$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: PS0cCOBnvRVKJ+Z1oOg9FMQT+/vgasopLbl5wVUAn3w= Subject key identifier: 05:51:78:DE:28:76:93:7E:6D:15:52:02:11:13:F7:CF:41:2D:C4:14 Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0637 Signing time: Tue 04 Nov 2025 22:47:39 +0000 Manifest this update: Tue 04 Nov 2025 22:47:39 +0000 Manifest next update: Tue 11 Nov 2025 22:47:39 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: 2GQu5Wdw3tt9UxNoeXdwrtZ90jpfcPD6yH2B+3RPrKY=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: x6RJn5oQmyrZkTIL+jnIDh/DG4GNtduzvhq+KZOjCjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Nov 4 22:47:39 2025 GMT Not After : Nov 11 22:47:39 2025 GMT Subject: CN=690a828b-f15a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f6:66:f6:8c:09:b2:14:32:93:11:91:5e:7e: 5e:ab:c6:64:9f:87:22:ac:76:35:f8:8f:ba:3c:23: ee:e3:b4:70:43:10:e7:50:70:ce:35:e3:ce:c4:7b: c7:d7:6c:3d:4c:b9:57:6b:21:de:3d:32:6b:1a:ac: 34:f6:43:bb:43:dd:82:e7:2a:25:3c:de:ed:ce:7a: 9e:f0:9e:07:4e:20:9e:5c:3f:d4:8e:2a:56:22:51: 1e:fd:1d:8d:0a:fb:30:d4:d1:9d:63:f6:3d:ab:d3: 70:b1:d9:15:f8:f9:dd:61:47:5d:50:7d:ef:ca:6a: 99:df:51:6c:38:f7:81:c4:34:de:a9:19:b8:aa:ec: 23:58:8e:94:71:2f:16:4a:8d:48:52:ea:f8:95:74: af:45:96:f5:d4:5d:91:44:ed:33:d9:55:9d:c3:54: ce:bd:be:7c:c9:44:5b:1d:1e:9c:03:bd:59:03:93: 34:ff:22:63:ef:0d:59:35:d2:6d:d1:f2:3c:19:9f: eb:8e:68:3f:0c:84:d5:87:04:37:db:00:4c:56:94: 3e:89:fc:e3:a2:83:e6:d9:31:32:d2:19:f9:95:33: 63:3b:a4:a6:21:4a:9f:28:8a:2f:49:38:6c:e0:de: 1e:54:d1:6a:88:09:16:d4:25:d2:77:0e:34:c6:4c: 47:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:51:78:DE:28:76:93:7E:6D:15:52:02:11:13:F7:CF:41:2D:C4:14 X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:77:13:51:f1:ad:be:53:b2:07:10:e3:f5:c1:5c:27:fa:24: 9e:10:d7:67:c5:94:c1:dc:c2:72:cf:6f:4b:b8:e8:17:fa:85: a3:26:7c:e5:b7:e0:a7:58:41:a6:4e:81:5e:1d:59:5d:49:ab: c6:49:2b:a6:9b:1f:0b:e6:be:8c:9b:80:b1:76:c5:fe:f5:ef: e6:d4:d0:03:1d:b8:02:0a:04:7d:8a:68:e5:af:3f:a6:b6:49: b4:e7:90:cf:89:55:b0:6a:24:6e:6e:91:db:10:ac:a0:0b:54: f2:ba:67:40:d9:2c:02:33:cb:54:cb:a4:c8:c5:27:97:3f:52: 0e:c2:6d:56:de:27:c2:ed:f0:59:e7:c4:14:5a:c9:db:16:46: d3:73:e9:c1:49:66:fe:39:17:ec:6c:9f:ed:6e:f5:4e:1d:a3: 65:3c:f5:36:1c:e8:e0:49:82:62:b0:67:c5:9f:af:05:de:6f: c7:5a:c2:90:49:9e:64:ba:48:32:96:5a:33:6f:70:29:e7:c6: 23:b3:45:6c:d1:32:82:47:aa:29:b7:a8:d5:79:76:6e:68:0b: fe:08:28:62:4f:63:31:c8:26:a6:48:1c:97:75:55:be:38:db: d3:5f:11:16:ed:80:d0:4f:06:ab:b6:d6:2c:7f:27:41:a2:e8: ba:2c:f2:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUxMTA0MjI0NzM5WhcNMjUxMTExMjI0NzM5WjAYMRYwFAYD VQQDEw02OTBhODI4Yi1mMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/Zm9owJshQykxGRXn5eq8Zkn4cirHY1+I+6PCPu47RwQxDnUHDONePOxHvH 12w9TLlXayHePTJrGqw09kO7Q92C5yolPN7tznqe8J4HTiCeXD/UjipWIlEe/R2N Cvsw1NGdY/Y9q9NwsdkV+PndYUddUH3vymqZ31FsOPeBxDTeqRm4quwjWI6UcS8W So1IUur4lXSvRZb11F2RRO0z2VWdw1TOvb58yURbHR6cA71ZA5M0/yJj7w1ZNdJt 0fI8GZ/rjmg/DITVhwQ32wBMVpQ+ifzjooPm2TEy0hn5lTNjO6SmIUqfKIovSThs 4N4eVNFqiAkW1CXSdw40xkxHIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVReN4o dpN+bRVSAhET989BLcQUMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDdxNR8a2+U7IHEOP1wVwn+iSeENdnxZTB3MJyz29LuOgX+oWjJnzl t+CnWEGmToFeHVldSavGSSummx8L5r6Mm4CxdsX+9e/m1NADHbgCCgR9imjlrz+m tkm055DPiVWwaiRubpHbEKygC1TyumdA2SwCM8tUy6TIxSeXP1IOwm1W3ifC7fBZ 58QUWsnbFkbTc+nBSWb+ORfsbJ/tbvVOHaNlPPU2HOjgSYJisGfFn68F3m/HWsKQ SZ5kukgyllozb3Ap58Yjs0Vs0TKCR6opt6jVeXZuaAv+CChiT2MxyCamSByXdVW+ ONvTXxEW7YDQTwarttYsfydBoui6LPKs -----END CERTIFICATE-----Generated at Wed Nov 5 15:26:16 2025 by rpki-client