$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: D9A43xVHHLgBLQZEQVBGxrbMO4viMAo4srMe0i8STtY= Subject key identifier: BE:A7:70:E1:97:9F:51:61:49:31:25:08:25:75:58:2E:9A:9B:36:E5 Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 0127 Signing time: Mon 03 Nov 2025 04:45:29 +0000 Manifest this update: Mon 03 Nov 2025 04:45:28 +0000 Manifest next update: Mon 10 Nov 2025 04:45:28 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: 9u2AuioNaOvl0/yUbOkDhw0NspKDRhTr8Qc3Nx7twuc=) 2: 35274C3080AF11F0BAFC1E65C4F9AE02.roa (hash: 7HONP22Ru+ZwbPqR0qZD9dpRS6n+36hJIPSSh9b77BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE, serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Nov 3 04:45:28 2025 GMT Not After : Nov 10 04:45:28 2025 GMT Subject: CN=69083368-15c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f9:9c:71:7b:61:cc:8d:40:2b:62:c6:cc:6a: 38:3d:b0:df:52:48:e7:c5:6f:cd:1f:f8:40:3f:10: 65:45:6f:18:dc:97:6b:19:83:16:0b:07:a9:dd:d6: 85:ae:c4:3e:a8:80:49:5e:1a:11:e7:ab:cc:64:e2: 0a:88:be:8d:6c:81:f7:ef:c6:a0:f4:f9:e0:4b:f4: a7:bd:9e:4d:15:07:cb:fd:10:34:57:38:1a:bc:3f: 2d:56:8f:df:dc:ca:4b:ad:63:ef:cd:05:5b:2c:c8: 8d:ea:be:ea:2e:3e:4c:7c:f0:82:18:b8:c3:a2:3a: 39:29:21:a1:ab:94:6e:cb:3d:a9:aa:49:8c:19:68: a9:af:d4:0e:79:bb:7c:45:d7:6a:2f:29:3a:f2:29: 7a:52:9c:62:7c:2a:52:86:b5:fe:7a:27:ee:82:62: f4:7e:1f:a0:60:af:54:20:91:9c:1d:83:3c:8f:72: 0a:9d:40:d9:59:18:4a:44:16:39:37:90:7c:f0:26: f6:c4:dd:a3:88:7c:34:0b:bd:66:79:ed:93:11:2d: eb:46:e2:97:51:d9:ba:33:09:8f:2f:d7:e3:87:da: 39:9c:71:d3:50:e2:df:a6:48:41:0b:9a:22:89:74: df:6e:04:31:b6:b4:79:cd:c3:39:9f:ad:ef:02:33: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A7:70:E1:97:9F:51:61:49:31:25:08:25:75:58:2E:9A:9B:36:E5 X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4e:fc:b0:5b:6d:1c:c4:27:76:ed:91:a4:73:aa:81:f7:20: 93:43:8e:72:ee:a6:82:6f:a9:2d:a1:4e:f2:01:18:57:fc:98: a1:40:d1:ec:a8:fc:8b:60:84:4d:4c:46:97:3e:f7:0f:ca:61: 86:f7:1c:10:e6:ec:d0:e0:06:c5:d7:d4:88:0a:4f:66:e3:f1: 11:8c:5d:20:81:a6:ba:e9:3c:ea:4f:ec:48:dd:71:cb:af:72: 0d:46:f4:3e:9f:29:10:93:9e:b2:dd:cd:dd:1d:68:5b:02:22: b0:9e:6d:2f:a4:c3:20:2a:7c:c2:90:cb:55:1b:61:70:8f:7b: e1:6e:46:40:15:57:f6:1f:9a:79:5f:07:82:04:d9:1d:d3:64: 2c:be:80:61:66:f3:e8:a1:dc:63:85:cb:79:c2:c2:72:63:36: d3:34:4f:29:01:50:6c:7e:db:e7:f3:2e:41:1c:3d:4e:f0:28: d6:c7:3c:f4:f7:21:db:8c:e3:f0:5e:97:42:e7:98:64:17:72: 42:9e:1b:7b:3c:f9:73:e6:6c:47:92:b1:f2:a2:ab:f4:f0:6a: 6a:e6:ac:64:d6:13:8f:42:10:3a:9d:8f:d0:d2:c7:20:53:42: 75:5f:71:de:b2:06:b3:d8:47:c4:89:23:df:15:53:ae:e7:fa: d2:60:99:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFGRjdDRUE0RkMw OEU3RDkyQTgwHhcNMjUxMTAzMDQ0NTI4WhcNMjUxMTEwMDQ0NTI4WjAYMRYwFAYD VQQDEw02OTA4MzM2OC0xNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvmccXthzI1AK2LGzGo4PbDfUkjnxW/NH/hAPxBlRW8Y3JdrGYMWCwep3daF rsQ+qIBJXhoR56vMZOIKiL6NbIH378ag9PngS/SnvZ5NFQfL/RA0VzgavD8tVo/f 3MpLrWPvzQVbLMiN6r7qLj5MfPCCGLjDojo5KSGhq5Ruyz2pqkmMGWipr9QOebt8 RddqLyk68il6UpxifCpShrX+eifugmL0fh+gYK9UIJGcHYM8j3IKnUDZWRhKRBY5 N5B88Cb2xN2jiHw0C71mee2TES3rRuKXUdm6MwmPL9fjh9o5nHHTUOLfpkhBC5oi iXTfbgQxtrR5zcM5n63vAjNbpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6ncOGX n1FhSTElCCV1WC6amzblMB8GA1UdIwQYMBaAFIZueNGkXo/RJoCK/3zqT8COfZKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0ZDRS9FMEJFMzZBQzAy M0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5RW1nSXJfZk9wUHdJNTlr cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFSZWo5 RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASTvywW20cxCd27ZGkc6qB9yCTQ45y7qaCb6ktoU7yARhX/JihQNHs qPyLYIRNTEaXPvcPymGG9xwQ5uzQ4AbF19SICk9m4/ERjF0ggaa66TzqT+xI3XHL r3INRvQ+nykQk56y3c3dHWhbAiKwnm0vpMMgKnzCkMtVG2Fwj3vhbkZAFVf2H5p5 XweCBNkd02QsvoBhZvPoodxjhct5wsJyYzbTNE8pAVBsftvn8y5BHD1O8CjWxzz0 9yHbjOPwXpdC55hkF3JCnht7PPlz5mxHkrHyoqv08Gpq5qxk1hOPQhA6nY/Q0scg U0J1X3Hesgaz2EfEiSPfFVOu5/rSYJkZ -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:55 2025 by rpki-client