$ rpki-client -vvf rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft File: Hte4fPVriwDuFD5GlnhQOBTl-lM.mft (raw, json) Hash identifier: 6xR0totU2yGTKSou4KwXs/lt9C9E6ZcG+8TEjD3iHrU= Subject key identifier: E5:A8:D0:1F:CD:50:40:8C:BC:75:55:AD:E4:91:28:54:EA:AE:4E:1E Authority key identifier: 1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 Certificate issuer: /CN=A914C0F5/serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Certificate serial: 062E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft Manifest number: 0625 Signing time: Tue 04 Nov 2025 22:53:53 +0000 Manifest this update: Tue 04 Nov 2025 22:53:52 +0000 Manifest next update: Tue 11 Nov 2025 22:53:52 +0000 Files and hashes: 1: Hte4fPVriwDuFD5GlnhQOBTl-lM.crl (hash: +r5mdTKbgoIs/GsINkH8HzTO33+8BhIS8fGULX45X6U=) 2: 694F9F9CBE2811EBBB48FF52C4F9AE02.roa (hash: iTUFdSRp6nWyaxTUI/RtXuC6V6TbUSDHt+jDf6Dd89Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C0F5, serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Validity Not Before: Nov 4 22:53:52 2025 GMT Not After : Nov 11 22:53:52 2025 GMT Subject: CN=690a8401-f79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:76:8b:62:d5:e6:5e:33:3a:20:9c:38:a6: 7f:7f:01:e9:0c:4c:82:b8:97:60:c2:8b:46:4c:6c: c6:e0:f6:f0:c2:a8:15:95:f4:c7:99:14:24:e4:8d: 78:70:5e:ba:36:65:24:7b:a6:45:40:a4:89:0c:94: 5f:dd:ab:6f:98:29:9f:50:98:d0:79:8a:2c:76:73: 84:62:be:1a:30:17:73:7e:c4:b3:db:f7:7c:ff:5a: 26:f1:c9:1d:af:d4:79:a2:a0:c5:8c:e4:4a:c1:6e: 0e:d6:7d:b2:e1:38:3c:11:91:ad:15:ba:80:cd:fe: 2f:f9:9e:72:b8:30:79:3d:a8:2a:68:1d:13:b4:f5: bf:0d:f2:4a:2f:00:15:45:5b:0d:62:cb:25:fb:5e: b2:24:2e:d5:c2:03:66:68:6e:dd:04:b8:dd:c9:4c: 63:d8:15:80:0f:b5:c4:93:74:3e:25:d7:a7:63:46: 15:4d:2f:eb:45:47:ec:a1:29:7c:df:36:45:f1:38: 61:2b:9f:7c:67:d8:44:d0:b0:f2:95:94:67:7d:b5: 5b:4c:bc:45:a9:26:35:b4:df:dd:e4:80:f7:4c:5e: e4:d7:69:52:2a:3e:c2:b0:39:e9:36:5e:5f:57:43: 24:4a:2d:53:8a:9c:7f:51:71:c4:be:e7:eb:0c:d6: 77:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A8:D0:1F:CD:50:40:8C:BC:75:55:AD:E4:91:28:54:EA:AE:4E:1E X509v3 Authority Key Identifier: keyid:1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7e:45:e8:27:0f:66:cf:c8:62:a9:8a:8b:df:ac:91:99:eb: 22:6c:b5:3b:2c:17:4b:7a:a3:6a:b5:45:16:c2:83:f1:68:f2: 38:65:b5:03:d7:ab:df:4a:4e:be:62:f7:8f:7a:07:82:94:32: 85:da:57:d8:8a:46:19:96:99:6a:37:33:f9:5e:a8:00:83:d4: 0e:0d:c5:7b:4f:56:1c:cf:63:5c:7c:fb:0b:c3:a3:11:f9:97: f9:14:2d:89:b1:77:13:18:ab:b6:d4:93:4f:ac:32:8e:e5:3f: 41:ce:b7:e6:4d:e8:88:24:d5:a0:9e:bf:f0:b6:cf:fd:c2:0c: 8b:2a:45:18:7b:55:da:ce:e5:3c:71:c0:46:2f:a0:d5:42:9d: c8:8a:1a:4c:ab:21:dd:b7:35:8c:37:a3:43:47:40:06:4c:10: 15:4f:7e:dd:7e:ff:7f:64:9b:2e:52:ef:83:fa:68:ac:6f:4b: e7:2f:7d:01:71:32:b1:6e:c2:41:33:43:bf:80:e1:98:c9:37: ff:b8:0d:4f:7b:6c:95:65:e3:12:43:09:8b:98:cc:33:1d:2b: 39:36:ce:c2:ab:2d:2c:a1:45:a1:79:d1:0a:1b:ce:b4:e9:3b: ca:38:72:7e:71:82:a1:03:dd:33:69:07:86:95:0b:1a:24:b6: 14:ce:2c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwRjUxMTAvBgNVBAUTKDFFRDdCODdDRjU2QjhCMDBFRTE0M0U0Njk2Nzg1MDM4 MTRFNUZBNTMwHhcNMjUxMTA0MjI1MzUyWhcNMjUxMTExMjI1MzUyWjAYMRYwFAYD VQQDEw02OTBhODQwMS1mNzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5J2i2LV5l4zOiCcOKZ/fwHpDEyCuJdgwotGTGzG4PbwwqgVlfTHmRQk5I14 cF66NmUke6ZFQKSJDJRf3atvmCmfUJjQeYosdnOEYr4aMBdzfsSz2/d8/1om8ckd r9R5oqDFjORKwW4O1n2y4Tg8EZGtFbqAzf4v+Z5yuDB5PagqaB0TtPW/DfJKLwAV RVsNYssl+16yJC7VwgNmaG7dBLjdyUxj2BWAD7XEk3Q+JdenY0YVTS/rRUfsoSl8 3zZF8ThhK598Z9hE0LDylZRnfbVbTLxFqSY1tN/d5ID3TF7k12lSKj7CsDnpNl5f V0MkSi1Tipx/UXHEvufrDNZ3dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWo0B/N UECMvHVVreSRKFTqrk4eMB8GA1UdIwQYMBaAFB7XuHz1a4sA7hQ+RpZ4UDgU5fpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzBGNS9ERjAxM0EzMkJF MjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3RHVGRDVHbG5oUU9CVGwt bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZTRmUFZyaXdEdUZENUdsbmhRT0JUbC1sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzBGNS9ERjAxM0EzMkJFMjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3 RHVGRDVHbG5oUU9CVGwtbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOfkXoJw9mz8hiqYqL36yRmesibLU7LBdLeqNqtUUWwoPxaPI4ZbUD 16vfSk6+YvePegeClDKF2lfYikYZlplqNzP5XqgAg9QODcV7T1Ycz2NcfPsLw6MR +Zf5FC2JsXcTGKu21JNPrDKO5T9BzrfmTeiIJNWgnr/wts/9wgyLKkUYe1XazuU8 ccBGL6DVQp3IihpMqyHdtzWMN6NDR0AGTBAVT37dfv9/ZJsuUu+D+misb0vnL30B cTKxbsJBM0O/gOGYyTf/uA1Pe2yVZeMSQwmLmMwzHSs5Ns7Cqy0soUWhedEKG860 6TvKOHJ+cYKhA90zaQeGlQsaJLYUziwh -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:22 2025 by rpki-client