$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: W4fGUZu/2iZaOLtnsK+LUCoDSdNzZZGOcdHGQLDS5iQ= Subject key identifier: 3D:B7:E6:BA:1A:DE:01:61:94:A4:55:0C:F6:1B:85:50:F6:98:75:0D Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0387 Signing time: Mon 27 Oct 2025 02:13:13 +0000 Manifest this update: Mon 27 Oct 2025 02:13:12 +0000 Manifest next update: Mon 03 Nov 2025 02:13:12 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 0m0+cURY62LNIQcY6tlEOoBTGEh3TqjoXVSrmSek7Bw=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Oct 27 02:13:12 2025 GMT Not After : Nov 3 02:13:12 2025 GMT Subject: CN=68fed539-85e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e3:01:a9:44:8d:8f:68:d7:71:e5:f4:c5:35: c0:25:5c:f2:6a:0e:d6:0e:8e:ad:25:dc:6c:61:e8: 53:0c:02:9d:d8:50:45:9a:35:12:0d:cd:48:62:00: 3b:fc:6d:70:c6:c2:21:d9:ba:27:f7:fd:0c:03:2c: a8:f1:55:1b:1f:f3:2c:49:57:a9:0c:ee:84:a8:75: e2:0e:bf:03:5b:91:2f:be:7b:0f:21:80:20:f5:38: 8a:94:9e:fe:b1:e2:8a:71:ec:03:64:17:2d:8d:a2: 4b:e1:d7:b7:b8:a9:91:e0:9f:13:5a:64:14:1f:dc: dd:6c:c0:5f:25:d6:9c:b0:25:f1:5e:c6:44:89:20: 95:1a:b2:db:67:71:fa:0d:87:b9:2a:46:ec:5e:1a: df:16:24:2a:c0:04:63:19:7c:8f:99:eb:d8:ae:c2: 15:24:53:d1:c6:54:ff:8b:29:3e:50:3b:2e:ff:58: 06:94:a4:82:1b:88:87:f0:1b:aa:5b:ba:97:ac:55: 02:d2:87:71:e4:6c:4f:9c:eb:00:a5:33:14:2e:8a: ec:7c:2a:1d:f7:75:9d:da:69:70:e3:7f:e1:2e:65: ce:6b:19:4e:b4:57:59:56:22:57:b5:07:b6:f3:b4: 4b:5e:11:ec:b8:a9:97:17:af:23:44:3b:be:89:05: 9d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B7:E6:BA:1A:DE:01:61:94:A4:55:0C:F6:1B:85:50:F6:98:75:0D X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:d7:90:7b:23:9f:e2:d5:e6:5c:b4:7d:05:26:9c:58:5b:48: 53:10:89:a2:73:6c:3a:98:85:a1:c4:59:44:1a:ad:b0:82:16: c4:1b:b5:1c:c0:71:a6:2e:72:f0:93:9b:6b:a6:42:90:d7:5e: 61:90:a3:3c:ba:dd:be:c5:a3:2f:1a:44:42:34:d3:b0:af:1e: 13:2f:d8:e9:73:da:33:0d:ba:c8:67:00:93:b8:10:c4:fa:73: 1e:20:5f:ad:d2:22:ab:ed:cf:33:b7:14:d4:30:ad:3c:90:c6: 63:aa:6c:82:3b:85:18:4c:c0:99:80:22:4f:16:8a:3a:f0:59: 4d:45:29:f1:73:b8:db:87:0a:87:5f:64:db:50:76:e4:89:e5: b8:51:c6:27:35:f3:7b:d9:41:7a:2c:6e:a8:75:e7:93:d2:80: 90:ed:e7:c0:3e:0b:c7:bb:54:36:da:d3:12:fb:96:51:63:97: 81:70:dd:28:84:af:99:ba:30:9c:c2:d1:a3:03:12:ba:dc:b2: 22:48:3f:d5:d2:e8:ef:da:5c:b9:8a:ce:61:21:5c:c7:b3:41: e0:4b:72:19:11:0a:de:f0:ac:fe:46:a5:ae:92:5e:d7:43:c9: bb:e1:44:f0:91:6c:51:99:73:7a:ae:2b:f8:07:9e:db:7d:16: cc:a9:3d:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMDI3MDIxMzEyWhcNMjUxMTAzMDIxMzEyWjAYMRYwFAYD VQQDEw02OGZlZDUzOS04NWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuMBqUSNj2jXceX0xTXAJVzyag7WDo6tJdxsYehTDAKd2FBFmjUSDc1IYgA7 /G1wxsIh2bon9/0MAyyo8VUbH/MsSVepDO6EqHXiDr8DW5EvvnsPIYAg9TiKlJ7+ seKKcewDZBctjaJL4de3uKmR4J8TWmQUH9zdbMBfJdacsCXxXsZEiSCVGrLbZ3H6 DYe5KkbsXhrfFiQqwARjGXyPmevYrsIVJFPRxlT/iyk+UDsu/1gGlKSCG4iH8Buq W7qXrFUC0odx5GxPnOsApTMULorsfCod93Wd2mlw43/hLmXOaxlOtFdZViJXtQe2 87RLXhHsuKmXF68jRDu+iQWdiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD235roa 3gFhlKRVDPYbhVD2mHUNMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh15B7I5/i1eZctH0FJpxYW0hTEImic2w6mIWhxFlEGq2wghbEG7Uc wHGmLnLwk5trpkKQ115hkKM8ut2+xaMvGkRCNNOwrx4TL9jpc9ozDbrIZwCTuBDE +nMeIF+t0iKr7c8ztxTUMK08kMZjqmyCO4UYTMCZgCJPFoo68FlNRSnxc7jbhwqH X2TbUHbkieW4UcYnNfN72UF6LG6odeeT0oCQ7efAPgvHu1Q22tMS+5ZRY5eBcN0o hK+ZujCcwtGjAxK63LIiSD/V0ujv2ly5is5hIVzHs0HgS3IZEQre8Kz+RqWukl7X Q8m74UTwkWxRmXN6riv4B57bfRbMqT0P -----END CERTIFICATE-----Generated at Mon Oct 27 15:06:02 2025 by rpki-client