$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: M0/THaowtnefxyGef23RFx1l1SfafJ5+rBT66OOWJVg= Subject key identifier: 3F:BB:B0:94:57:C9:61:1F:25:0F:C2:89:10:ED:85:D8:9D:A3:16:0E Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: E4 Signing time: Sat 25 Oct 2025 09:10:47 +0000 Manifest this update: Sat 25 Oct 2025 09:10:47 +0000 Manifest next update: Sat 01 Nov 2025 09:10:47 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: JEi//968pT41INMQH4fkslIKyao034OcRzB8fHc7ZjM=) 2: 56EC0F5EABD411F0ADCDD73CC4F9AE02.roa (hash: OqbQu7kEO5HyQlsajTkQ2cRmRukKYtR+ZcR573z3wAk=) 3: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: 0Cf8THprMTDVV2fZezKAdgIeiPKZ9IZrYmhz+7CeQ7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Oct 25 09:10:47 2025 GMT Not After : Nov 1 09:10:47 2025 GMT Subject: CN=68fc9417-a00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:4b:e3:87:6f:c5:7b:33:57:62:b4:e6:24: e1:d5:17:ba:1b:cd:1f:ee:d4:bd:c1:aa:10:ab:f5: 2f:52:aa:e8:b8:39:84:9f:ec:18:8d:76:30:50:0e: 59:07:d9:34:2f:5c:49:80:8d:3e:29:ca:b2:ff:49: 94:7c:68:1c:60:71:de:c4:89:32:2f:94:f9:3b:41: f2:6e:12:c8:8f:c1:7a:5b:1a:83:63:29:28:1e:8f: 8b:3d:78:ff:8c:9c:db:96:f1:ef:5e:f4:30:b3:38: 7c:6a:e0:0c:4a:c4:1e:20:4d:6f:4a:ce:c0:6a:fa: c4:f0:a0:3d:24:bd:6f:0b:74:c8:c1:36:de:c5:9f: b5:98:38:bc:72:6f:3c:44:f1:a9:0f:95:4d:4d:e1: e4:fc:cc:f4:84:c1:d1:23:d2:fc:16:22:2b:38:f8: b9:ca:8f:3c:ce:08:12:9b:af:15:d4:f3:ff:f1:86: 79:18:3b:26:a0:26:ac:10:23:7f:39:04:94:90:a9: f1:42:27:15:cd:7d:78:63:68:cb:ce:88:dd:24:d4: 47:14:37:fe:db:8b:4b:84:e1:f0:18:82:c7:d9:b2: ab:c9:60:53:df:1f:3f:f6:0f:e1:db:cb:c4:e9:6c: 30:a9:60:49:76:83:fe:37:49:6f:bd:8b:dd:27:dd: 41:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BB:B0:94:57:C9:61:1F:25:0F:C2:89:10:ED:85:D8:9D:A3:16:0E X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:73:e1:9e:12:75:2e:77:0b:56:0a:7b:11:23:3e:e3:d2:f9: e9:d5:7a:dd:e9:51:2f:12:b2:83:0e:fa:d6:20:95:86:32:25: 58:cf:76:6b:12:d1:c0:92:02:05:86:a7:db:23:52:3c:51:8e: 53:12:fe:d0:37:f9:42:22:6c:1d:b6:71:65:35:73:d8:4d:71: de:9d:c9:cb:78:a6:10:d5:11:55:20:4d:b1:2d:76:78:c8:76: 46:2e:3e:ef:d7:45:52:c7:4c:6b:cf:7b:c3:8e:54:75:dc:47: 0e:a1:25:4b:ed:fb:89:7c:f5:3c:10:2f:63:69:ff:dd:bd:7a: 32:d6:7b:1c:e2:9b:50:e9:2d:4d:bb:9a:aa:39:10:c5:cb:89: 70:d7:db:eb:1a:41:3c:e7:b9:00:7f:63:5d:ea:91:a0:f4:d4: 51:06:7c:4e:7d:d6:59:8d:b9:46:97:b5:d9:39:a8:47:16:fd: 86:54:21:ac:00:57:58:d3:85:3b:2e:c5:02:20:1a:77:50:2b: 72:85:b8:9e:68:9d:80:37:08:02:b7:24:8f:f0:1a:93:76:d9: d5:b0:3f:59:77:a3:e1:01:33:aa:dd:fa:ba:fb:69:96:2f:a0: a2:a2:b2:f5:fb:70:d4:ad:ca:cb:62:2c:5b:73:a7:a9:81:25: c4:19:b7:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjUxMDI1MDkxMDQ3WhcNMjUxMTAxMDkxMDQ3WjAYMRYwFAYD VQQDEw02OGZjOTQxNy1hMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJJL44dvxXszV2K05iTh1Re6G80f7tS9waoQq/UvUqrouDmEn+wYjXYwUA5Z B9k0L1xJgI0+Kcqy/0mUfGgcYHHexIkyL5T5O0HybhLIj8F6WxqDYykoHo+LPXj/ jJzblvHvXvQwszh8auAMSsQeIE1vSs7AavrE8KA9JL1vC3TIwTbexZ+1mDi8cm88 RPGpD5VNTeHk/Mz0hMHRI9L8FiIrOPi5yo88zggSm68V1PP/8YZ5GDsmoCasECN/ OQSUkKnxQicVzX14Y2jLzojdJNRHFDf+24tLhOHwGILH2bKryWBT3x8/9g/h28vE 6WwwqWBJdoP+N0lvvYvdJ91B/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+7sJRX yWEfJQ/CiRDthdidoxYOMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtc+GeEnUudwtWCnsRIz7j0vnp1Xrd6VEvErKDDvrWIJWGMiVYz3Zr EtHAkgIFhqfbI1I8UY5TEv7QN/lCImwdtnFlNXPYTXHencnLeKYQ1RFVIE2xLXZ4 yHZGLj7v10VSx0xrz3vDjlR13EcOoSVL7fuJfPU8EC9jaf/dvXoy1nsc4ptQ6S1N u5qqORDFy4lw19vrGkE857kAf2Nd6pGg9NRRBnxOfdZZjblGl7XZOahHFv2GVCGs AFdY04U7LsUCIBp3UCtyhbieaJ2ANwgCtySP8BqTdtnVsD9Zd6PhATOq3fq6+2mW L6CiorL1+3DUrcrLYixbc6epgSXEGbcX -----END CERTIFICATE-----Generated at Mon Oct 27 07:22:06 2025 by rpki-client