$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: /k3Bgb3PqHFwFhc2WFEzidZAhnFQL2ZengG1BsVwDAI= Subject key identifier: 07:61:4F:88:3A:C6:38:0D:D0:AA:97:72:EA:57:88:C8:48:01:FC:34 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0C76 Signing time: Tue 04 Nov 2025 18:36:49 +0000 Manifest this update: Tue 04 Nov 2025 18:36:49 +0000 Manifest next update: Tue 11 Nov 2025 18:36:49 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: 9oYcDfWm58s0ytuBGiLMynm/BqqxaTdbholpHC0ub1g=) 2: 172E487A416911ECB6B11742C4F9AE02.roa (hash: jjQzstnlPYenRZWamhU8+OP/S56HuWE5rPwPEoYqLOI=) 3: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: FwxCipQAsBk9UBv8EDrb+Vo/Shz8I+uuiBIqO9LmFMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Nov 4 18:36:49 2025 GMT Not After : Nov 11 18:36:49 2025 GMT Subject: CN=690a47c1-17b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d7:3e:1d:c7:6a:8b:ba:ca:3d:68:b9:5d:0a: 40:01:b4:a7:4a:4f:36:c5:15:a0:bd:ab:04:c5:ae: 8d:f2:4f:29:0f:e1:72:3b:96:03:ef:53:cc:a6:9d: 07:2c:b4:b9:91:3c:46:00:2c:4a:fa:3f:4b:15:3d: 11:a9:c6:9d:73:f1:42:16:99:a4:70:60:a2:86:0a: d2:92:40:e9:4d:71:f7:f6:ee:e7:69:04:8c:34:93: 9a:ff:f4:23:5d:a0:2e:fd:63:53:fc:6b:ed:a2:d2: 12:e0:50:e2:3c:68:f7:33:2d:c0:59:09:04:ce:d5: e9:33:1e:a4:48:f2:bf:7d:9b:b0:91:26:d8:55:ae: fe:09:4c:bc:8a:39:59:12:b1:91:9b:71:3c:17:c2: 0c:5c:de:f7:ee:8b:05:80:f7:28:c4:8b:ff:c3:97: 2f:62:c1:35:46:02:aa:e7:49:71:98:0a:a6:33:8a: 0a:01:97:e8:8a:7f:1c:f5:8c:e3:99:84:4a:c1:2b: f9:5e:5a:25:86:94:76:86:2d:63:41:da:9b:62:6b: 4a:ba:9c:75:6e:c0:75:bf:cd:2e:69:dc:45:c2:a1: 4e:6d:26:d5:29:26:67:3d:eb:cf:60:4d:4c:74:eb: 79:a3:73:3e:f3:72:d6:20:a0:79:62:0f:bb:68:d4: cf:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:61:4F:88:3A:C6:38:0D:D0:AA:97:72:EA:57:88:C8:48:01:FC:34 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:30:3a:b6:35:dd:af:30:a7:c4:71:14:8e:67:cb:47:dc:6b: 6c:f3:47:f4:9c:2f:f6:b5:d2:56:d6:30:93:3f:f0:0c:7e:56: 24:53:bf:53:a9:e8:4c:09:22:f0:6c:78:2d:69:ce:19:3c:b5: c4:8f:8f:09:9b:1e:f3:62:5a:b6:92:6f:1c:24:16:f8:f8:09: a4:c0:33:87:31:2f:41:dc:51:82:65:b7:a3:63:f7:28:93:19: d6:09:24:35:15:7f:93:d0:dd:2c:78:d4:6d:24:65:96:d9:21: 31:58:01:dc:da:3c:ef:6a:e9:58:df:77:85:ba:68:e1:f2:01: 21:91:b1:07:51:0a:76:e5:7d:d0:b5:6b:6f:f2:d1:bd:0a:db: 0b:75:5e:ad:f7:1d:e9:3c:9d:39:3d:4e:33:2c:9f:2d:27:eb: 6c:5f:11:81:8b:53:e6:8b:78:55:31:8e:27:aa:27:72:30:f9: 10:67:e0:8d:7f:66:61:2e:44:90:c4:48:ba:7b:38:6d:97:51: 73:5c:ee:65:a8:8e:c4:fe:ee:42:1d:80:48:65:80:6e:75:f7: ed:92:a8:93:89:f8:5e:da:55:91:b5:eb:bf:ca:40:31:98:37: cc:76:1d:cf:9d:7e:2a:3b:f2:79:02:8a:7b:51:bb:0e:fa:f2: 2e:c3:34:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUxMTA0MTgzNjQ5WhcNMjUxMTExMTgzNjQ5WjAYMRYwFAYD VQQDEw02OTBhNDdjMS0xN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49c+Hcdqi7rKPWi5XQpAAbSnSk82xRWgvasExa6N8k8pD+FyO5YD71PMpp0H LLS5kTxGACxK+j9LFT0Rqcadc/FCFpmkcGCihgrSkkDpTXH39u7naQSMNJOa//Qj XaAu/WNT/GvtotIS4FDiPGj3My3AWQkEztXpMx6kSPK/fZuwkSbYVa7+CUy8ijlZ ErGRm3E8F8IMXN737osFgPcoxIv/w5cvYsE1RgKq50lxmAqmM4oKAZfoin8c9Yzj mYRKwSv5XlolhpR2hi1jQdqbYmtKupx1bsB1v80uadxFwqFObSbVKSZnPevPYE1M dOt5o3M+83LWIKB5Yg+7aNTPOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdhT4g6 xjgN0KqXcupXiMhIAfw0MB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiMDq2Nd2vMKfEcRSOZ8tH3Gts80f0nC/2tdJW1jCTP/AMflYkU79T qehMCSLwbHgtac4ZPLXEj48Jmx7zYlq2km8cJBb4+AmkwDOHMS9B3FGCZbejY/co kxnWCSQ1FX+T0N0seNRtJGWW2SExWAHc2jzvaulY33eFumjh8gEhkbEHUQp25X3Q tWtv8tG9CtsLdV6t9x3pPJ05PU4zLJ8tJ+tsXxGBi1Pmi3hVMY4nqidyMPkQZ+CN f2ZhLkSQxEi6ezhtl1FzXO5lqI7E/u5CHYBIZYBudfftkqiTifhe2lWRteu/ykAx mDfMdh3PnX4qO/J5Aop7UbsO+vIuwzSz -----END CERTIFICATE-----Generated at Wed Nov 5 13:50:59 2025 by rpki-client