$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: sfK8I5eneu3Qr+p5Ge5jwpnOnquLkFPd71GmJWptSYM= Subject key identifier: 07:E2:A8:5F:61:8A:AB:85:9B:44:70:04:7D:AD:35:5D:BE:7C:10:B7 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 093C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 092D Signing time: Tue 04 Nov 2025 20:20:55 +0000 Manifest this update: Tue 04 Nov 2025 20:20:54 +0000 Manifest next update: Tue 11 Nov 2025 20:20:54 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: 7HceQThEy0iRM8ajKLP9eUJAobdr2YdqdGrQhPlBHEI=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Nov 4 20:20:54 2025 GMT Not After : Nov 11 20:20:54 2025 GMT Subject: CN=690a6027-4e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2c:1c:63:2d:d4:82:07:a5:c7:df:7e:f5:59: 21:06:59:e7:d4:fa:34:2c:fc:d1:a0:06:62:9a:2b: 9e:85:7a:43:82:43:e6:42:c2:62:8f:72:9e:16:e3: 76:1b:27:63:87:7c:46:44:91:e6:f8:d0:8b:f8:16: 9b:f5:8a:5c:3d:cb:5d:62:0a:f2:4d:35:33:59:21: fb:8f:0e:dc:17:4d:08:bb:c1:a8:8f:8b:66:2c:a8: d7:ce:34:9f:4a:74:f8:bc:c5:79:55:38:84:53:84: 89:90:7a:fd:f1:73:f2:ba:b5:e8:02:ea:75:92:d9: 3f:eb:26:b0:4a:93:2a:c2:d4:5a:78:39:47:32:7c: 87:2d:e7:7b:66:4f:83:ff:d2:08:a9:4e:7d:61:04: d3:30:e9:17:b7:c6:0c:9d:21:59:45:ce:0c:61:f7: 6d:20:9d:79:ce:a6:77:f2:5a:e7:1a:e5:b4:9a:50: 06:19:18:70:ec:5d:1a:83:25:4a:66:4b:5b:42:bb: e6:ee:63:4d:a9:cb:a3:0a:9c:25:39:73:4c:3c:cc: 19:b3:78:8f:bf:1f:92:e9:dc:a5:52:1f:ab:cf:3d: 61:7a:c3:fc:15:4a:92:1a:d9:b7:57:90:9c:5f:96: da:c2:a1:5f:ad:8c:7f:97:38:c3:a4:b5:81:f6:dc: db:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E2:A8:5F:61:8A:AB:85:9B:44:70:04:7D:AD:35:5D:BE:7C:10:B7 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:9c:b3:f6:03:62:d4:ce:55:f5:01:86:78:52:85:e4:f4:d8: 89:65:a2:fd:c6:ce:d8:a3:f4:fc:19:62:85:fe:93:12:be:c8: 94:b3:8a:af:40:c2:f6:3d:5a:51:b7:4c:ab:c9:a1:5a:17:6e: d8:f4:8e:89:fb:99:b1:50:e7:9b:f6:e4:17:ba:eb:8d:fc:32: e4:b6:84:58:bc:ea:c6:e4:8f:85:14:11:cf:40:80:cc:58:82: 0c:33:a4:c4:1f:22:7c:1c:34:60:33:8e:45:63:2f:a8:25:cc: 4e:19:73:d2:01:b0:d1:d4:af:fe:f0:91:dc:89:76:13:0a:a0: 30:d2:3d:cf:fb:74:ce:80:3b:dd:65:68:21:82:d5:05:63:eb: 22:ef:18:0a:ab:4d:08:c5:cb:3a:b1:de:04:46:e4:09:d3:aa: 0a:c4:f2:f8:a9:6c:97:eb:55:56:1a:c7:c6:c3:58:d1:9c:25: 1f:a8:f2:50:46:86:44:42:46:3a:99:89:e5:d0:5d:90:27:30: f7:18:47:45:0b:b6:2f:00:67:1c:62:ab:c0:c6:36:0d:0b:49: a1:b6:9d:c3:fc:49:71:92:e3:19:5f:51:a7:45:e7:c5:ea:c9: 7a:41:4a:98:56:a1:6d:75:eb:0f:67:b4:fc:a9:08:c1:7b:3d: 49:00:59:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUxMTA0MjAyMDU0WhcNMjUxMTExMjAyMDU0WjAYMRYwFAYD VQQDEw02OTBhNjAyNy00ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SwcYy3Uggelx99+9VkhBlnn1Po0LPzRoAZimiuehXpDgkPmQsJij3KeFuN2 Gydjh3xGRJHm+NCL+Bab9YpcPctdYgryTTUzWSH7jw7cF00Iu8Goj4tmLKjXzjSf SnT4vMV5VTiEU4SJkHr98XPyurXoAup1ktk/6yawSpMqwtRaeDlHMnyHLed7Zk+D /9IIqU59YQTTMOkXt8YMnSFZRc4MYfdtIJ15zqZ38lrnGuW0mlAGGRhw7F0agyVK ZktbQrvm7mNNqcujCpwlOXNMPMwZs3iPvx+S6dylUh+rzz1hesP8FUqSGtm3V5Cc X5bawqFfrYx/lzjDpLWB9tzbAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfiqF9h iquFm0RwBH2tNV2+fBC3MB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEnLP2A2LUzlX1AYZ4UoXk9NiJZaL9xs7Yo/T8GWKF/pMSvsiUs4qv QML2PVpRt0yryaFaF27Y9I6J+5mxUOeb9uQXuuuN/DLktoRYvOrG5I+FFBHPQIDM WIIMM6TEHyJ8HDRgM45FYy+oJcxOGXPSAbDR1K/+8JHciXYTCqAw0j3P+3TOgDvd ZWghgtUFY+si7xgKq00Ixcs6sd4ERuQJ06oKxPL4qWyX61VWGsfGw1jRnCUfqPJQ RoZEQkY6mYnl0F2QJzD3GEdFC7YvAGccYqvAxjYNC0mhtp3D/ElxkuMZX1GnRefF 6sl6QUqYVqFtdesPZ7T8qQjBez1JAFn5 -----END CERTIFICATE-----Generated at Wed Nov 5 18:00:39 2025 by rpki-client