$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: MeektIA/dJ3XaDwthaqfrVDl+C/zTnjmKSbc49FC/l8= Subject key identifier: 80:7F:A4:A5:E9:29:0C:28:1B:90:C1:FB:C0:E4:9C:C2:38:F6:0C:3B Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 0553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 0537 Signing time: Sun 02 Nov 2025 23:33:44 +0000 Manifest this update: Sun 02 Nov 2025 23:33:43 +0000 Manifest next update: Sun 09 Nov 2025 23:33:43 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: Y+Lz/1ZjAZ7m9CI5TMhzt+83olXoAEOsMVu6quf8eMM=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Nov 2 23:33:43 2025 GMT Not After : Nov 9 23:33:43 2025 GMT Subject: CN=6907ea57-a7db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:61:7a:92:dc:af:f0:d6:7b:89:30:69:2d:0d: 69:97:0c:49:72:35:55:69:53:64:31:d0:bc:b6:d5: 4c:0f:e6:2f:b1:c6:f4:41:49:02:de:d9:6a:19:50: d8:43:de:3c:ba:c4:24:ca:96:13:21:37:5c:75:7e: bb:14:69:60:6a:e6:79:e0:7d:da:f1:36:f4:80:bd: 09:03:af:de:19:ed:1b:2a:88:b1:77:66:7e:26:dd: 86:34:f7:71:92:3b:f0:1d:57:b4:4b:6b:50:ab:7c: c0:6c:5c:b9:b7:de:b0:5d:e9:cf:f7:98:b2:5c:29: 39:0f:75:7a:2e:44:75:f7:95:0e:5b:66:d4:78:7d: f0:5c:61:fd:40:43:37:bf:67:3b:82:70:f7:ea:77: 9d:77:8e:59:03:9e:52:b1:e9:90:da:22:a3:97:43: db:12:a2:be:c2:61:a5:af:ee:d4:4c:46:35:f2:cd: 3d:20:3f:f8:2d:17:93:aa:b6:4c:05:1d:d8:2f:79: 2f:fc:77:23:dc:51:74:42:af:34:cb:60:b6:59:6d: 0c:61:2b:08:45:c6:1a:3c:fc:1b:7c:57:b3:08:cc: 84:89:d6:c9:de:32:52:b3:de:da:b5:a0:8d:9a:f1: 2d:52:4a:83:7f:f3:38:74:a4:83:fa:8b:f3:5b:91: 6b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7F:A4:A5:E9:29:0C:28:1B:90:C1:FB:C0:E4:9C:C2:38:F6:0C:3B X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5e:2e:96:1a:e4:22:f7:35:ba:e7:eb:fb:d5:5d:b0:54:29: 30:17:33:f3:52:36:48:39:b0:81:bc:69:01:b3:5a:b4:bf:17: 61:af:1c:bd:59:50:b3:2e:c8:54:61:ab:55:92:da:af:d1:29: fe:36:5e:7c:d1:db:86:e5:9c:fd:f1:a4:da:bf:5d:d7:b3:06: bb:bf:42:06:70:04:31:15:87:02:c0:7c:4e:8a:7b:d8:75:04: c2:c5:02:01:40:60:85:77:4f:8d:17:13:d8:cc:b5:e3:4c:55: 04:d3:6a:de:a3:39:a2:86:ed:09:af:f9:22:89:4e:85:ef:5a: eb:d1:de:2d:89:5c:43:14:7d:00:55:4c:ea:25:67:f1:79:1a: eb:45:70:c4:26:a5:2a:2b:49:ff:6e:fa:55:ad:7f:a6:ba:2a: b1:4c:61:a0:cd:8d:d5:b5:83:3b:57:5d:93:d4:da:30:38:c4: 12:b1:b5:0f:6c:83:59:fb:84:00:c7:87:7e:71:82:67:7b:98: 33:62:48:44:1f:bf:1a:df:89:8b:9a:53:90:89:64:ee:34:e8: 7e:19:96:05:98:9c:e4:e0:ea:f9:7e:3a:3e:53:9a:92:cf:95: e2:8d:49:63:00:30:bb:e7:19:a9:8d:b0:83:ae:4c:b8:e6:05: be:6c:b2:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUxMTAyMjMzMzQzWhcNMjUxMTA5MjMzMzQzWjAYMRYwFAYD VQQDEw02OTA3ZWE1Ny1hN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WF6ktyv8NZ7iTBpLQ1plwxJcjVVaVNkMdC8ttVMD+Yvscb0QUkC3tlqGVDY Q948usQkypYTITdcdX67FGlgauZ54H3a8Tb0gL0JA6/eGe0bKoixd2Z+Jt2GNPdx kjvwHVe0S2tQq3zAbFy5t96wXenP95iyXCk5D3V6LkR195UOW2bUeH3wXGH9QEM3 v2c7gnD36nedd45ZA55SsemQ2iKjl0PbEqK+wmGlr+7UTEY18s09ID/4LReTqrZM BR3YL3kv/Hcj3FF0Qq80y2C2WW0MYSsIRcYaPPwbfFezCMyEidbJ3jJSs97ataCN mvEtUkqDf/M4dKSD+ovzW5FrAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIB/pKXp KQwoG5DB+8DknMI49gw7MB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxXi6WGuQi9zW65+v71V2wVCkwFzPzUjZIObCBvGkBs1q0vxdhrxy9 WVCzLshUYatVktqv0Sn+Nl580duG5Zz98aTav13Xswa7v0IGcAQxFYcCwHxOinvY dQTCxQIBQGCFd0+NFxPYzLXjTFUE02reozmihu0Jr/kiiU6F71rr0d4tiVxDFH0A VUzqJWfxeRrrRXDEJqUqK0n/bvpVrX+muiqxTGGgzY3VtYM7V12T1NowOMQSsbUP bINZ+4QAx4d+cYJne5gzYkhEH78a34mLmlOQiWTuNOh+GZYFmJzk4Or5fjo+U5qS z5XijUljADC75xmpjbCDrky45gW+bLJn -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:28 2025 by rpki-client