d:c2:98:0d:f5:8c:b9:6f:c1:4f:62:e6: 92:03:63:d1:29:b7:0c:be:2e:12:b1:20:fb:2e:0c: 7a:17:25:27:f9:3e:79:ff:a8:7f:a3:b2:d0:6f:0c: dd:65:0d:d7:25:37:5e:b8:54:a4:c3:ae:ba:62:bd: d0:02:40:24:09:51:b5:ba:ba:65:2b:00:ad:fd:3a: d8:9f:29:b2:e0:e4:11:5f:c8:74:d1:55:bd:46:fb: 7a:5f:14:53:63:cd:63:12:32:a2:50:70:3f:d6:71: 58:01:b8:7b:31:d2:d5:13:8d:bd:51:79:e5:dd:f2: 04:8f:9b:10:84:9b:ff:0f:05:59:a5:b4:13:6b:a6: 3d:6f:7f:67:d2:b5:88:3d:3f:2d:be:ff:13:ce:ea: 5d:85:2b:01:27:a9:76:3c:ab:58:bb:0f:78:06:4b: 0f:f2:3f:ac:77:9a:94:98:ba:79:1c:0d:6a:bb:e4: a7:ba:16:bc:6d:db:33:49:8e:30:b8:53:ae:0e:fe: cf:60:78:fc:4e:01:c3:65:06:bb:b4:28:10:05:33: 03:39:b3:be:af:23:c2:1c:7b:39:83:10:3b:ed:37: b1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:61:47:6C:1D:45:B7:92:23:11:C6:53:EC:5D:D6:9F:04:2D:EE:D9 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:11:4b:6f:a2:05:24:dc:c9:9f:9f:33:fa:33:d4:85:85:e5: cb:0d:66:d0:a4:f0:b6:aa:fd:cc:ba:48:ca:91:ad:71:55:e6: dc:ed:1a:5b:57:b3:e3:37:86:00:82:0a:37:10:8d:20:66:45: 8a:ed:f6:53:5e:cf:2d:9b:13:cf:98:d6:15:7a:c0:44:fb:e9: fc:17:33:ba:d3:f9:45:d5:43:0d:a5:da:89:eb:76:95:e0:4b: c8:ab:51:78:65:db:af:42:fd:11:d9:ac:b9:79:1b:93:01:9a: 53:73:83:09:f7:f2:d2:38:bc:46:14:07:dd:e7:18:98:b5:c8: 2f:3e:63:e1:68:75:82:34:88:fd:af:83:32:d6:9b:b7:60:58: ee:e1:83:42:2d:c0:b6:6e:10:a0:11:5d:75:0b:1d:5f:96:ae: 9e:5d:e3:90:ec:00:15:f5:85:5f:64:9f:e3:b9:05:50:7d:6c: 18:08:66:fe:50:71:cc:a9:d1:7c:a6:fa:fd:59:c2:7c:42:26: c7:5d:db:b8:c3:c2:8b:01:54:83:60:04:52:72:3e:48:bd:0f: 40:e7:12:d6:06:45:56:e3:fc:1c:19:a7:26:05:34:6a:57:42: 23:ca:bd:8f:9f:bf:ca:42:6e:63:ce:8f:97:27:0d:eb:8a:b7: f0:58:40:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUxMTAzMDA0NTI4WhcNMjUxMTEwMDA0NTI4WjAYMRYwFAYD VQQDEw02OTA3ZmIyOC1lOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/x+HGSB3E1ciXAo7JuTahh5TeMGJ73yt62qWLxFdHKNwpgN9Yy5b8FPYuaS A2PRKbcMvi4SsSD7Lgx6FyUn+T55/6h/o7LQbwzdZQ3XJTdeuFSkw666Yr3QAkAk CVG1urplKwCt/TrYnymy4OQRX8h00VW9Rvt6XxRTY81jEjKiUHA/1nFYAbh7MdLV E429UXnl3fIEj5sQhJv/DwVZpbQTa6Y9b39n0rWIPT8tvv8TzupdhSsBJ6l2PKtY uw94BksP8j+sd5qUmLp5HA1qu+Snuha8bdszSY4wuFOuDv7PYHj8TgHDZQa7tCgQ BTMDObO+ryPCHHs5gxA77TexFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1hR2wd RbeSIxHGU+xd1p8ELe7ZMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZEUtvogUk3MmfnzP6M9SFheXLDWbQpPC2qv3MukjKka1xVebc7Rpb V7PjN4YAggo3EI0gZkWK7fZTXs8tmxPPmNYVesBE++n8FzO60/lF1UMNpdqJ63aV 4EvIq1F4ZduvQv0R2ay5eRuTAZpTc4MJ9/LSOLxGFAfd5xiYtcgvPmPhaHWCNIj9 r4My1pu3YFju4YNCLcC2bhCgEV11Cx1flq6eXeOQ7AAV9YVfZJ/juQVQfWwYCGb+ UHHMqdF8pvr9WcJ8QibHXdu4w8KLAVSDYARScj5IvQ9A5xLWBkVW4/wcGacmBTRq V0Ijyr2Pn7/KQm5jzo+XJw3rirfwWECc -----END CERTIFICATE-----Generated at Tue Nov 4 18:34:47 2025 by rpki-client