$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: aoB+jxo7dZAbe4IPQ2iXraAk+oC4Z9Qkq9K8b5z7vJs= Subject key identifier: 8E:0C:EA:51:DD:E3:BC:5D:BE:C7:1B:9F:BC:37:1E:F2:69:9A:9E:9A Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 0159 Signing time: Mon 03 Nov 2025 04:09:45 +0000 Manifest this update: Mon 03 Nov 2025 04:09:44 +0000 Manifest next update: Mon 10 Nov 2025 04:09:44 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: NgN7uXObARhSHFfD7mxvEsVky1cn821DeWDl5+mijQA=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: y81/Bm4goLn9P37Big7/CzEV9a1Uz1uENuSDaA4pS5U=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: MOWmFDpIkvE9ZXw3XjwL/Gz8uOZnXK7NosAmPb+jAAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Nov 3 04:09:44 2025 GMT Not After : Nov 10 04:09:44 2025 GMT Subject: CN=69082b08-c94e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:e5:a0:41:96:e9:6c:0c:57:8a:d5:28:c5: e7:14:a8:87:d5:4f:ae:d3:fa:2c:ae:eb:ff:e2:f1: 82:bb:8b:de:5b:8a:38:e2:be:23:e5:81:5b:9a:f5: a5:a9:e5:83:64:27:dc:70:b5:5b:0a:77:75:ba:37: ef:3b:48:af:69:3a:50:80:2e:e6:f4:ae:a7:04:63: a7:16:19:3d:57:97:29:0e:b7:30:c3:93:63:e7:e6: ef:08:4d:52:68:1b:6a:e5:b3:b8:b9:50:43:ca:d0: e3:00:86:bb:3f:f1:b7:ee:64:1a:cb:79:bc:e9:a4: 89:fd:f0:90:e8:ed:35:61:e1:69:92:88:0e:a9:4c: e8:d0:50:d8:09:87:30:4e:3f:b6:6d:4c:63:21:e8: 22:20:86:98:ef:56:86:b9:1f:43:54:6d:45:64:cb: dc:6d:b9:0f:43:5b:f1:10:11:09:73:74:c5:dc:5a: 08:6d:3d:03:c3:5a:0a:0d:e1:7a:f5:cd:3e:3e:1f: 83:40:a4:5b:d3:4d:ef:06:b7:57:a4:6b:4f:f0:8d: 93:1c:30:33:0e:f8:90:de:20:ae:91:bd:0a:99:ba: fc:35:e8:59:dd:ef:38:1f:1d:f3:40:d5:9e:8e:3a: 42:7f:be:34:aa:2d:80:8f:52:36:7e:3a:2d:fc:3c: f1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0C:EA:51:DD:E3:BC:5D:BE:C7:1B:9F:BC:37:1E:F2:69:9A:9E:9A X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:56:4b:99:8e:b5:0f:b8:d4:86:27:39:7a:e6:20:41:b7:61: ef:06:9b:5f:1f:78:a2:b3:35:75:2e:cd:fe:82:d8:b7:32:45: d5:00:d8:be:1b:fd:6d:b5:6c:49:ef:ec:25:d0:ea:51:86:7a: 9e:08:dc:f0:71:67:09:da:0e:84:c2:75:c5:03:79:53:8b:6a: 5c:c5:0e:70:33:7b:2e:79:53:83:5a:cf:be:8d:c9:ce:58:5b: e0:16:66:d3:e5:48:bb:e6:98:93:a8:35:2b:d5:5e:af:bf:90: 6a:3c:cb:bd:da:50:e5:d0:07:4e:1f:2a:02:46:21:55:3e:48: 80:52:ec:0c:07:12:08:00:95:a7:b2:c1:3e:22:b2:8c:7c:27: e0:00:57:3e:8f:dd:fe:04:c5:a5:56:76:07:70:96:d5:85:e7: f5:2c:fb:3c:f5:5e:dd:59:b6:01:8c:6b:79:92:a0:c3:08:c9: 8b:b9:58:9e:03:b0:47:9c:0c:08:ca:40:cc:f9:e9:35:fa:3f: 93:84:4d:46:6c:ee:9b:de:8f:af:69:69:4d:51:4d:d9:9d:7e: 09:21:cd:df:3f:f6:a1:ce:e8:3c:40:cc:0a:0e:3f:03:8a:36: b3:95:fe:b3:54:3b:a2:ab:46:d7:ff:63:b1:89:2c:31:dc:65: 8d:03:c2:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUxMTAzMDQwOTQ0WhcNMjUxMTEwMDQwOTQ0WjAYMRYwFAYD VQQDEw02OTA4MmIwOC1jOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7LloEGW6WwMV4rVKMXnFKiH1U+u0/osruv/4vGCu4veW4o44r4j5YFbmvWl qeWDZCfccLVbCnd1ujfvO0ivaTpQgC7m9K6nBGOnFhk9V5cpDrcww5Nj5+bvCE1S aBtq5bO4uVBDytDjAIa7P/G37mQay3m86aSJ/fCQ6O01YeFpkogOqUzo0FDYCYcw Tj+2bUxjIegiIIaY71aGuR9DVG1FZMvcbbkPQ1vxEBEJc3TF3FoIbT0Dw1oKDeF6 9c0+Ph+DQKRb003vBrdXpGtP8I2THDAzDviQ3iCukb0Kmbr8NehZ3e84Hx3zQNWe jjpCf740qi2Aj1I2fjot/DzxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4M6lHd 47xdvscbn7w3HvJpmp6aMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFVkuZjrUPuNSGJzl65iBBt2HvBptfH3iiszV1Ls3+gti3MkXVANi+ G/1ttWxJ7+wl0OpRhnqeCNzwcWcJ2g6EwnXFA3lTi2pcxQ5wM3sueVODWs++jcnO WFvgFmbT5Ui75piTqDUr1V6vv5BqPMu92lDl0AdOHyoCRiFVPkiAUuwMBxIIAJWn ssE+IrKMfCfgAFc+j93+BMWlVnYHcJbVhef1LPs89V7dWbYBjGt5kqDDCMmLuVie A7BHnAwIykDM+ek1+j+ThE1GbO6b3o+vaWlNUU3ZnX4JIc3fP/ahzug8QMwKDj8D ijazlf6zVDuiq0bX/2OxiSwx3GWNA8K1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:14 2025 by rpki-client