$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: UWPJ+ci65C5I2JM/y7L5O6Vlk1KOa4cPFm6YebX96vQ= Subject key identifier: F9:42:6F:E4:DE:C8:B2:52:DB:97:72:08:FF:8B:4F:90:E0:22:E6:E6 Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: 0132 Signing time: Mon 03 Nov 2025 04:33:35 +0000 Manifest this update: Mon 03 Nov 2025 04:33:34 +0000 Manifest next update: Mon 10 Nov 2025 04:33:34 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: eiZQ0rpOqkJYTI2uxHky+MK5WV/jDJyJ4A8z0yE++Cs=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Nov 3 04:33:34 2025 GMT Not After : Nov 10 04:33:34 2025 GMT Subject: CN=6908309f-6b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5b:f2:e2:5a:ca:e6:28:28:74:4c:4b:f7:f4: ca:2f:84:67:86:be:5c:18:68:c8:43:74:78:1d:8e: ef:9a:7d:d2:b7:28:54:18:2e:b1:64:94:23:34:6e: e3:70:13:fe:2c:3f:13:53:3a:0b:79:2a:e8:b8:de: 26:e0:fb:83:fa:5a:d8:37:9c:07:38:43:0c:0e:a7: 1e:53:31:61:9f:49:56:70:01:44:2b:cd:24:e9:a6: 47:7d:17:50:3a:d1:d5:93:03:43:f4:12:99:f1:11: 7d:71:33:9d:8d:51:bd:81:7d:b2:f2:59:da:ac:5f: 7d:ea:20:b3:1b:2d:0b:61:6a:6b:b4:bb:4a:ed:20: 88:d7:27:1d:15:46:22:f7:c0:22:27:66:8d:f6:d8: 31:82:11:cc:11:2c:7c:0d:84:61:ce:1e:a5:5f:14: 67:d2:a9:39:1b:54:73:14:5e:1f:18:49:58:1a:53: f2:57:e2:16:ad:c2:b9:58:f9:6d:94:7b:6e:32:d7: 86:f0:a6:37:d4:21:8a:fb:ea:9d:e3:2b:a9:bc:12: 1a:31:f5:2a:76:02:eb:89:e5:89:3f:2e:57:da:5e: b2:8d:73:5a:0f:23:c0:52:4a:85:4e:86:7b:ca:26: f7:93:b1:0d:b0:6b:90:44:63:b2:2b:d2:c3:22:a0: c4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:42:6F:E4:DE:C8:B2:52:DB:97:72:08:FF:8B:4F:90:E0:22:E6:E6 X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:3f:f8:22:92:85:9a:17:0d:af:b1:29:5d:f2:bb:48:60:93: 78:cc:88:85:a1:ec:1b:43:2a:67:97:2a:6c:14:5e:4a:22:e4: f9:ab:fe:aa:3d:05:f3:79:8b:ae:12:fa:cc:e5:e4:7e:ed:c7: 9e:93:86:55:52:82:bb:ab:0f:1b:f4:45:74:11:63:42:18:c9: a6:39:c4:da:f0:86:86:36:57:11:43:6d:51:df:40:27:f2:75: 51:e7:5c:de:0b:d8:3f:7f:a6:dd:30:73:5e:7d:d4:bb:53:af: 3e:96:04:d6:bf:96:68:1b:b8:c1:9f:3a:57:43:9f:50:eb:69: a6:71:f9:d5:22:9f:89:09:74:32:ce:f5:ee:3c:70:ba:aa:fc: 01:31:89:73:2a:39:14:b2:a9:0a:f7:08:3c:6e:bc:3e:a8:7c: b9:a7:51:20:1d:43:06:95:af:8c:df:ba:e5:bd:60:1d:26:32: 93:78:8b:92:13:4c:21:60:ac:22:1e:76:86:ad:a2:89:d9:8c: 0a:0e:bb:79:d1:91:ac:d0:64:08:85:be:6c:40:7a:03:92:d5: c2:1d:95:4a:ab:6a:ac:ec:0b:bc:a8:34:e4:fa:07:90:77:c9: 02:b1:86:42:65:cb:92:a2:52:f4:eb:fa:eb:c3:1d:e9:85:61: b3:da:70:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUxMTAzMDQzMzM0WhcNMjUxMTEwMDQzMzM0WjAYMRYwFAYD VQQDEw02OTA4MzA5Zi02YjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51vy4lrK5igodExL9/TKL4Rnhr5cGGjIQ3R4HY7vmn3StyhUGC6xZJQjNG7j cBP+LD8TUzoLeSrouN4m4PuD+lrYN5wHOEMMDqceUzFhn0lWcAFEK80k6aZHfRdQ OtHVkwND9BKZ8RF9cTOdjVG9gX2y8lnarF996iCzGy0LYWprtLtK7SCI1ycdFUYi 98AiJ2aN9tgxghHMESx8DYRhzh6lXxRn0qk5G1RzFF4fGElYGlPyV+IWrcK5WPlt lHtuMteG8KY31CGK++qd4yupvBIaMfUqdgLrieWJPy5X2l6yjXNaDyPAUkqFToZ7 yib3k7ENsGuQRGOyK9LDIqDECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlCb+Te yLJS25dyCP+LT5DgIubmMB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/P/gikoWaFw2vsSld8rtIYJN4zIiFoewbQypnlypsFF5KIuT5q/6q PQXzeYuuEvrM5eR+7ceek4ZVUoK7qw8b9EV0EWNCGMmmOcTa8IaGNlcRQ21R30An 8nVR51zeC9g/f6bdMHNefdS7U68+lgTWv5ZoG7jBnzpXQ59Q62mmcfnVIp+JCXQy zvXuPHC6qvwBMYlzKjkUsqkK9wg8brw+qHy5p1EgHUMGla+M37rlvWAdJjKTeIuS E0whYKwiHnaGraKJ2YwKDrt50ZGs0GQIhb5sQHoDktXCHZVKq2qs7Au8qDTk+geQ d8kCsYZCZcuSolL06/rrwx3phWGz2nCc -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:15 2025 by rpki-client