$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: 3cfHE6wjugMJqv162LuJRAOb40gSBu8Pzr3WW9yDfSg= Subject key identifier: 59:BF:9B:6E:7C:91:49:1E:1D:34:1C:73:D6:73:EF:8E:74:08:63:B8 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 05C7 Signing time: Tue 04 Nov 2025 23:10:57 +0000 Manifest this update: Tue 04 Nov 2025 23:10:57 +0000 Manifest next update: Tue 11 Nov 2025 23:10:56 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: UDQzRUwSv0aU41gLrauR9Qnjzz6Ky02WBUNoinqNs8o=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: Mr4cvAF99YsJ9vM3bpplyr/XjV6Oh9dCkUlGWW3glRM=) 3: A6EF097068F911F092D77151C4F9AE02.roa (hash: CVgVNZzRg+yoeNSO5TmorciwKychjnQza4bd4ni3W/0=) 4: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: yhFTvnQ9OnQm5YRLzb7trt3j3jJDg72T+yloJnYuUVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Nov 4 23:10:57 2025 GMT Not After : Nov 11 23:10:56 2025 GMT Subject: CN=690a8801-8113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:43:ce:6d:4c:d6:2b:ac:17:1d:00:51:7b: 1b:74:b7:db:07:48:3a:ff:b2:98:de:7c:0e:c0:4b: ca:8a:52:22:60:76:0c:b0:08:89:cf:3b:9a:7d:e0: d4:a7:10:9d:5e:4e:fb:eb:24:55:25:c5:bb:1d:b8: 89:94:a2:79:28:03:c1:f0:b2:eb:6c:a7:38:b7:16: 0f:d6:39:f3:c9:f5:25:ae:3d:a6:f4:8b:ca:17:db: 53:16:2d:40:20:30:02:13:d8:34:3d:de:14:f1:82: 21:cf:3f:1c:ad:b4:37:1c:0a:ab:bd:a1:48:5b:b2: 8f:77:72:df:d2:a0:a9:34:cf:30:68:3f:d6:95:0d: 5b:cd:5f:55:cd:73:f9:68:31:51:9d:11:45:7a:d8: ae:cc:c4:de:15:85:c0:76:50:25:ec:65:ef:f0:bf: 2d:2a:c3:e4:12:a6:93:ac:30:01:b3:10:6e:7b:58: 41:01:9e:d3:dc:98:8a:05:ae:dd:db:f3:3f:c7:df: e3:99:d0:0a:28:37:46:d4:86:f5:92:11:e9:57:8c: 09:bc:9a:a1:cc:56:51:6e:e0:b1:77:55:eb:d5:88: e3:6e:c2:d8:f1:e2:6a:bc:8b:d6:33:ab:68:e0:9d: 5e:d7:99:74:2f:5d:c1:f8:4d:b7:9f:57:5c:a6:14: 38:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BF:9B:6E:7C:91:49:1E:1D:34:1C:73:D6:73:EF:8E:74:08:63:B8 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:6f:6d:0f:bf:bc:c2:11:86:b1:81:f7:92:2f:82:6b:45:3a: fe:90:05:9d:21:06:ea:87:2b:96:5a:45:95:f7:1d:e5:d3:28: 42:fc:40:60:8a:82:99:b6:c3:63:a9:1f:22:9d:a4:3c:e7:dd: 9c:01:8b:09:ab:6b:72:b5:35:f7:fe:26:28:b2:c7:af:46:38: 05:04:de:2b:d2:20:57:d0:dd:33:cc:bd:64:37:17:8a:f2:96: 05:49:e7:89:c1:35:3d:76:73:71:e0:fa:04:8d:eb:54:62:b2: be:a1:0b:95:f9:23:25:e9:63:89:c2:35:83:fe:36:0c:16:52: f7:1e:47:d1:d7:f9:6a:bb:00:cf:30:50:1a:62:b9:57:2e:2c: 8f:b5:d1:2a:62:61:c3:e1:7e:8f:14:5d:19:5d:cf:b4:a2:e2: a4:41:03:17:ec:7a:7e:fd:39:a8:af:2c:f4:4f:a0:c9:dc:01: 9a:aa:54:80:cf:16:e9:4f:90:0b:44:cf:38:21:ac:68:55:b7: 57:6d:c5:3d:c8:b3:09:e5:46:5d:1d:ee:c3:00:f5:f4:e1:f0: 81:70:a8:32:fb:55:94:f9:0f:36:00:a9:54:f2:e5:c3:70:12: 60:c3:38:7e:df:f9:05:67:8a:02:37:f1:c5:9c:23:6c:b5:be: af:d9:77:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUxMTA0MjMxMDU3WhcNMjUxMTExMjMxMDU2WjAYMRYwFAYD VQQDEw02OTBhODgwMS04MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzJDzm1M1iusFx0AUXsbdLfbB0g6/7KY3nwOwEvKilIiYHYMsAiJzzuafeDU pxCdXk776yRVJcW7HbiJlKJ5KAPB8LLrbKc4txYP1jnzyfUlrj2m9IvKF9tTFi1A IDACE9g0Pd4U8YIhzz8crbQ3HAqrvaFIW7KPd3Lf0qCpNM8waD/WlQ1bzV9VzXP5 aDFRnRFFetiuzMTeFYXAdlAl7GXv8L8tKsPkEqaTrDABsxBue1hBAZ7T3JiKBa7d 2/M/x9/jmdAKKDdG1Ib1khHpV4wJvJqhzFZRbuCxd1Xr1YjjbsLY8eJqvIvWM6to 4J1e15l0L13B+E23n1dcphQ4jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFm/m258 kUkeHTQcc9Zz7450CGO4MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXb20Pv7zCEYaxgfeSL4JrRTr+kAWdIQbqhyuWWkWV9x3l0yhC/EBg ioKZtsNjqR8inaQ8592cAYsJq2tytTX3/iYossevRjgFBN4r0iBX0N0zzL1kNxeK 8pYFSeeJwTU9dnNx4PoEjetUYrK+oQuV+SMl6WOJwjWD/jYMFlL3HkfR1/lquwDP MFAaYrlXLiyPtdEqYmHD4X6PFF0ZXc+0ouKkQQMX7Hp+/Tmoryz0T6DJ3AGaqlSA zxbpT5ALRM84IaxoVbdXbcU9yLMJ5UZdHe7DAPX04fCBcKgy+1WU+Q82AKlU8uXD cBJgwzh+3/kFZ4oCN/HFnCNstb6v2Xcs -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:20 2025 by rpki-client