$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: U2R+LB8QrjXPmNTrnjKFtdhnwRjfHzNjeasG3HgRfz4= Subject key identifier: 52:C6:31:27:03:A8:F2:1A:3C:6C:74:30:11:61:3D:81:EB:45:5F:75 Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 0621 Signing time: Sun 02 Nov 2025 22:49:20 +0000 Manifest this update: Sun 02 Nov 2025 22:49:19 +0000 Manifest next update: Sun 09 Nov 2025 22:49:19 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: /Yg3CD4Em92EItrzVxiQohLp/x5EtZ14P34/PAqYHsk=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: uJ34QZzPWsLiblBgV7Ywgb0TXxMUSuEWmFUneXtmF9w=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: tWGIt1j5EvwGUw+Sd+nJTxQY0ACb+5Zewj9NqITpqME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: Nov 2 22:49:19 2025 GMT Not After : Nov 9 22:49:19 2025 GMT Subject: CN=6907dff0-341a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:1d:06:e3:02:6c:07:2c:3d:29:d6:fa:85: bf:7a:aa:35:7c:24:91:71:e2:dc:3e:2f:30:6e:e0: 41:c3:97:dd:81:cc:a6:11:a7:41:52:00:74:bf:a0: 03:5a:fc:38:07:e3:d0:02:35:ee:81:27:03:6a:50: c2:cb:06:e7:97:1b:2d:94:8c:dc:c2:67:a8:e4:f0: 26:b1:60:5b:49:d8:47:df:a2:ed:df:97:78:e1:a1: 5d:b5:bb:00:7f:66:c6:f7:1a:87:1b:c5:61:1b:15: ec:f8:cc:4b:a6:a1:f5:98:48:aa:b1:3a:6d:37:29: 65:f8:6c:00:bb:3e:d0:6f:79:5b:2a:8a:d3:ae:16: 82:fb:4b:ea:ef:5f:38:30:94:ae:09:61:8d:f7:29: a6:2b:e3:3d:8e:ae:e0:9d:9e:7f:de:76:86:31:a4: 35:5e:9e:9b:6e:1d:9f:36:05:a0:bd:2a:31:be:91: 41:21:1d:84:71:84:cf:92:8c:e5:d1:a1:cd:2c:fd: 08:b8:95:e8:27:f1:9b:b6:30:b6:e5:13:4d:2d:29: 3c:06:05:0f:be:b1:ea:b4:ef:28:c0:7e:9a:b1:0f: b9:27:60:53:9f:03:7d:bc:23:8c:64:d2:bb:88:3e: 4e:59:8f:3d:4f:36:e6:5e:ea:1b:97:46:ca:40:3c: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C6:31:27:03:A8:F2:1A:3C:6C:74:30:11:61:3D:81:EB:45:5F:75 X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:c0:1a:1d:85:ba:14:3d:ff:b6:77:61:b4:88:e1:d3:aa:e2: 05:1b:25:36:9b:24:b7:b0:79:24:57:43:a2:d2:3d:f2:33:9c: f1:24:c6:c7:d3:18:97:b9:3d:f2:f3:fd:90:2f:38:c4:d5:19: 3a:a0:c1:c7:2d:e3:13:35:1f:0b:b6:53:e9:f3:7b:6a:35:27: 3b:ce:19:a9:d6:0d:9c:a5:24:28:3c:58:aa:78:f2:62:fc:1a: be:36:de:ab:39:66:6b:04:9a:8a:19:9f:63:42:98:b8:30:d5: 63:f5:6a:83:c0:ed:d8:dd:e5:66:fc:ae:a8:79:92:50:ac:d7: 88:30:d4:d8:fb:52:76:a7:71:71:b0:23:57:86:59:8c:c9:b2: 4e:33:fd:6f:3c:a6:9e:54:d9:f8:f8:19:9a:49:41:5e:a8:0e: 77:fd:49:d5:ab:92:f7:4a:3e:df:52:33:2d:38:5f:39:3c:62: 83:13:14:1c:c2:84:f3:1f:f8:66:04:03:df:7e:b9:c2:33:7d: 1e:b7:d5:e0:d5:09:30:0b:d6:03:af:b6:f2:4e:06:8a:17:dc: 68:12:65:8c:6c:51:29:ff:ea:49:cb:ba:75:88:98:72:48:9a: cd:65:ff:54:30:49:5d:85:d1:18:2f:26:8d:db:6f:c9:51:0a: b2:6e:e6:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUxMTAyMjI0OTE5WhcNMjUxMTA5MjI0OTE5WjAYMRYwFAYD VQQDEw02OTA3ZGZmMC0zNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlkdBuMCbAcsPSnW+oW/eqo1fCSRceLcPi8wbuBBw5fdgcymEadBUgB0v6AD Wvw4B+PQAjXugScDalDCywbnlxstlIzcwmeo5PAmsWBbSdhH36Lt35d44aFdtbsA f2bG9xqHG8VhGxXs+MxLpqH1mEiqsTptNyll+GwAuz7Qb3lbKorTrhaC+0vq7184 MJSuCWGN9ymmK+M9jq7gnZ5/3naGMaQ1Xp6bbh2fNgWgvSoxvpFBIR2EcYTPkozl 0aHNLP0IuJXoJ/GbtjC25RNNLSk8BgUPvrHqtO8owH6asQ+5J2BTnwN9vCOMZNK7 iD5OWY89TzbmXuobl0bKQDzNvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLGMScD qPIaPGx0MBFhPYHrRV91MB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMwBodhboUPf+2d2G0iOHTquIFGyU2myS3sHkkV0Oi0j3yM5zxJMbH 0xiXuT3y8/2QLzjE1Rk6oMHHLeMTNR8LtlPp83tqNSc7zhmp1g2cpSQoPFiqePJi /Bq+Nt6rOWZrBJqKGZ9jQpi4MNVj9WqDwO3Y3eVm/K6oeZJQrNeIMNTY+1J2p3Fx sCNXhlmMybJOM/1vPKaeVNn4+BmaSUFeqA53/UnVq5L3Sj7fUjMtOF85PGKDExQc woTzH/hmBAPffrnCM30et9Xg1QkwC9YDr7byTgaKF9xoEmWMbFEp/+pJy7p1iJhy SJrNZf9UMEldhdEYLyaN22/JUQqybuba -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:59 2025 by rpki-client