$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft File: h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft (raw, json) Hash identifier: wnmlAGyep3uJEyYiH8jJqydQEGal9HYXLuSczyM0hI0= Subject key identifier: 19:8E:C0:80:60:A2:FA:7F:F7:0B:54:31:C6:7B:5C:3F:8D:02:7A:AE Authority key identifier: 87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 Certificate issuer: /CN=A9174880/serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft Manifest number: 34DF Signing time: Tue 04 Nov 2025 14:16:43 +0000 Manifest this update: Tue 04 Nov 2025 14:16:42 +0000 Manifest next update: Tue 11 Nov 2025 14:16:42 +0000 Files and hashes: 1: h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl (hash: 6PJsLCWkTTpqwLLwcRsLHDCHeg5/VoMu77B5C//WJP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Validity Not Before: Nov 4 14:16:42 2025 GMT Not After : Nov 11 14:16:42 2025 GMT Subject: CN=690a0acb-212f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:88:51:b1:5e:9c:72:03:a9:9d:47:21:d0: 5d:14:98:53:17:1f:43:cf:86:26:33:71:33:f3:80: 88:d7:0b:38:1a:b2:bc:9e:fa:c2:36:85:4e:cd:82: 96:25:fd:49:6f:13:91:f7:5e:03:85:63:9a:ca:e8: 8c:89:c6:7c:11:3f:ca:d7:41:33:65:28:17:96:d1: 5e:3f:5e:bb:4a:75:d0:05:17:a9:e1:2e:0e:1e:28: 8a:35:1d:52:9c:e5:12:d9:cd:8d:f2:0e:ec:98:ae: 20:f5:8c:fa:0e:7f:43:73:cc:04:7a:96:f5:a1:48: 89:64:ad:32:93:74:67:d6:f4:28:fa:06:1f:cf:0d: e7:f4:3f:51:54:fc:51:71:c3:1e:10:07:3b:03:7a: a1:ec:d5:c2:c7:0f:d8:6d:69:95:e8:5e:16:bb:bc: 02:c9:83:55:7e:f4:dc:56:18:c8:15:10:4a:13:b9: 08:f4:77:a1:25:c8:34:1a:49:90:d6:8f:89:ec:c1: 0b:8a:23:f0:6a:dd:65:89:dc:2f:be:02:93:78:9d: 88:06:32:7b:64:8a:ee:52:30:d3:f0:a7:ed:d3:1d: 19:97:67:bf:9d:46:51:21:13:87:c9:01:08:7c:39: 3e:a0:f1:4f:ab:f7:f9:f1:04:af:06:53:5b:9c:82: a0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8E:C0:80:60:A2:FA:7F:F7:0B:54:31:C6:7B:5C:3F:8D:02:7A:AE X509v3 Authority Key Identifier: keyid:87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:5e:0f:c7:a5:b6:a0:d8:a9:1a:42:13:e2:4c:62:31:c0:d6: 2a:93:fd:31:ad:39:a7:d9:c6:8d:5d:81:23:e8:fd:10:97:c5: d3:2b:63:00:c0:56:aa:62:6f:46:b0:fb:67:23:ba:cf:b9:1b: f3:95:2f:c9:7d:da:84:d6:14:d9:80:fb:90:ad:07:8d:9e:42: 9a:b6:e9:fd:00:a6:9f:52:f5:61:4e:bc:91:17:73:4d:a5:69: e5:61:27:39:bc:ad:b5:92:09:7e:b2:dc:65:4d:ee:25:22:5c: b6:1b:59:ff:84:fd:1b:cc:ed:67:a5:e9:33:97:da:e6:2a:f5: e3:79:1d:21:29:a3:ef:4e:a3:8c:ed:63:61:53:26:e6:e9:e2: 4b:10:bb:1f:e0:5b:3e:40:4a:bd:ef:71:fb:41:f1:b5:29:8e: 59:37:92:3d:92:16:52:60:d2:25:45:a5:8c:0e:02:1a:fd:99: 4c:9c:ef:27:0d:4f:b5:d3:7c:50:b3:32:27:1d:fb:51:e2:04: 61:72:cc:d6:ba:fa:8a:db:df:b2:4b:f0:11:08:fe:43:4e:a5: a6:a4:ea:e9:37:0c:c2:35:66:f7:1f:8f:72:bd:a3:6d:70:4d: db:ae:0d:ce:8d:a1:ff:a3:f0:2b:9c:a5:55:ee:be:ad:8c:b2: a9:37:52:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDg3OTA2MjUwM0ZEMjA4NDY2Rjc0RUE5QUY4NzY3MEE4 N0Q4NkE3MzYwHhcNMjUxMTA0MTQxNjQyWhcNMjUxMTExMTQxNjQyWjAYMRYwFAYD VQQDEw02OTBhMGFjYi0yMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01CIUbFenHIDqZ1HIdBdFJhTFx9Dz4YmM3Ez84CI1ws4GrK8nvrCNoVOzYKW Jf1JbxOR914DhWOayuiMicZ8ET/K10EzZSgXltFeP167SnXQBRep4S4OHiiKNR1S nOUS2c2N8g7smK4g9Yz6Dn9Dc8wEepb1oUiJZK0yk3Rn1vQo+gYfzw3n9D9RVPxR ccMeEAc7A3qh7NXCxw/YbWmV6F4Wu7wCyYNVfvTcVhjIFRBKE7kI9HehJcg0GkmQ 1o+J7MELiiPwat1lidwvvgKTeJ2IBjJ7ZIruUjDT8Kft0x0Zl2e/nUZRIROHyQEI fDk+oPFPq/f58QSvBlNbnIKgZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmOwIBg ovp/9wtUMcZ7XD+NAnquMB8GA1UdIwQYMBaAFIeQYlA/0ghGb3Tqmvh2cKh9hqc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC84NDZFQzA0MDFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NFWnZkT3FhLUhad3FIMkdw elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2g1QmlVRF9TQ0VadmRPcWEtSFp3cUgyR3B6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC84NDZFQzA0MDFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NF WnZkT3FhLUhad3FIMkdwelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGXg/Hpbag2KkaQhPiTGIxwNYqk/0xrTmn2caNXYEj6P0Ql8XTK2MA wFaqYm9GsPtnI7rPuRvzlS/JfdqE1hTZgPuQrQeNnkKatun9AKafUvVhTryRF3NN pWnlYSc5vK21kgl+stxlTe4lIly2G1n/hP0bzO1npekzl9rmKvXjeR0hKaPvTqOM 7WNhUybm6eJLELsf4Fs+QEq973H7QfG1KY5ZN5I9khZSYNIlRaWMDgIa/ZlMnO8n DU+103xQszInHftR4gRhcszWuvqK29+yS/ARCP5DTqWmpOrpNwzCNWb3H49yvaNt cE3brg3OjaH/o/ArnKVV7r6tjLKpN1KP -----END CERTIFICATE-----Generated at Wed Nov 5 20:51:50 2025 by rpki-client