$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: VS9ti8dic3MZqCIZFLzYWwe1iTg3Hnf5bpbYX3AJi9Q= Subject key identifier: 02:81:30:12:3D:D8:F1:DC:CA:30:C5:16:CA:B4:53:3D:BE:02:C1:91 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C81 Signing time: Tue 04 Nov 2025 18:37:47 +0000 Manifest this update: Tue 04 Nov 2025 18:37:46 +0000 Manifest next update: Tue 11 Nov 2025 18:37:46 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: 6FMrEMpxmbT705hr41FY5NQfZnCFfV5Isl7JUqTIX5U=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: OzJN0re3xgLzOjNQ/4EO/Q5rjMxHo1x+d+hZ2rjf3vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Nov 4 18:37:46 2025 GMT Not After : Nov 11 18:37:46 2025 GMT Subject: CN=690a47fa-6908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a6:f7:8f:72:96:e5:3f:0a:77:ce:cc:c8:27: 41:13:3c:ec:d6:22:c7:f0:78:db:99:14:ea:2e:2d: e1:dc:d8:88:98:bb:83:22:1b:bf:30:b8:3c:b7:be: 8d:2e:ec:a0:e8:8a:cd:ce:c5:4e:fb:f8:74:80:5e: f8:7b:c1:33:de:1a:ed:a4:92:b0:72:8c:52:ec:20: bd:3d:0e:88:7c:bf:fa:8e:eb:37:0b:b4:14:6d:dc: f8:7a:cb:25:d0:c3:af:9c:45:e2:06:a2:e2:1a:0a: 09:55:7c:a7:8d:01:fb:13:91:28:82:8e:3c:62:96: a6:c5:ca:bc:32:c0:b7:c5:72:93:64:85:b1:ca:1d: a7:ee:ee:48:f4:09:a6:78:40:fc:e8:f1:da:28:fa: 6a:ee:b3:ad:22:df:9e:d9:31:82:f1:0a:0d:ec:83: 51:d0:ea:ee:57:29:6d:8d:df:13:1c:7b:02:8c:a0: c5:aa:96:06:e1:90:00:bf:a2:bc:3b:34:de:87:8e: ed:99:64:14:f6:fc:58:0a:1e:94:d6:95:c7:a3:01: af:28:b0:f0:be:7a:6f:df:8a:f1:ab:46:05:1e:e6: ba:72:88:a4:56:2c:56:e0:8a:66:6b:a2:0d:dc:cf: 94:2c:e8:1b:1c:97:08:11:b8:ea:09:43:0b:bd:ed: bd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:81:30:12:3D:D8:F1:DC:CA:30:C5:16:CA:B4:53:3D:BE:02:C1:91 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a0:63:ed:43:cd:0c:f1:cf:7e:52:e5:fd:0a:0a:43:03:95: 41:da:c1:5e:31:71:89:2b:d5:5b:52:da:19:14:4b:ff:a1:ce: f6:87:45:d0:ff:8d:93:52:95:86:8a:a9:dd:94:f6:c3:ef:df: 0d:7a:17:17:39:1f:f0:9c:f7:ef:e3:ee:af:49:8f:e4:26:62: 9e:30:d8:a1:ad:22:16:51:f0:e2:d0:62:d0:b3:00:cb:bf:aa: bc:c3:5d:2d:5a:9b:65:fd:06:5a:74:33:75:73:50:f1:63:73: 5c:1a:9d:a4:e7:f5:05:3f:17:e2:fb:2a:27:d9:75:ee:ac:ec: 8a:6b:44:6e:ff:ae:0b:52:e7:d9:d2:65:2a:21:1d:c7:2d:ba: ea:b5:86:6e:eb:2c:a5:50:c5:e7:c5:a7:3a:15:bd:8d:1c:86: 95:7c:25:4c:61:81:0a:26:dd:50:78:33:49:65:4e:f5:b5:25: bd:36:50:9a:80:4c:df:f7:fa:aa:aa:a8:52:a1:47:dc:a9:4b: 5c:dd:1f:c6:ad:72:97:54:55:3f:7a:ab:41:6e:6e:0b:c0:b2: 31:f0:e7:b7:ff:86:d5:94:71:4d:e8:ee:4a:ed:64:27:83:89: 9b:89:0f:ec:f4:32:f1:c7:23:f4:76:c3:20:78:7e:21:ca:42: 36:f5:2c:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMTA0MTgzNzQ2WhcNMjUxMTExMTgzNzQ2WjAYMRYwFAYD VQQDEw02OTBhNDdmYS02OTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Kb3j3KW5T8Kd87MyCdBEzzs1iLH8HjbmRTqLi3h3NiImLuDIhu/MLg8t76N Luyg6IrNzsVO+/h0gF74e8Ez3hrtpJKwcoxS7CC9PQ6IfL/6jus3C7QUbdz4essl 0MOvnEXiBqLiGgoJVXynjQH7E5Eogo48Ypamxcq8MsC3xXKTZIWxyh2n7u5I9Amm eED86PHaKPpq7rOtIt+e2TGC8QoN7INR0OruVyltjd8THHsCjKDFqpYG4ZAAv6K8 OzTeh47tmWQU9vxYCh6U1pXHowGvKLDwvnpv34rxq0YFHua6coikVixW4Ipma6IN 3M+ULOgbHJcIEbjqCUMLve29GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKBMBI9 2PHcyjDFFsq0Uz2+AsGRMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnoGPtQ80M8c9+UuX9CgpDA5VB2sFeMXGJK9VbUtoZFEv/oc72h0XQ /42TUpWGiqndlPbD798NehcXOR/wnPfv4+6vSY/kJmKeMNihrSIWUfDi0GLQswDL v6q8w10tWptl/QZadDN1c1DxY3NcGp2k5/UFPxfi+yon2XXurOyKa0Ru/64LUufZ 0mUqIR3HLbrqtYZu6yylUMXnxac6Fb2NHIaVfCVMYYEKJt1QeDNJZU71tSW9NlCa gEzf9/qqqqhSoUfcqUtc3R/GrXKXVFU/eqtBbm4LwLIx8Oe3/4bVlHFN6O5K7WQn g4mbiQ/s9DLxxyP0dsMgeH4hykI29Sxe -----END CERTIFICATE-----Generated at Tue Nov 4 23:38:58 2025 by rpki-client