$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: tXzSPb1CcWrUg3jC1hlGQ+I9K12TUlaN57FUR9n/pqs= Subject key identifier: 70:89:9A:AE:43:66:19:0F:DC:1D:BC:63:3A:20:38:83:AC:CD:64:4A Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 0724 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 071F Signing time: Sun 02 Nov 2025 21:48:18 +0000 Manifest this update: Sun 02 Nov 2025 21:48:18 +0000 Manifest next update: Sun 09 Nov 2025 21:48:18 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: 6NvQYyMDDcWGicyMKdRXiW8w+htxOD4DBjnok3H4af8=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1828 (0x724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Nov 2 21:48:18 2025 GMT Not After : Nov 9 21:48:18 2025 GMT Subject: CN=6907d1a2-8dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6c:5f:89:56:72:33:e0:a4:77:0c:f8:a0:78: 70:57:b5:27:6b:b4:e1:9f:db:db:b1:2a:88:6c:c4: 2e:d9:09:fc:2a:5c:8b:8d:cf:cf:51:19:ac:c6:7e: 4f:6b:7a:aa:24:39:b9:8f:a6:65:43:cb:b0:aa:d7: 6b:48:b5:3a:03:9f:49:cf:23:d9:8f:b0:38:d9:98: 9a:6d:f6:20:c5:63:30:19:a1:1a:14:33:bd:59:ac: 80:5e:80:f5:52:78:c6:31:83:ff:35:fd:95:5b:71: 34:a0:2e:1b:3c:95:55:e8:09:ed:15:7f:2b:00:a9: 0c:2d:7c:e1:f2:88:fe:7e:cb:29:fa:86:08:01:a5: f2:cd:5a:0c:57:84:a7:6f:a5:ce:8d:ad:c3:4a:17: 0e:26:ed:0d:e8:44:fa:72:f2:9a:2a:8a:22:89:cb: d0:dd:2d:97:a7:a8:92:9f:43:ce:a7:6d:87:49:12: 1a:6c:ed:7f:15:59:0d:a8:b9:73:db:45:b6:dc:05: 23:e5:1e:96:d8:a0:a7:ba:a7:3b:92:af:5a:e8:30: 67:64:ea:7b:e1:15:5c:76:57:7e:76:37:e7:68:6c: 53:e3:6d:9c:ae:be:a5:47:a4:1b:56:64:33:25:d8: 9b:b4:c1:2e:37:02:69:8c:ee:1f:e4:bb:1e:c4:30: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:89:9A:AE:43:66:19:0F:DC:1D:BC:63:3A:20:38:83:AC:CD:64:4A X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ff:0a:70:fe:ee:3a:08:8e:ab:4e:41:39:28:61:7c:39:df: 28:70:04:08:3f:3a:a2:75:86:f9:4c:00:1f:25:29:1c:83:dd: b6:b3:48:81:79:f4:a3:9c:e3:73:98:3b:c9:12:bc:47:5f:58: 13:2d:30:ab:9d:91:f3:3f:f3:ac:12:3a:37:4c:ef:a6:bd:7b: ab:ab:fe:f3:4b:d1:a6:31:c9:ac:9d:5e:bb:75:f4:f2:62:67: 3b:44:46:e8:8a:05:2a:cb:e0:9b:9d:47:17:6f:e1:f8:1b:b0: 9e:db:8a:1a:5b:3c:52:5c:2d:79:a5:da:c3:a3:1b:d5:48:96: c4:15:f0:e3:a7:43:4c:6e:42:d4:88:6d:b6:88:ab:5c:95:f7: 92:7c:41:71:b6:ed:ee:70:28:1b:f1:05:64:74:f5:2d:7d:5d: 43:12:04:24:bd:ea:dc:4e:ef:2b:25:45:73:83:b5:58:ce:91: ee:f2:f7:78:e4:ed:d8:ab:e8:a4:c5:cd:dd:bd:26:29:ec:6e: 57:7e:9c:dc:29:ee:c5:4e:79:81:7b:c4:fd:10:63:1a:76:cf: a9:7f:63:44:8a:15:bd:ae:a4:c8:74:e0:1f:2c:01:4a:8b:1f: 71:9a:04:71:86:9d:e5:8a:86:2f:d6:d6:89:14:ea:6f:32:b0: 9c:75:8a:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUxMTAyMjE0ODE4WhcNMjUxMTA5MjE0ODE4WjAYMRYwFAYD VQQDEw02OTA3ZDFhMi04ZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42xfiVZyM+Ckdwz4oHhwV7Una7Thn9vbsSqIbMQu2Qn8KlyLjc/PURmsxn5P a3qqJDm5j6ZlQ8uwqtdrSLU6A59JzyPZj7A42ZiabfYgxWMwGaEaFDO9WayAXoD1 UnjGMYP/Nf2VW3E0oC4bPJVV6AntFX8rAKkMLXzh8oj+fssp+oYIAaXyzVoMV4Sn b6XOja3DShcOJu0N6ET6cvKaKooiicvQ3S2Xp6iSn0POp22HSRIabO1/FVkNqLlz 20W23AUj5R6W2KCnuqc7kq9a6DBnZOp74RVcdld+djfnaGxT422crr6lR6QbVmQz JdibtMEuNwJpjO4f5LsexDAWwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCJmq5D ZhkP3B28YzogOIOszWRKMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2/wpw/u46CI6rTkE5KGF8Od8ocAQIPzqidYb5TAAfJSkcg922s0iB efSjnONzmDvJErxHX1gTLTCrnZHzP/OsEjo3TO+mvXurq/7zS9GmMcmsnV67dfTy Ymc7REboigUqy+CbnUcXb+H4G7Ce24oaWzxSXC15pdrDoxvVSJbEFfDjp0NMbkLU iG22iKtclfeSfEFxtu3ucCgb8QVkdPUtfV1DEgQkvercTu8rJUVzg7VYzpHu8vd4 5O3Yq+ikxc3dvSYp7G5XfpzcKe7FTnmBe8T9EGMads+pf2NEihW9rqTIdOAfLAFK ix9xmgRxhp3lioYv1taJFOpvMrCcdYpl -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:09 2025 by rpki-client