$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: 5gfPmZ5cC9g6OZSZVL7SdT7BbQnRlf3+zbim1xM2hdc= Subject key identifier: 26:B2:05:06:09:32:75:E6:29:50:56:04:EF:95:B6:25:B2:3B:6F:19 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0BE8 Signing time: Sun 02 Nov 2025 18:50:23 +0000 Manifest this update: Sun 02 Nov 2025 18:50:23 +0000 Manifest next update: Sun 09 Nov 2025 18:50:23 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: 6R4bHpHFfWHylXOG+jPJp6ASFFm78vK1vrQjndR+8zg=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: dTqPYAZ0fYSqCYvtzmzk6vV87y7uZ4+mAQSsb1JNqeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Nov 2 18:50:23 2025 GMT Not After : Nov 9 18:50:23 2025 GMT Subject: CN=6907a7ef-9837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1d:16:b0:79:28:40:18:44:d9:0c:98:d7:2f: a1:37:40:13:bd:1a:e2:23:f1:77:b5:22:51:72:e7: f5:c6:20:54:ee:48:ba:21:21:88:ac:97:2b:ae:b2: b3:2c:7f:bd:aa:75:6c:8a:67:ce:c0:38:ec:d1:2b: b4:67:5e:96:ec:36:8b:e7:b2:20:05:22:95:cb:8d: 54:6e:04:96:15:4a:6d:3f:17:40:76:4a:50:4e:ab: 93:ae:68:6d:77:84:26:a9:2e:38:a3:0c:1b:c6:76: 86:cb:11:bb:11:e9:8e:5e:33:a7:0f:d4:96:bd:20: 2c:dd:61:90:a3:b7:52:e9:a1:77:13:28:72:5a:a1: b6:1f:ed:02:fc:96:72:e2:cc:e7:0b:81:4c:39:35: ba:a1:78:cc:e5:e7:05:c9:15:1a:42:c9:39:cc:0c: 36:28:07:3c:38:08:ea:2d:a5:1b:b0:45:dd:7c:c6: f9:a9:1e:0c:9d:e2:fd:e2:3a:4f:d2:2f:a8:e7:2e: 1c:37:02:6e:16:ae:f8:07:1d:ff:b8:71:fb:4d:85: 22:b4:4f:0a:78:11:e6:99:4e:0c:ac:e8:bc:33:7b: 7f:bf:8d:84:fb:7e:67:8d:f4:be:d3:8b:e6:2d:f1: 18:cd:4e:5e:c3:a5:9e:e6:9b:15:e3:d5:d3:a7:af: 50:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B2:05:06:09:32:75:E6:29:50:56:04:EF:95:B6:25:B2:3B:6F:19 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b1:02:a9:e2:2e:6a:a3:79:05:4c:0b:29:e6:a5:ca:5e:6f: aa:90:7a:34:4e:57:05:b9:25:6e:1e:ef:5d:ab:fa:d5:5c:5f: d9:f8:cf:54:a9:5b:05:f3:60:43:fa:fe:04:87:bc:3e:cc:0a: 02:82:be:f8:e3:c3:fa:d5:bf:cc:64:72:a8:df:36:b5:fb:1d: c2:4f:df:99:75:c3:ae:56:26:1c:cd:51:48:41:a2:84:ff:3f: 96:68:57:d7:3a:8c:d1:64:11:8d:ed:4e:b2:a0:b6:d0:c4:1c: 84:16:e8:99:a2:54:ef:ff:86:78:01:2d:97:2f:63:2d:d6:d4: 6c:1d:16:65:00:fd:ac:c1:e5:3f:36:c9:d3:ea:8a:80:f3:de: 93:c5:a3:0c:29:6b:c2:46:81:96:ec:df:1c:a7:a8:bd:2b:41: 30:f7:b2:fc:73:6d:81:02:7a:57:bc:1c:02:95:fe:52:92:07: 50:4f:4e:7d:99:ba:4d:47:25:47:9a:f1:1f:1b:fa:ff:38:77: 37:85:55:07:20:d4:aa:5c:5e:b8:7f:f4:c2:b4:16:6f:61:01: 19:9b:dd:1b:b8:03:5b:19:e5:5f:38:02:18:73:94:0e:97:3b: e3:a2:4d:2e:fe:2c:dd:2c:6d:3c:e9:fa:6a:44:38:0b:eb:4d: a3:30:bc:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjUxMTAyMTg1MDIzWhcNMjUxMTA5MTg1MDIzWjAYMRYwFAYD VQQDEw02OTA3YTdlZi05ODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx0WsHkoQBhE2QyY1y+hN0ATvRriI/F3tSJRcuf1xiBU7ki6ISGIrJcrrrKz LH+9qnVsimfOwDjs0Su0Z16W7DaL57IgBSKVy41UbgSWFUptPxdAdkpQTquTrmht d4QmqS44owwbxnaGyxG7EemOXjOnD9SWvSAs3WGQo7dS6aF3EyhyWqG2H+0C/JZy 4sznC4FMOTW6oXjM5ecFyRUaQsk5zAw2KAc8OAjqLaUbsEXdfMb5qR4MneL94jpP 0i+o5y4cNwJuFq74Bx3/uHH7TYUitE8KeBHmmU4MrOi8M3t/v42E+35njfS+04vm LfEYzU5ew6We5psV49XTp69QUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCayBQYJ MnXmKVBWBO+VtiWyO28ZMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHsQKp4i5qo3kFTAsp5qXKXm+qkHo0TlcFuSVuHu9dq/rVXF/Z+M9U qVsF82BD+v4Eh7w+zAoCgr7448P61b/MZHKo3za1+x3CT9+ZdcOuViYczVFIQaKE /z+WaFfXOozRZBGN7U6yoLbQxByEFuiZolTv/4Z4AS2XL2Mt1tRsHRZlAP2sweU/ NsnT6oqA896TxaMMKWvCRoGW7N8cp6i9K0Ew97L8c22BAnpXvBwClf5SkgdQT059 mbpNRyVHmvEfG/r/OHc3hVUHINSqXF64f/TCtBZvYQEZm90buANbGeVfOAIYc5QO lzvjok0u/izdLG086fpqRDgL602jMLxe -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:05 2025 by rpki-client