$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft File: h7LA6ClUHS71JmOF6zlGuNUpBgg.mft (raw, json) Hash identifier: 8uQqMAOV4Zer30zZfkZf5aGk16Op3CuvKUfqfPxxDNE= Subject key identifier: DA:DE:8B:A5:87:D5:E9:32:CE:12:1A:31:76:3F:50:1C:A6:69:12:4A Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 08A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft Manifest number: 087E Signing time: Tue 04 Nov 2025 20:45:48 +0000 Manifest this update: Tue 04 Nov 2025 20:45:47 +0000 Manifest next update: Tue 11 Nov 2025 20:45:47 +0000 Files and hashes: 1: h7LA6ClUHS71JmOF6zlGuNUpBgg.crl (hash: EGb4iGu6ckLhVtLVl54yyUiIFGoomVQ+cFKZ0lSxe3Y=) 2: 3619A9DA67B411F097A2770AC4F9AE02.roa (hash: NovEF3NdDvqF9F8b0/ZT82vbbHXVaw622xvGyH6ZWPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0, serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Nov 4 20:45:47 2025 GMT Not After : Nov 11 20:45:47 2025 GMT Subject: CN=690a65fc-8732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:00:55:86:60:8a:38:67:e8:68:5a:48:76: f2:2b:68:51:23:3f:f9:d2:79:f7:d8:1e:1d:e1:2b: 87:69:00:de:86:32:a3:a0:97:e5:d1:6f:a3:99:14: bf:80:33:b7:35:35:d2:1b:ec:c3:26:49:7f:94:35: a2:f4:19:f9:1c:f5:db:32:d7:08:77:b4:ff:a7:c8: 36:42:be:1e:f0:49:29:34:ad:d4:ee:d2:e5:c0:67: 01:36:5a:ef:e8:df:e1:96:5f:f3:4e:b0:69:c2:a4: d9:fd:42:cf:bd:53:c0:c9:4f:3c:bd:06:68:d2:56: ae:aa:fd:8b:ef:57:3b:77:35:19:42:a4:c9:f4:ca: 86:70:8a:92:54:9b:bc:9a:71:c0:31:a6:a0:c5:dd: 49:d9:fb:89:d3:47:26:80:d0:a8:20:2e:e3:f7:dd: 4e:4b:2a:bd:a2:c5:59:19:f1:34:f4:aa:b4:77:20: 3f:82:fc:db:44:cd:85:72:7c:80:d9:4a:61:e4:58: 1e:72:a1:36:b0:b1:16:52:dd:81:d7:ee:88:ef:05: c8:b4:53:b3:a5:a8:c1:09:e3:b8:fb:c6:b5:97:75: 3a:d8:cc:47:aa:44:fb:c0:bc:22:75:35:9b:31:e2: 36:fa:eb:58:83:25:03:de:06:76:85:77:59:9a:2a: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DE:8B:A5:87:D5:E9:32:CE:12:1A:31:76:3F:50:1C:A6:69:12:4A X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b7:3f:3d:96:90:57:cd:3c:31:5d:6a:ae:97:8b:d1:e7:4b: 85:70:6f:ca:9e:b5:e5:06:82:b5:ab:f1:29:d1:8b:07:73:c3: 77:5c:72:bc:5c:12:12:54:13:ad:e7:17:fe:31:32:99:6a:1a: cc:4b:6d:a4:e9:57:dc:f8:f9:b4:27:8e:c2:31:d8:43:71:a7: 6d:06:bf:af:cd:1d:13:f6:bb:22:e8:e5:5d:5f:de:d6:d3:7d: 7b:ce:c8:ef:e2:ec:0c:4c:d6:c3:15:a0:d5:f6:c7:e1:fa:40: c2:0c:0e:24:f3:89:ca:40:06:d1:2b:07:4a:63:24:e1:e3:b4: 36:98:5a:1e:b4:5f:2e:85:7c:3d:0e:ee:54:7b:8b:de:e5:5c: 74:62:3d:57:e7:f7:bc:44:8c:45:51:2b:55:ad:57:49:3c:a3: 69:41:0d:ea:ca:36:68:4f:f8:c3:f3:cd:28:04:71:a6:e1:e6: 04:20:69:5a:e9:9e:b9:c0:ca:81:8e:b8:db:97:db:01:5b:14: d5:eb:ff:18:98:f6:f8:d2:5e:10:e8:73:29:06:61:b8:e3:95: d2:a9:58:f2:e7:6b:79:3b:d3:dd:fd:d5:12:a2:1d:b7:77:4a: d1:e3:f9:60:6c:13:cc:0d:73:3e:82:3e:58:2c:3d:a2:a1:46: b7:ed:fa:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjUxMTA0MjA0NTQ3WhcNMjUxMTExMjA0NTQ3WjAYMRYwFAYD VQQDEw02OTBhNjVmYy04NzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZQAVYZgijhn6GhaSHbyK2hRIz/50nn32B4d4SuHaQDehjKjoJfl0W+jmRS/ gDO3NTXSG+zDJkl/lDWi9Bn5HPXbMtcId7T/p8g2Qr4e8EkpNK3U7tLlwGcBNlrv 6N/hll/zTrBpwqTZ/ULPvVPAyU88vQZo0lauqv2L71c7dzUZQqTJ9MqGcIqSVJu8 mnHAMaagxd1J2fuJ00cmgNCoIC7j991OSyq9osVZGfE09Kq0dyA/gvzbRM2FcnyA 2Uph5FgecqE2sLEWUt2B1+6I7wXItFOzpajBCeO4+8a1l3U62MxHqkT7wLwidTWb MeI2+utYgyUD3gZ2hXdZmio1QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrei6WH 1ekyzhIaMXY/UBymaRJKMB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCMC9BMkRGNENFQ0RENEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhT NzFKbU9GNnpsR3VOVXBCZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbtz89lpBXzTwxXWqul4vR50uFcG/KnrXlBoK1q/Ep0YsHc8N3XHK8 XBISVBOt5xf+MTKZahrMS22k6Vfc+Pm0J47CMdhDcadtBr+vzR0T9rsi6OVdX97W 0317zsjv4uwMTNbDFaDV9sfh+kDCDA4k84nKQAbRKwdKYyTh47Q2mFoetF8uhXw9 Du5Ue4ve5Vx0Yj1X5/e8RIxFUStVrVdJPKNpQQ3qyjZoT/jD880oBHGm4eYEIGla 6Z65wMqBjrjbl9sBWxTV6/8YmPb40l4Q6HMpBmG445XSqVjy52t5O9Pd/dUSoh23 d0rR4/lgbBPMDXM+gj5YLD2ioUa37foj -----END CERTIFICATE-----Generated at Wed Nov 5 12:18:04 2025 by rpki-client