$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: GuGD1s+vGd+ijwp9fpAmXf2++bPijgT018eAeEdLM2w= Subject key identifier: 4C:82:0E:0E:7A:AE:56:21:9E:26:2D:4D:C6:64:52:DA:3E:C7:98:96 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0C8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C7E Signing time: Tue 04 Nov 2025 18:32:56 +0000 Manifest this update: Tue 04 Nov 2025 18:32:56 +0000 Manifest next update: Tue 11 Nov 2025 18:32:56 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: BYacsvTdgU1qpw26eFPeDEsrW5oF+Zq8xCYT1146KzM=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: bP4mtdPcC9gJRT9cgoHrxBppsqMyFJRwGR6OCAipZzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Nov 4 18:32:56 2025 GMT Not After : Nov 11 18:32:56 2025 GMT Subject: CN=690a46d8-4546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ef:98:3a:c1:12:25:ce:cb:cd:2b:9e:e3:fb: 84:98:87:a2:16:d7:3d:59:00:73:b1:66:58:33:a6: 04:80:72:5e:2a:5d:3e:0c:14:e7:51:30:a8:8a:ce: fa:8d:6b:c0:e2:31:66:4f:a4:36:79:af:58:60:33: b7:e2:11:ea:18:a5:ea:3f:35:aa:24:6a:e1:a3:64: 51:61:21:b9:c2:d3:ea:45:aa:1c:8f:e6:6a:60:9d: ab:0e:81:6a:ed:12:61:c5:c7:96:af:04:24:08:96: e6:79:27:19:d2:92:76:50:5a:37:9d:a8:c2:43:2d: 62:30:62:c9:8f:ea:4d:2f:3b:82:e4:27:87:61:55: e0:9f:38:aa:39:1c:ff:7c:51:1d:32:e0:8a:8f:b6: af:5f:d9:75:0c:c5:bd:30:5a:9b:49:db:a2:75:84: e6:a6:16:39:ff:56:35:a7:9a:2f:d6:f3:31:5e:38: 0b:c3:e6:e2:2c:d5:45:08:b3:0a:a8:de:3d:54:86: 0b:0e:3a:b6:69:80:2c:cd:a0:9d:7b:cc:57:08:42: 49:00:58:38:90:aa:50:56:41:18:d4:32:78:4e:31: 2a:14:41:52:cc:b6:54:41:71:c3:1d:36:ff:6e:dd: b3:d0:20:8d:c2:7d:1b:74:f0:9e:bf:f3:ac:61:5d: f5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:82:0E:0E:7A:AE:56:21:9E:26:2D:4D:C6:64:52:DA:3E:C7:98:96 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:af:09:14:db:c1:5a:8d:17:c0:98:e0:4c:c9:16:fb:41:f3: 93:e4:3b:98:3b:5c:80:59:ae:f0:67:f7:40:bb:ff:ea:9c:2f: ba:21:3d:0b:c9:78:f6:59:23:8e:bc:b4:14:21:52:46:02:1f: 1c:fd:39:d0:d4:87:bb:1c:34:5b:3e:ec:d8:a3:1f:94:43:43: a3:8a:69:50:d7:41:c4:bf:1a:18:0d:cd:ae:ed:a9:92:6a:48: 69:2c:ea:d1:80:8c:74:b3:07:7d:ea:2f:74:5b:e0:f9:55:48: ab:9f:58:ec:d4:df:f9:71:f4:79:bd:e5:38:c6:51:1a:dd:39: cb:a5:0a:66:60:1b:c6:89:05:d9:5c:0d:8d:2d:46:ee:18:78: 0c:0d:7e:2d:95:2c:22:99:01:89:dd:89:50:b1:c1:5b:b6:be: de:21:e2:2d:5b:94:f9:5e:6e:7a:e4:e9:c3:d3:29:2a:cd:06: 98:01:3c:6b:bb:f0:41:57:ca:51:cb:c4:bc:fb:df:ca:87:d5: b4:37:12:9b:d9:3e:ce:27:9b:41:3f:aa:ac:b5:eb:b3:5e:73: 57:dc:9c:f1:1e:b0:c8:c0:84:12:1b:05:af:ae:de:bd:73:be: 78:9d:be:dd:a6:91:cd:b3:65:47:8b:72:06:f3:91:dd:3a:fe: 74:95:f9:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUxMTA0MTgzMjU2WhcNMjUxMTExMTgzMjU2WjAYMRYwFAYD VQQDEw02OTBhNDZkOC00NTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyO+YOsESJc7LzSue4/uEmIeiFtc9WQBzsWZYM6YEgHJeKl0+DBTnUTCois76 jWvA4jFmT6Q2ea9YYDO34hHqGKXqPzWqJGrho2RRYSG5wtPqRaocj+ZqYJ2rDoFq 7RJhxceWrwQkCJbmeScZ0pJ2UFo3najCQy1iMGLJj+pNLzuC5CeHYVXgnziqORz/ fFEdMuCKj7avX9l1DMW9MFqbSduidYTmphY5/1Y1p5ov1vMxXjgLw+biLNVFCLMK qN49VIYLDjq2aYAszaCde8xXCEJJAFg4kKpQVkEY1DJ4TjEqFEFSzLZUQXHDHTb/ bt2z0CCNwn0bdPCev/OsYV31PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyCDg56 rlYhniYtTcZkUto+x5iWMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCrwkU28FajRfAmOBMyRb7QfOT5DuYO1yAWa7wZ/dAu//qnC+6IT0L yXj2WSOOvLQUIVJGAh8c/TnQ1Ie7HDRbPuzYox+UQ0OjimlQ10HEvxoYDc2u7amS akhpLOrRgIx0swd96i90W+D5VUirn1js1N/5cfR5veU4xlEa3TnLpQpmYBvGiQXZ XA2NLUbuGHgMDX4tlSwimQGJ3YlQscFbtr7eIeItW5T5Xm565OnD0ykqzQaYATxr u/BBV8pRy8S8+9/Kh9W0NxKb2T7OJ5tBP6qsteuzXnNX3JzxHrDIwIQSGwWvrt69 c754nb7dppHNs2VHi3IG85HdOv50lfmZ -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:24 2025 by rpki-client