$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: 0JHo8pPjqxtWYK495ca7Qei+2YmM4m+2VhJQ8qeXORA= Subject key identifier: 8A:05:FD:70:F6:3B:F4:FA:FF:DF:08:50:09:F3:B0:E6:08:BE:C7:3E Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 181A Signing time: Tue 04 Nov 2025 16:38:20 +0000 Manifest this update: Tue 04 Nov 2025 16:38:19 +0000 Manifest next update: Tue 11 Nov 2025 16:38:19 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: oX3Hs0ieJAZVro/EtpFcitBevCr4OwuQpRLw4RumIbs=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6194 (0x1832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Nov 4 16:38:19 2025 GMT Not After : Nov 11 16:38:19 2025 GMT Subject: CN=690a2bfc-a2cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:7a:0a:47:fb:7e:ba:1a:33:46:94:c8:10: 3f:8f:93:77:78:4e:57:70:6b:0c:43:33:e3:ff:e1: 4b:be:c8:df:6c:24:ea:d2:4e:e3:7c:0f:a3:70:3b: af:db:f5:4c:6c:64:18:91:69:b6:58:be:80:1e:a7: 94:a9:e4:df:2f:15:87:2d:1a:58:a1:a6:b7:4b:1f: 1d:9c:57:31:12:17:6e:87:70:53:bd:dd:00:51:a3: 2b:c4:4d:8f:d3:b1:43:8f:bc:36:a7:71:05:28:3d: 33:08:ca:c7:2e:e8:2b:fc:95:1c:61:f5:d6:3d:16: 66:96:ed:b7:c5:75:10:44:77:fa:dd:c8:18:b1:cf: 5b:be:90:f4:6c:f6:de:2e:39:dc:2d:2f:a3:18:25: 4e:65:20:05:b1:c6:61:d9:06:06:6f:3a:f3:2b:e1: 0f:75:98:51:6d:b3:db:e2:bc:b7:c8:19:7f:87:a2: 00:48:9e:fa:fa:3f:a8:89:9d:8a:c5:a4:4b:57:4e: 50:27:bc:3e:f9:b2:8b:0e:52:24:71:a3:b4:61:5a: 37:a8:b8:ec:e8:ee:77:36:11:e5:2c:d6:42:8a:81: 40:78:66:f3:01:fa:a8:aa:5d:db:e1:85:34:42:b3: f7:a7:c4:e8:f9:54:d4:cd:02:2e:f7:c6:1d:4c:66: 6a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:05:FD:70:F6:3B:F4:FA:FF:DF:08:50:09:F3:B0:E6:08:BE:C7:3E X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3c:68:3e:d5:d0:30:18:9b:47:97:ec:ad:b8:27:cc:9c:8c: 4b:ca:6c:1d:5b:00:16:fd:bc:f5:c1:f6:b7:0f:e7:d7:f3:06: 38:b2:1c:cb:aa:f5:09:59:28:09:db:ad:18:f3:18:ee:00:92: ea:88:57:dc:f7:67:7b:2a:01:67:9a:73:55:31:d7:ee:9d:dc: d2:77:15:be:50:2e:54:c5:38:56:7f:5e:e8:83:b2:4a:2f:84: 52:74:46:54:43:72:15:36:0c:de:8e:a6:81:64:0a:5f:ec:bc: b6:63:51:51:96:43:3c:67:ee:ca:82:a7:fb:c9:2d:3b:0b:19: 92:3a:6c:cb:22:33:75:01:b2:42:19:98:0f:41:b1:30:a8:5a: 17:8e:b9:98:5a:c5:8c:d0:46:02:ab:a7:33:d3:82:c9:0d:57: 58:30:6b:37:18:40:64:6f:3e:4b:45:b8:fd:10:7a:45:2c:eb: 26:a1:20:90:3f:d3:91:d0:be:62:86:35:e4:af:ee:0a:8e:5c: 3e:86:58:16:7d:51:24:29:fb:87:5d:9e:aa:a1:77:43:08:cd: 89:82:99:86:25:70:5e:32:97:62:ed:81:53:cc:e6:32:9b:60: 6a:1c:ce:c1:7d:9e:4a:ce:b3:b7:54:38:2b:14:a4:52:98:c2: e1:6f:cc:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUxMTA0MTYzODE5WhcNMjUxMTExMTYzODE5WjAYMRYwFAYD VQQDEw02OTBhMmJmYy1hMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr96Ckf7froaM0aUyBA/j5N3eE5XcGsMQzPj/+FLvsjfbCTq0k7jfA+jcDuv 2/VMbGQYkWm2WL6AHqeUqeTfLxWHLRpYoaa3Sx8dnFcxEhduh3BTvd0AUaMrxE2P 07FDj7w2p3EFKD0zCMrHLugr/JUcYfXWPRZmlu23xXUQRHf63cgYsc9bvpD0bPbe LjncLS+jGCVOZSAFscZh2QYGbzrzK+EPdZhRbbPb4ry3yBl/h6IASJ76+j+oiZ2K xaRLV05QJ7w++bKLDlIkcaO0YVo3qLjs6O53NhHlLNZCioFAeGbzAfqoql3b4YU0 QrP3p8To+VTUzQIu98YdTGZqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoF/XD2 O/T6/98IUAnzsOYIvsc+MB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWPGg+1dAwGJtHl+ytuCfMnIxLymwdWwAW/bz1wfa3D+fX8wY4shzL qvUJWSgJ260Y8xjuAJLqiFfc92d7KgFnmnNVMdfundzSdxW+UC5UxThWf17og7JK L4RSdEZUQ3IVNgzejqaBZApf7Ly2Y1FRlkM8Z+7Kgqf7yS07CxmSOmzLIjN1AbJC GZgPQbEwqFoXjrmYWsWM0EYCq6cz04LJDVdYMGs3GEBkbz5LRbj9EHpFLOsmoSCQ P9OR0L5ihjXkr+4Kjlw+hlgWfVEkKfuHXZ6qoXdDCM2JgpmGJXBeMpdi7YFTzOYy m2BqHM7BfZ5KzrO3VDgrFKRSmMLhb8yM -----END CERTIFICATE-----Generated at Wed Nov 5 15:56:39 2025 by rpki-client