$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: n6bYV0V88a8s+3LOPFNz83DIlbfTulk8TeWVM02uAwQ= Subject key identifier: 71:93:DF:CD:B3:91:2E:D3:C4:EA:5B:CA:D4:58:45:C7:AD:6E:C5:3B Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 083A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 0819 Signing time: Sun 02 Nov 2025 20:54:09 +0000 Manifest this update: Sun 02 Nov 2025 20:54:08 +0000 Manifest next update: Sun 09 Nov 2025 20:54:08 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: nFGYenwV5z4k/RPvsyYiSHNJGXZyO1IYr/0k7rXAs0k=) 2: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: BwA8MEhqgGbAzSbHdeQ+BFQnrqqSo7A794PhNnAq0qA=) 3: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: TWoh7LVQqQmuW9GpZzIh16PRVa2OB94FLWBuSV7i0+8=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: F8etYfliydabteMfbSSAIkH2xX9USHfIQD7d5Y84ryM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Nov 2 20:54:08 2025 GMT Not After : Nov 9 20:54:08 2025 GMT Subject: CN=6907c4f0-ba2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f2:30:7a:6a:66:2a:0a:95:4e:61:98:d7:56: b3:30:06:7a:51:01:b9:a9:12:2f:3b:20:9a:1e:39: d8:cd:40:a6:b1:3d:6f:46:e9:e2:ae:eb:eb:7a:36: 55:e4:a6:59:f6:36:45:8c:97:f3:9f:36:4d:37:e9: 26:c5:87:b9:11:ef:87:f2:8c:33:a5:6e:04:af:e5: cd:10:45:ec:bb:41:3f:48:36:f7:5f:c7:16:32:a4: ef:fb:bc:02:0f:97:dc:0c:be:bc:72:20:7d:c4:ef: 7e:e0:77:07:01:b7:60:de:73:c9:55:c1:9b:f0:ec: 61:e7:6e:6e:21:3c:80:0e:69:f9:4c:ce:ac:f1:35: 30:f9:f0:bb:49:0a:86:16:f3:03:ea:36:ed:a6:7c: bb:b3:e6:71:d8:f1:1e:dd:62:38:e3:60:70:eb:0d: a6:ca:99:6e:59:79:0b:a0:4f:62:c1:c0:cf:49:0e: 25:24:82:6d:93:56:be:64:ff:e8:22:ba:49:e7:3a: b8:ce:be:9c:46:4c:3e:6d:e7:ed:af:29:da:2f:07: 78:2f:a1:3f:32:d8:88:2c:1f:ad:4e:a0:9f:00:34: b2:2e:92:dd:68:ca:9f:85:f5:49:3e:67:fd:8d:d8: 53:41:14:16:17:71:4a:ef:a1:e6:da:f1:b3:51:14: c9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:93:DF:CD:B3:91:2E:D3:C4:EA:5B:CA:D4:58:45:C7:AD:6E:C5:3B X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9d:ec:57:79:6c:d6:bf:60:b8:c5:76:07:7f:e5:8b:c3:19: 9d:cf:85:c4:7e:4e:12:ef:f0:c3:61:f6:dc:5a:88:5c:c6:01: 3d:cb:d2:71:a3:ca:21:b3:83:cf:c2:8f:e4:0d:4c:57:26:9f: c0:22:21:57:e2:19:b9:1b:c2:44:5a:3a:b5:1d:28:61:ec:b6: 51:42:ac:08:a7:58:bd:32:2e:46:38:8e:78:b0:33:62:77:59: 24:d8:2d:37:e7:16:05:7c:d8:e0:64:27:47:0f:52:ce:08:34: 62:8e:de:c3:4d:d5:a8:98:bd:c8:14:02:c5:a6:13:a3:c7:9c: 73:cd:9f:ef:48:7e:3a:09:f4:0b:26:d2:a2:77:f3:e8:7c:4d: 3f:ab:1a:1b:7c:d0:73:4b:1f:3b:d3:70:ff:02:f8:a1:ac:26: 0a:70:3e:1a:38:de:db:11:57:04:bb:0d:0f:5f:86:d0:be:19: 26:f5:0f:a2:d2:72:ae:4a:77:c4:d8:87:90:ad:5c:05:b5:a7: bf:f1:b7:93:d1:02:11:2f:7f:c2:08:cc:a1:34:a2:49:9b:bc: 27:92:b1:d4:3f:20:93:30:c8:ac:74:12:2f:9c:7e:a3:ee:3f: 90:f6:a3:f1:18:f1:71:78:d4:d7:fe:4c:3a:1a:cf:af:6a:f3: b2:db:28:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUxMTAyMjA1NDA4WhcNMjUxMTA5MjA1NDA4WjAYMRYwFAYD VQQDEw02OTA3YzRmMC1iYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vIwempmKgqVTmGY11azMAZ6UQG5qRIvOyCaHjnYzUCmsT1vRuniruvrejZV 5KZZ9jZFjJfznzZNN+kmxYe5Ee+H8owzpW4Er+XNEEXsu0E/SDb3X8cWMqTv+7wC D5fcDL68ciB9xO9+4HcHAbdg3nPJVcGb8Oxh525uITyADmn5TM6s8TUw+fC7SQqG FvMD6jbtpny7s+Zx2PEe3WI442Bw6w2mypluWXkLoE9iwcDPSQ4lJIJtk1a+ZP/o IrpJ5zq4zr6cRkw+beftrynaLwd4L6E/MtiILB+tTqCfADSyLpLdaMqfhfVJPmf9 jdhTQRQWF3FK76Hm2vGzURTJWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGT382z kS7TxOpbytRYRcetbsU7MB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADnexXeWzWv2C4xXYHf+WLwxmdz4XEfk4S7/DDYfbcWohcxgE9y9Jx o8ohs4PPwo/kDUxXJp/AIiFX4hm5G8JEWjq1HShh7LZRQqwIp1i9Mi5GOI54sDNi d1kk2C035xYFfNjgZCdHD1LOCDRijt7DTdWomL3IFALFphOjx5xzzZ/vSH46CfQL JtKid/PofE0/qxobfNBzSx8703D/AvihrCYKcD4aON7bEVcEuw0PX4bQvhkm9Q+i 0nKuSnfE2IeQrVwFtae/8beT0QIRL3/CCMyhNKJJm7wnkrHUPyCTMMisdBIvnH6j 7j+Q9qPxGPFxeNTX/kw6Gs+vavOy2yju -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:22 2025 by rpki-client