$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft File: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft (raw, json) Hash identifier: BBDrUzXQ6A17+xndU+ZOafD4AgR/1Jn8XOFJ+X3dzwg= Subject key identifier: 8A:B6:F0:BA:4C:93:0D:C1:E7:FE:A0:B1:26:E9:DA:F1:B1:94:DE:E3 Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft Manifest number: 01B4 Signing time: Mon 03 Nov 2025 03:24:17 +0000 Manifest this update: Mon 03 Nov 2025 03:24:17 +0000 Manifest next update: Mon 10 Nov 2025 03:24:17 +0000 Files and hashes: 1: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl (hash: wc5e6hmkfo55K9kW+JVLJMCakNNdzty4mEhVc90Wr5s=) 2: 60C72042052911F0A2361C50C4F9AE02.roa (hash: eoqR2rI7tCJcx2sHbbxw1cinGXO6kmie9biadQvkvGU=) 3: 64B5B49A052C11F0AFEC0478C4F9AE02.roa (hash: osIylBmoiOl0hS+6q4jLTN9ELMVNH7Z3hIxqCI6TGCM=) 4: 24661146FA7311EFB58C366CC4F9AE02.roa (hash: vJ/paOcsiCM0y/LcDeCNMcXQ0i9PBxkDy6/mQy96vcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294, serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Nov 3 03:24:17 2025 GMT Not After : Nov 10 03:24:17 2025 GMT Subject: CN=69082061-9f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9f:8e:e9:49:98:e3:d3:f6:14:17:cf:36:43: 91:32:d0:3c:1b:14:4e:2a:bf:df:a4:d0:4f:45:41: 14:d8:de:82:a2:1d:cb:66:87:97:7a:a5:d2:31:b4: e1:69:57:58:f1:7a:cb:a1:04:c5:85:b7:73:1b:29: 8e:e8:3a:dc:30:3c:f1:32:39:17:1a:07:25:21:0f: 59:7d:d1:e4:06:1e:53:0b:cf:89:a4:38:27:10:c9: 40:17:db:e9:99:e3:e6:e8:da:68:c3:28:e7:d3:a3: 0a:35:78:58:c1:d7:00:fc:15:c4:05:7d:a0:cb:8f: 52:a8:9e:4d:73:f8:47:3b:ee:e5:b1:bf:95:7f:ac: f5:6c:e7:9b:19:39:a8:ce:96:68:80:ab:e4:b0:a9: ed:08:1c:53:bd:e5:a1:19:13:a6:5b:77:bb:bf:db: e0:69:0a:26:01:b9:7f:da:1e:47:d3:22:4b:78:fc: d1:48:7b:1d:88:9c:32:ed:f6:21:c0:4d:9d:a3:df: 1f:c7:63:45:9c:3a:4c:b3:d2:b1:f1:2a:c4:0c:b0: fe:b3:80:2c:ae:9b:63:23:58:17:eb:16:18:2f:72: cb:6e:95:b3:b6:f1:6d:88:1e:5c:72:df:ff:2e:b6: a8:d7:17:d2:0e:c2:dd:5a:ab:f6:e5:5b:f4:90:b5: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B6:F0:BA:4C:93:0D:C1:E7:FE:A0:B1:26:E9:DA:F1:B1:94:DE:E3 X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:9f:0e:b9:f2:71:37:71:f5:76:35:7d:0a:76:4c:08:0e:9e: c1:1f:b3:74:a7:d8:34:db:62:98:40:38:c2:32:29:f6:9e:b7: fd:c8:08:fd:01:cd:03:1c:77:ef:f6:7a:b7:79:91:90:ad:be: 8d:00:18:bd:53:2b:ae:aa:9c:0f:85:72:48:7d:b6:16:41:b3: 54:fe:66:c3:60:01:a4:34:56:e9:0e:fd:9e:40:16:b9:3b:c1: 80:24:5a:47:ec:4a:b7:e8:08:fd:c9:52:da:c8:b7:b3:42:81: 70:aa:eb:8b:f0:96:8b:8d:32:63:71:85:08:71:22:22:48:b5: 9c:e5:ae:54:9c:b4:8d:1e:8b:b4:5b:fb:58:d1:2a:50:58:a0: cc:e4:87:fd:9e:d6:44:bf:23:58:6b:85:03:b1:ea:49:c1:c6: f6:4b:4c:dc:18:85:18:de:fd:03:4b:d6:8c:e9:b6:58:b1:f5: d1:94:74:2c:74:36:76:d6:69:bc:71:1b:f9:a1:5a:04:c5:d7: 18:58:49:a5:7e:29:dd:7f:e9:0e:ed:00:4d:09:f1:60:80:b4: 1e:23:db:c5:6a:12:4d:11:c6:55:9d:2a:5a:1a:c5:40:28:4e: 24:7f:fc:b5:b5:9a:2e:34:07:2f:a4:39:88:1b:f1:f2:4f:f8: c1:a5:be:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjUxMTAzMDMyNDE3WhcNMjUxMTEwMDMyNDE3WjAYMRYwFAYD VQQDEw02OTA4MjA2MS05Zjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZ+O6UmY49P2FBfPNkORMtA8GxROKr/fpNBPRUEU2N6Coh3LZoeXeqXSMbTh aVdY8XrLoQTFhbdzGymO6DrcMDzxMjkXGgclIQ9ZfdHkBh5TC8+JpDgnEMlAF9vp mePm6Npowyjn06MKNXhYwdcA/BXEBX2gy49SqJ5Nc/hHO+7lsb+Vf6z1bOebGTmo zpZogKvksKntCBxTveWhGROmW3e7v9vgaQomAbl/2h5H0yJLePzRSHsdiJwy7fYh wE2do98fx2NFnDpMs9Kx8SrEDLD+s4AsrptjI1gX6xYYL3LLbpWztvFtiB5cct// Lrao1xfSDsLdWqv25Vv0kLU24wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq28LpM kw3B5/6gsSbp2vGxlN7jMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTI5NC85OTJGMUQwRTRBRDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1Vo V3RwNEl2QXFWMGctNG1mQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQnw658nE3cfV2NX0KdkwIDp7BH7N0p9g022KYQDjCMin2nrf9yAj9 Ac0DHHfv9nq3eZGQrb6NABi9UyuuqpwPhXJIfbYWQbNU/mbDYAGkNFbpDv2eQBa5 O8GAJFpH7Eq36Aj9yVLayLezQoFwquuL8JaLjTJjcYUIcSIiSLWc5a5UnLSNHou0 W/tY0SpQWKDM5If9ntZEvyNYa4UDsepJwcb2S0zcGIUY3v0DS9aM6bZYsfXRlHQs dDZ21mm8cRv5oVoExdcYWEmlfindf+kO7QBNCfFggLQeI9vFahJNEcZVnSpaGsVA KE4kf/y1tZouNAcvpDmIG/HyT/jBpb7W -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:33 2025 by rpki-client