$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: OAok0y5R8Ad7c67KH6pMIM/Dphb9p7HCP825TJdf+ss= Subject key identifier: 11:8E:87:9C:74:A5:D6:EA:2B:FF:C0:C5:C1:0F:DB:94:E5:45:D7:B2 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: B6 Signing time: Tue 04 Nov 2025 19:33:18 +0000 Manifest this update: Tue 04 Nov 2025 19:33:18 +0000 Manifest next update: Tue 11 Nov 2025 19:33:18 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: 99LMksnJ5TCSTvRktSiAw2ItH6kjCEfTUp9l1OsgS7A=) 2: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vf/Qz1zNWab4GZKpZSQw8SUPGRrLV9FUb2vcsaGOSLY=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: 0lZOVOfd15vpeG++w5mAWXS/YLQjKe0BETzMm0Ic6h8=) 4: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: ebzMyTtJaZgd5qEdDD8H3gUyuweRz4YwhdGqKlk2YpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Nov 4 19:33:18 2025 GMT Not After : Nov 11 19:33:18 2025 GMT Subject: CN=690a54fe-df49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bf:56:3d:24:68:4d:88:8e:42:9a:ad:c2:38: b7:84:fb:87:41:fe:dd:e5:1c:6e:fd:02:da:8e:fb: 4f:b7:7a:4d:75:4f:cb:8c:39:eb:13:9a:70:73:7f: 91:b9:6c:ec:4a:59:00:a2:9d:01:9c:96:e7:3d:5d: 20:5f:02:41:47:ec:ac:56:7f:2c:9a:76:93:b4:fd: 71:88:3d:30:3b:2a:ec:66:75:d5:ea:c3:1e:8f:82: f8:8e:81:98:fa:77:c4:7f:25:4e:e8:d7:80:8c:38: ad:38:2d:a7:a6:f8:e8:6a:b8:69:ac:ec:f6:3f:9f: 08:17:ea:e8:58:b2:29:07:74:7a:09:58:b6:a0:8c: 25:b6:28:79:12:57:52:c3:07:9a:12:67:8f:59:e7: 2b:33:66:ef:ff:66:3a:f6:b8:b0:1b:75:19:a9:d7: 50:80:26:b3:c7:98:e2:7b:bf:d6:49:0f:d5:b3:fc: 8c:f5:08:ec:e3:b4:0c:5a:a6:c2:80:02:15:9b:56: fb:bc:1d:8d:d5:20:12:3c:84:1a:a7:05:3f:a6:bd: aa:b4:5b:fe:91:12:b8:10:7c:f1:bf:d1:1e:0d:d3: b3:ec:6a:24:8a:0e:8f:58:3e:3d:79:e6:3b:88:9a: 38:b7:7b:01:14:ce:d9:ee:bf:fe:d1:c5:c6:e2:55: e9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:8E:87:9C:74:A5:D6:EA:2B:FF:C0:C5:C1:0F:DB:94:E5:45:D7:B2 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:81:4d:d4:d1:19:e8:ee:92:af:49:31:e9:3e:86:e9:48:63: 29:7f:5e:1a:39:30:bc:ee:43:e2:b4:64:b9:63:0f:29:4c:03: 5e:42:31:2d:51:09:bf:42:fd:22:65:11:bc:74:95:2a:2a:ef: 79:63:93:2c:47:12:46:ac:ad:f9:b7:16:a1:5d:27:2f:5d:1c: 8a:a1:2d:7f:1c:ce:38:0e:4f:b9:b3:b0:4f:18:21:0b:77:1d: c1:88:10:44:06:0f:32:22:16:72:e3:4a:60:2f:ad:ec:8d:e4: 5c:0c:21:6b:41:a1:21:3a:67:cd:f1:db:72:d4:d1:7d:e2:47: bc:9b:21:2d:7f:8b:8a:12:97:1a:6e:b0:fb:a4:70:28:56:17: 45:fa:61:cb:4c:ea:ee:b9:49:33:3b:0e:cf:89:a8:5b:a8:3e: 5f:76:9b:70:52:24:9a:29:19:07:41:0d:b4:9f:fb:47:bc:c7: 04:01:09:58:16:94:7d:71:1e:a6:21:79:10:7d:40:c6:94:03: 9e:41:02:1a:a7:cf:ae:a5:d6:b3:6e:a7:4d:b8:72:81:a3:89: 43:5a:93:b2:b5:58:9f:aa:79:85:65:16:c8:8d:fa:4c:52:f7: 6d:98:36:97:4b:7b:ea:32:98:69:ef:9a:82:40:e0:5f:59:cd: 0a:44:01:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUxMTA0MTkzMzE4WhcNMjUxMTExMTkzMzE4WjAYMRYwFAYD VQQDEw02OTBhNTRmZS1kZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz79WPSRoTYiOQpqtwji3hPuHQf7d5Rxu/QLajvtPt3pNdU/LjDnrE5pwc3+R uWzsSlkAop0BnJbnPV0gXwJBR+ysVn8smnaTtP1xiD0wOyrsZnXV6sMej4L4joGY +nfEfyVO6NeAjDitOC2npvjoarhprOz2P58IF+roWLIpB3R6CVi2oIwltih5EldS wweaEmePWecrM2bv/2Y69riwG3UZqddQgCazx5jie7/WSQ/Vs/yM9Qjs47QMWqbC gAIVm1b7vB2N1SASPIQapwU/pr2qtFv+kRK4EHzxv9EeDdOz7Gokig6PWD49eeY7 iJo4t3sBFM7Z7r/+0cXG4lXp0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGOh5x0 pdbqK//AxcEP25TlRdeyMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNgU3U0Rno7pKvSTHpPobpSGMpf14aOTC87kPitGS5Yw8pTANeQjEt UQm/Qv0iZRG8dJUqKu95Y5MsRxJGrK35txahXScvXRyKoS1/HM44Dk+5s7BPGCEL dx3BiBBEBg8yIhZy40pgL63sjeRcDCFrQaEhOmfN8dty1NF94ke8myEtf4uKEpca brD7pHAoVhdF+mHLTOruuUkzOw7PiahbqD5fdptwUiSaKRkHQQ20n/tHvMcEAQlY FpR9cR6mIXkQfUDGlAOeQQIap8+updazbqdNuHKBo4lDWpOytVifqnmFZRbIjfpM UvdtmDaXS3vqMphp75qCQOBfWc0KRAF9 -----END CERTIFICATE-----Generated at Tue Nov 4 22:06:16 2025 by rpki-client