$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: dOUk3LK0JIv3GPoMYW7cwf65ZxhX/LFSdydbB+F2oJ4= Subject key identifier: 9E:31:8B:AA:8D:47:9A:D9:C4:F3:DC:05:A0:60:38:66:CF:E3:0A:AA Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: E8 Signing time: Wed 05 Nov 2025 05:36:33 +0000 Manifest this update: Wed 05 Nov 2025 05:36:32 +0000 Manifest next update: Wed 12 Nov 2025 05:36:32 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: D0krBnNvC85LY4rUmTXnfZyuIAo2fi0Z+H+hIZEhyvM=) 2: 13435546ABF211F0BA77FA0DC4F9AE02.roa (hash: q/F51LSqhdUzQ5wuFfu2jC3x+BTiobOoytHd+JzEAJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Nov 5 05:36:32 2025 GMT Not After : Nov 12 05:36:32 2025 GMT Subject: CN=690ae260-e3cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:14:3d:32:bb:60:de:a2:3c:1a:4f:0b:72: c3:ff:8c:54:30:9b:cf:69:c3:c8:a8:f8:7a:d6:04: 2e:f7:bf:ba:5e:8a:db:30:a7:95:c4:cd:8d:90:e2: 9e:d9:e8:c2:53:c0:84:de:dd:52:b6:13:fb:7a:a5: 34:80:69:eb:b8:f2:ee:3f:1d:72:be:f3:b3:0a:38: ad:79:de:97:96:c3:96:d8:64:6f:ab:48:6e:4e:95: f3:fb:42:d5:6d:9a:2e:78:67:48:b7:9a:ce:72:35: d8:11:f7:20:19:8e:c0:41:48:bd:25:78:fe:ab:29: 23:74:f2:59:c4:8a:8a:b9:11:36:c1:28:e3:4d:21: 14:24:c6:8a:c9:c5:0f:d9:30:f4:37:e9:bd:2a:70: b1:65:68:4f:e1:69:0c:8e:85:f6:71:15:5f:f5:54: 4b:83:50:30:6a:39:bc:35:d0:55:e7:31:7d:a2:99: 56:a2:3e:2e:ce:8d:aa:f7:7d:5c:1e:af:44:ea:b6: 05:ee:74:3f:32:d7:a2:1e:8e:f7:80:ec:d2:a4:32: ab:7d:fa:12:02:c3:60:36:a1:61:f8:f8:1c:f2:58: d7:58:79:5a:ee:6d:fc:0a:68:39:db:7f:53:d5:65: 89:26:4d:de:2f:d7:da:ff:53:7d:b7:c9:74:c7:8c: 25:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:31:8B:AA:8D:47:9A:D9:C4:F3:DC:05:A0:60:38:66:CF:E3:0A:AA X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:ee:72:60:37:fb:14:b0:bd:15:54:31:61:2a:4b:a5:a2:1f: 80:25:e0:17:39:07:6c:77:41:9a:fc:d4:a2:e8:16:a9:85:3b: 43:6b:40:ce:e2:7c:25:5d:a4:eb:d3:1a:ef:a2:37:31:d5:99: d7:6a:f2:7d:a7:1a:dd:2e:88:b3:7c:52:b6:1a:33:aa:c1:cf: 6a:84:ec:07:be:b7:a4:b6:f0:8b:3f:26:22:e7:ff:6b:93:33: f8:0f:ce:66:e1:e9:45:86:2e:56:86:2c:93:c9:6b:07:09:fe: 43:f6:e2:93:2f:86:29:45:dc:e2:65:38:89:d9:e5:07:41:0f: 56:14:e8:a6:ce:91:a5:c9:85:75:6e:76:49:c9:b8:70:e1:29: 96:fa:69:7f:53:70:9f:df:aa:df:2b:e9:bf:c9:90:e9:69:51: d5:2d:0f:1d:d4:b7:92:50:61:ec:13:11:95:7a:cb:ea:d6:48: d6:21:79:ab:36:1c:83:ec:00:50:56:c2:ee:6a:97:4c:e6:5a: 5c:a6:e2:4d:00:7f:a3:9b:28:23:89:44:9a:7e:19:fb:bf:d7: 11:55:28:9d:90:d6:96:b8:b3:ad:67:27:5a:f9:e0:28:96:1b: 09:d4:3c:6d:8f:e6:da:be:6b:97:9b:2f:9a:a7:c9:a1:b9:df: d6:2d:3e:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUxMTA1MDUzNjMyWhcNMjUxMTEyMDUzNjMyWjAYMRYwFAYD VQQDEw02OTBhZTI2MC1lM2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7YUPTK7YN6iPBpPC3LD/4xUMJvPacPIqPh61gQu97+6XorbMKeVxM2NkOKe 2ejCU8CE3t1SthP7eqU0gGnruPLuPx1yvvOzCjited6XlsOW2GRvq0huTpXz+0LV bZoueGdIt5rOcjXYEfcgGY7AQUi9JXj+qykjdPJZxIqKuRE2wSjjTSEUJMaKycUP 2TD0N+m9KnCxZWhP4WkMjoX2cRVf9VRLg1Awajm8NdBV5zF9oplWoj4uzo2q931c Hq9E6rYF7nQ/MteiHo73gOzSpDKrffoSAsNgNqFh+Pgc8ljXWHla7m38Cmg5239T 1WWJJk3eL9fa/1N9t8l0x4wlGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4xi6qN R5rZxPPcBaBgOGbP4wqqMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB57nJgN/sUsL0VVDFhKkuloh+AJeAXOQdsd0Ga/NSi6BaphTtDa0DO 4nwlXaTr0xrvojcx1ZnXavJ9pxrdLoizfFK2GjOqwc9qhOwHvrektvCLPyYi5/9r kzP4D85m4elFhi5WhiyTyWsHCf5D9uKTL4YpRdziZTiJ2eUHQQ9WFOimzpGlyYV1 bnZJybhw4SmW+ml/U3Cf36rfK+m/yZDpaVHVLQ8d1LeSUGHsExGVesvq1kjWIXmr NhyD7ABQVsLuapdM5lpcpuJNAH+jmygjiUSafhn7v9cRVSidkNaWuLOtZyda+eAo lhsJ1Dxtj+bavmuXmy+ap8mhud/WLT5J -----END CERTIFICATE-----Generated at Wed Nov 5 16:28:46 2025 by rpki-client