$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: DZRzMNcslnDk4iL1CVKCL30UARPMQgsC3twhEOghPbs= Subject key identifier: CA:02:E3:D2:40:C4:60:05:56:7D:70:4A:22:19:9D:7A:C2:8F:4E:99 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C7E Signing time: Sun 02 Nov 2025 18:28:10 +0000 Manifest this update: Sun 02 Nov 2025 18:28:09 +0000 Manifest next update: Sun 09 Nov 2025 18:28:09 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: /f29oD7O/jR2a9FApcyDyhcDLMRcTs2kAHOlYVLIGPY=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: tpUvdm+xOrzX9mGh1yV4nPsE8GUAnESIDm4fhXo+ELs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Nov 2 18:28:09 2025 GMT Not After : Nov 9 18:28:09 2025 GMT Subject: CN=6907a2ba-e8e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d7:4d:1e:63:c0:f9:28:4d:9c:0a:99:29:b4: 14:dd:89:ce:61:be:13:20:2a:90:ba:f2:99:7e:10: 36:6d:e2:21:55:bd:d1:2f:9f:ec:5f:15:ba:23:40: 6d:9d:b0:e5:83:17:0d:8d:6b:5f:f6:92:94:43:5b: 9f:3d:23:fe:26:7d:65:14:90:ad:c8:bc:52:eb:01: 1d:a5:5a:ce:20:8a:04:27:31:37:f6:d6:2e:26:2f: f4:50:ba:d9:d1:21:78:48:88:d9:83:ac:06:8f:f3: e2:5a:f3:c8:90:11:75:d4:4f:53:e4:9a:72:bc:5d: fa:ab:47:6e:20:f2:0a:9c:af:9d:7d:c0:f1:0f:98: b0:c3:70:6e:4e:29:ec:93:54:79:e0:18:cf:6e:fe: d1:50:06:e2:d4:93:97:4b:2f:8f:85:9e:a9:17:06: f5:f8:6f:15:a7:54:ed:5e:be:19:1a:8c:f4:03:64: 85:fd:33:cf:af:64:e5:65:6a:79:4f:51:c1:d2:23: 53:ff:8b:08:7b:4c:4e:1d:5a:f0:eb:6e:b8:35:ed: f9:32:71:15:0e:d7:06:0e:54:b3:c6:79:53:e2:62: c7:57:ba:ca:68:d5:58:a7:50:57:4e:ae:e9:72:7d: 87:4a:d5:41:80:87:a9:57:4c:c0:ad:b2:ab:87:07: c6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:02:E3:D2:40:C4:60:05:56:7D:70:4A:22:19:9D:7A:C2:8F:4E:99 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:93:80:e1:20:eb:16:bb:22:08:6a:8e:6c:af:1b:55:4a:20: 43:87:8a:02:b7:0d:40:6b:82:ef:84:d8:c3:57:51:b1:d1:56: 05:42:df:83:50:18:57:5b:a4:a7:1f:c3:58:bf:89:cb:15:1a: 83:03:ee:6e:3d:44:66:13:0f:0d:3e:99:2b:d7:6a:15:d9:0d: 6d:a1:28:78:f6:ad:db:92:6b:70:f2:30:0f:1e:08:cf:a7:61: bd:9e:95:13:e8:ba:3f:7e:3c:d6:b3:7f:e7:1d:60:d8:1b:d3: 12:53:b3:dd:4e:f6:53:89:09:c8:9c:cf:e6:61:ad:56:c7:d0: 4c:9a:d4:47:15:4f:ce:be:67:77:65:28:63:0b:c8:e9:15:82: e2:06:0b:0b:81:dd:8f:8c:60:3a:d2:73:b5:5a:72:e1:ba:b3: c2:13:1f:a9:5d:11:c8:8c:a3:8b:dc:77:a6:0e:37:56:03:2a: a8:db:e2:98:1d:91:f1:df:35:8a:d2:2c:52:be:90:13:e3:c8: 4a:d8:fc:85:8e:91:61:6c:4c:d3:c6:f6:b8:ad:20:dc:ff:ad: 1b:9e:74:66:07:8e:76:10:42:e4:0a:d4:7a:1b:8f:40:62:1d: ce:27:d4:ec:c8:4d:e3:aa:e8:aa:32:5b:92:00:35:6e:ea:b8: b3:d6:7f:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMTAyMTgyODA5WhcNMjUxMTA5MTgyODA5WjAYMRYwFAYD VQQDEw02OTA3YTJiYS1lOGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyddNHmPA+ShNnAqZKbQU3YnOYb4TICqQuvKZfhA2beIhVb3RL5/sXxW6I0Bt nbDlgxcNjWtf9pKUQ1ufPSP+Jn1lFJCtyLxS6wEdpVrOIIoEJzE39tYuJi/0ULrZ 0SF4SIjZg6wGj/PiWvPIkBF11E9T5JpyvF36q0duIPIKnK+dfcDxD5iww3BuTins k1R54BjPbv7RUAbi1JOXSy+PhZ6pFwb1+G8Vp1TtXr4ZGoz0A2SF/TPPr2TlZWp5 T1HB0iNT/4sIe0xOHVrw6264Ne35MnEVDtcGDlSzxnlT4mLHV7rKaNVYp1BXTq7p cn2HStVBgIepV0zArbKrhwfGZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoC49JA xGAFVn1wSiIZnXrCj06ZMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2k4DhIOsWuyIIao5srxtVSiBDh4oCtw1Aa4LvhNjDV1Gx0VYFQt+D UBhXW6SnH8NYv4nLFRqDA+5uPURmEw8NPpkr12oV2Q1toSh49q3bkmtw8jAPHgjP p2G9npUT6Lo/fjzWs3/nHWDYG9MSU7PdTvZTiQnInM/mYa1Wx9BMmtRHFU/Ovmd3 ZShjC8jpFYLiBgsLgd2PjGA60nO1WnLhurPCEx+pXRHIjKOL3HemDjdWAyqo2+KY HZHx3zWK0ixSvpAT48hK2PyFjpFhbEzTxva4rSDc/60bnnRmB452EELkCtR6G49A Yh3OJ9TsyE3jquiqMluSADVu6riz1n8+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:15 2025 by rpki-client