$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: +EeeXSqJm1NW9DhJN+cpfNFMn0Ada3QPAniulCnPjAU= Subject key identifier: 88:9B:CC:D4:3B:4F:05:0D:C8:76:0A:FD:91:A4:BF:06:62:FB:4D:4F Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: E3 Signing time: Mon 27 Oct 2025 07:39:50 +0000 Manifest this update: Mon 27 Oct 2025 07:39:50 +0000 Manifest next update: Mon 03 Nov 2025 07:39:50 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: r77XOxy/Zp68VWZOV1JzYkEe3G+AfLJw7In6L1kk5H0=) 2: 13435546ABF211F0BA77FA0DC4F9AE02.roa (hash: q/F51LSqhdUzQ5wuFfu2jC3x+BTiobOoytHd+JzEAJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Oct 27 07:39:50 2025 GMT Not After : Nov 3 07:39:50 2025 GMT Subject: CN=68ff21c6-eafb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6a:5a:17:2d:4d:fa:f3:ae:8a:46:3a:97:a7: ca:3c:3c:e7:c1:a1:9a:b3:2b:6f:c5:a9:f5:d4:aa: 9a:74:e1:f9:9a:17:07:a9:b6:46:53:e7:1b:e6:e9: 7e:df:16:7e:95:0b:45:a4:59:58:1c:a6:14:81:37: dc:9b:aa:11:e1:d6:a8:70:2a:55:b8:7d:43:2f:7b: a5:e2:f4:cf:f7:df:ee:65:86:78:bd:ba:a0:2b:10: c9:4d:df:20:c6:1c:81:15:23:fd:6e:64:30:19:00: 99:e8:ad:73:cc:98:2f:5c:59:e3:57:20:23:4a:bd: 9a:34:5e:92:5d:57:43:6e:12:52:08:ef:0c:fb:fd: 32:62:01:bb:fd:52:0b:da:c6:c9:30:0f:fd:5b:41: 15:ec:f3:3d:dc:63:b6:df:c4:b6:bd:f6:ef:66:b2: eb:ff:77:97:f1:3d:5a:ba:59:d1:ff:07:a7:29:2a: 8b:fd:3f:9d:03:7e:f7:8e:31:30:2e:a5:0b:62:18: e9:fd:ab:0b:96:16:88:1e:c6:2c:3d:b3:39:98:3f: 7c:b3:f3:d6:a0:44:eb:b3:b3:61:a4:e2:d6:7b:46: 43:e4:1d:71:77:25:d7:51:5c:6c:a2:54:46:77:93: d5:26:25:64:0b:11:c8:6b:28:7d:d3:bf:2d:39:1b: 07:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9B:CC:D4:3B:4F:05:0D:C8:76:0A:FD:91:A4:BF:06:62:FB:4D:4F X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:6c:e2:d2:b4:d9:64:69:9b:b8:85:a1:c0:a1:20:e4:2b:28: 34:84:2e:6b:df:f7:12:9e:96:c5:02:ac:55:ad:38:68:33:cf: 8d:b0:a1:15:46:76:a0:7a:2b:09:a3:5c:35:37:35:c0:7e:6e: 3b:32:a7:3d:74:ae:dc:c9:51:39:52:6c:d3:77:21:95:d4:bf: 6a:57:a4:00:d3:5a:81:93:c0:87:a4:7b:25:44:64:e4:53:8a: 86:19:89:67:5f:bb:d5:45:48:24:ab:e9:aa:fd:20:69:02:a9: 85:b1:29:d2:74:cb:93:bd:c0:f6:c1:98:c4:67:6c:1d:6d:8d: 7b:ba:c6:8a:8c:df:c5:16:84:bf:99:51:e0:0c:59:ce:77:96: 78:43:03:4c:74:42:9c:9b:53:bc:2c:9d:9e:5e:64:f0:88:be: 51:a1:b1:5d:ca:4c:4a:d4:0c:84:81:c7:e0:35:e5:50:44:d3: 90:00:b7:ae:4f:59:78:cf:64:1d:fe:1d:66:dd:71:c9:3c:3e: ce:f4:f8:a2:b7:db:56:1b:f5:dc:09:2d:f9:9a:6a:37:70:cd: 90:cc:ba:5a:65:6c:c2:11:a6:8a:c4:e1:03:81:41:43:5a:4b: ec:cb:00:5b:ac:04:4f:f7:10:da:0f:a9:31:b6:ee:b4:0f:5b: 37:29:c0:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUxMDI3MDczOTUwWhcNMjUxMTAzMDczOTUwWjAYMRYwFAYD VQQDEw02OGZmMjFjNi1lYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2paFy1N+vOuikY6l6fKPDznwaGasytvxan11KqadOH5mhcHqbZGU+cb5ul+ 3xZ+lQtFpFlYHKYUgTfcm6oR4daocCpVuH1DL3ul4vTP99/uZYZ4vbqgKxDJTd8g xhyBFSP9bmQwGQCZ6K1zzJgvXFnjVyAjSr2aNF6SXVdDbhJSCO8M+/0yYgG7/VIL 2sbJMA/9W0EV7PM93GO238S2vfbvZrLr/3eX8T1aulnR/wenKSqL/T+dA373jjEw LqULYhjp/asLlhaIHsYsPbM5mD98s/PWoETrs7NhpOLWe0ZD5B1xdyXXUVxsolRG d5PVJiVkCxHIayh9078tORsHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIibzNQ7 TwUNyHYK/ZGkvwZi+01PMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2bOLStNlkaZu4haHAoSDkKyg0hC5r3/cSnpbFAqxVrThoM8+NsKEV RnageisJo1w1NzXAfm47Mqc9dK7cyVE5UmzTdyGV1L9qV6QA01qBk8CHpHslRGTk U4qGGYlnX7vVRUgkq+mq/SBpAqmFsSnSdMuTvcD2wZjEZ2wdbY17usaKjN/FFoS/ mVHgDFnOd5Z4QwNMdEKcm1O8LJ2eXmTwiL5RobFdykxK1AyEgcfgNeVQRNOQALeu T1l4z2Qd/h1m3XHJPD7O9Piit9tWG/XcCS35mmo3cM2QzLpaZWzCEaaKxOEDgUFD WkvsywBbrARP9xDaD6kxtu60D1s3KcDn -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:46 2025 by rpki-client