$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft File: h7_uyP-fsmiAINtZpiLBOhXlryA.mft (raw, json) Hash identifier: HGqm1ySqqSlm1HllH/PbVkEWFmbNcsgANUDw3/Hrp94= Subject key identifier: 68:2E:9B:25:CB:F2:7A:59:8B:36:9E:25:17:2F:0C:A4:B9:36:AA:DD Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft Manifest number: 018D Signing time: Wed 05 Nov 2025 03:45:12 +0000 Manifest this update: Wed 05 Nov 2025 03:45:11 +0000 Manifest next update: Wed 12 Nov 2025 03:45:11 +0000 Files and hashes: 1: h7_uyP-fsmiAINtZpiLBOhXlryA.crl (hash: CJHB8zw1/xJVBqKW7C5CKeZnCEgoAsQN+1RdksDGxKY=) 2: 28382F96644E11EEA1DCB653C4F9AE02.roa (hash: tkC94LIcazFbktBOOWxjViOTNkAmC8Zs4gf9iesOvuI=) 3: 81D3CB186B7D11F0A482004CC4F9AE02.roa (hash: UKKopt0iwOreSp0uNtTtDqHFVLkM2EYVL8idxsWUjB0=) 4: ADB02E5C5CB411F0BE8D2465C4F9AE02.roa (hash: OcNbuxa2ZSSG1bMP1PQ4GkM3WfcX4kd/s4GUQn4/jaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B7A, serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Validity Not Before: Nov 5 03:45:11 2025 GMT Not After : Nov 12 03:45:11 2025 GMT Subject: CN=690ac847-d0d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:d0:70:15:29:e9:37:ee:3e:c7:99:88:78: 7d:69:40:99:c4:90:89:0b:6d:a5:43:86:d1:1d:89: 48:6e:9a:8c:69:5d:92:96:f2:a8:5d:df:0f:39:ca: ac:6d:30:1d:9a:9a:55:cf:ca:14:3b:28:7e:75:e1: 96:94:79:14:73:71:4f:2e:01:3b:fe:52:24:a8:d2: 32:f9:2d:98:03:5a:aa:92:d3:7f:74:f9:85:10:02: 66:da:9d:d0:79:d0:bb:64:cb:93:c1:06:c9:99:c0: 46:02:d6:7b:28:67:b6:4e:40:da:d7:40:da:bc:2d: f9:c4:1a:26:39:8d:0d:36:64:27:e8:b6:83:40:84: d7:3e:35:0a:b1:b2:e8:f9:fe:e5:9d:7f:10:ad:f7: 3d:32:e5:fd:49:53:11:fb:d3:44:9a:b7:9b:1d:7d: 11:23:c0:24:87:f3:36:7c:93:f7:19:6b:a0:91:16: 2d:c6:3b:94:ef:45:81:70:7a:57:3d:6b:30:3d:3c: 69:fc:dd:c3:57:00:50:29:62:1f:3a:e6:79:f0:2f: 80:7d:88:24:06:15:a7:a7:22:36:b6:65:b6:4d:fe: 95:62:79:36:d1:9f:97:c2:40:7f:21:b8:94:37:85: d4:91:90:54:05:91:98:f4:47:8c:70:d1:bc:be:5c: cc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2E:9B:25:CB:F2:7A:59:8B:36:9E:25:17:2F:0C:A4:B9:36:AA:DD X509v3 Authority Key Identifier: keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f1:40:50:a3:0f:a1:06:10:5f:16:c8:a0:6c:45:ff:fd:16: 61:60:6e:51:26:fe:1d:e8:87:e8:a9:ad:ac:98:82:93:78:11: 38:e6:32:b5:1e:75:01:7b:09:34:d4:2b:1a:aa:b9:b7:72:68: ee:89:91:2b:00:ec:bb:f1:15:e5:0a:2a:0f:22:e6:a1:3f:8d: a9:e7:ce:87:ff:36:18:b4:ed:64:51:87:0a:43:52:66:44:0b: 5b:28:25:f5:da:96:e1:f0:24:e9:ec:9d:6a:f4:52:cb:d8:54: be:53:7c:41:81:4a:e0:c0:77:fd:3b:c3:17:a3:dc:e2:d3:73: dd:28:2f:69:80:6d:92:6d:5f:ad:6f:d5:ca:8e:4a:86:cb:b7: b9:77:09:31:80:ec:e9:e7:01:5b:84:c9:be:be:cc:61:a7:4f: eb:1b:f9:5a:67:17:06:82:26:13:93:23:9b:b1:ca:51:f5:86: 6c:c0:a0:d7:2d:dd:c1:b0:59:8d:b0:da:04:b1:bd:c8:a7:bb: 24:70:00:94:80:c9:51:c7:5b:08:90:e3:2e:f5:48:17:d5:c2: 13:7d:4a:6d:85:e7:00:9a:8d:5b:09:f4:33:8f:c7:28:8e:d5: 94:cd:b8:8b:fe:7d:e3:64:41:97:ba:05:44:f7:04:0d:5e:23: ea:27:d1:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCN0ExMTAvBgNVBAUTKDg3QkZFRUM4RkY5RkIyNjg4MDIwREI1OUE2MjJDMTNB MTVFNUFGMjAwHhcNMjUxMTA1MDM0NTExWhcNMjUxMTEyMDM0NTExWjAYMRYwFAYD VQQDEw02OTBhYzg0Ny1kMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqifQcBUp6TfuPseZiHh9aUCZxJCJC22lQ4bRHYlIbpqMaV2SlvKoXd8POcqs bTAdmppVz8oUOyh+deGWlHkUc3FPLgE7/lIkqNIy+S2YA1qqktN/dPmFEAJm2p3Q edC7ZMuTwQbJmcBGAtZ7KGe2TkDa10DavC35xBomOY0NNmQn6LaDQITXPjUKsbLo +f7lnX8Qrfc9MuX9SVMR+9NEmrebHX0RI8Akh/M2fJP3GWugkRYtxjuU70WBcHpX PWswPTxp/N3DVwBQKWIfOuZ58C+AfYgkBhWnpyI2tmW2Tf6VYnk20Z+XwkB/IbiU N4XUkZBUBZGY9EeMcNG8vlzMsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgumyXL 8npZizaeJRcvDKS5NqrdMB8GA1UdIwQYMBaAFIe/7sj/n7JogCDbWaYiwToV5a8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI3QS8wNkExOTYwMjY0 NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNtaUFJTnRacGlMQk9oWGxy eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3X3V5UC1mc21pQUlOdFpwaUxCT2hYbHJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkI3QS8wNkExOTYwMjY0NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNt aUFJTnRacGlMQk9oWGxyeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc8UBQow+hBhBfFsigbEX//RZhYG5RJv4d6Ifoqa2smIKTeBE45jK1 HnUBewk01Csaqrm3cmjuiZErAOy78RXlCioPIuahP42p586H/zYYtO1kUYcKQ1Jm RAtbKCX12pbh8CTp7J1q9FLL2FS+U3xBgUrgwHf9O8MXo9zi03PdKC9pgG2SbV+t b9XKjkqGy7e5dwkxgOzp5wFbhMm+vsxhp0/rG/laZxcGgiYTkyObscpR9YZswKDX Ld3BsFmNsNoEsb3Ip7skcACUgMlRx1sIkOMu9UgX1cITfUpthecAmo1bCfQzj8co jtWUzbiL/n3jZEGXugVE9wQNXiPqJ9F4 -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:50 2025 by rpki-client