$ rpki-client -vvf rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft File: ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft (raw, json) Hash identifier: xq+NrTD19UN/vo/7r+jbtHMxucOY3XDVtfevWHlduJY= Subject key identifier: E5:5F:A6:5D:9F:93:79:FF:47:A8:10:F9:EB:28:5A:9C:80:84:75:02 Authority key identifier: 6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 Certificate issuer: /CN=A919C451/serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft Manifest number: 0C8D Signing time: Tue 04 Nov 2025 18:28:42 +0000 Manifest this update: Tue 04 Nov 2025 18:28:41 +0000 Manifest next update: Tue 11 Nov 2025 18:28:41 +0000 Files and hashes: 1: ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl (hash: S6SEqgl2ztcOXYxw5nRZAz6FMn2OEbuy2D+6P4ZV3uc=) 2: F0208B2012BC11EBB3294950C4F9AE02.roa (hash: YAZVPBwhRd3Zwtu+5mGrhQ3oIunZzsRzOetYRLfqDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C451, serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Validity Not Before: Nov 4 18:28:41 2025 GMT Not After : Nov 11 18:28:41 2025 GMT Subject: CN=690a45d9-5e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d1:61:db:f0:93:7b:9b:db:7e:7d:d1:c4:af: f6:58:65:f9:e0:fe:07:6e:92:3e:eb:da:4b:a5:11: e6:01:76:53:8e:07:96:d5:3e:c4:9a:c7:3f:89:b8: ec:c9:b4:9a:f3:b9:58:6e:3f:d3:ad:72:34:58:be: 70:66:09:10:cf:11:26:43:76:c2:b9:c3:d5:02:ed: 78:8c:0c:d2:57:fb:b8:37:5a:9a:99:8b:5a:c7:f4: 87:63:0f:11:10:ce:83:df:f5:5f:75:42:57:61:b9: fe:92:bc:3b:75:9b:d3:01:48:c2:46:a1:cb:91:7d: 33:6c:98:18:48:e5:d2:40:8b:66:4a:20:87:b9:e8: d5:02:4b:2b:b4:55:9c:df:20:ff:f9:a5:a1:da:7f: ed:1c:7b:e9:04:33:c3:f6:e3:04:da:cd:50:3b:fd: c3:3d:3a:d8:9b:83:fb:2d:59:5e:fd:dd:88:34:b7: 4f:27:ba:55:00:a1:5d:45:01:68:6b:e1:63:a3:b2: 9d:c3:78:9c:33:15:6e:25:50:8b:38:27:5e:73:c0: 9a:0f:62:82:6d:71:5e:ad:c4:bb:63:c4:fa:06:0d: 4c:de:97:db:e0:c3:e6:d7:ce:9e:f8:3f:ad:8e:c8: cf:39:75:65:d0:5d:6a:00:02:b3:b4:26:34:02:9f: 15:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5F:A6:5D:9F:93:79:FF:47:A8:10:F9:EB:28:5A:9C:80:84:75:02 X509v3 Authority Key Identifier: keyid:6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:6e:c0:f2:96:0a:d7:a1:2e:6a:d3:d0:ac:0d:fc:35:71:87: ad:da:64:d5:6e:a1:0d:53:10:3c:86:99:bc:31:04:17:8a:32: af:3e:66:9e:ce:4f:48:da:71:42:cc:45:74:fc:0b:4f:5a:b2: e5:49:98:d7:1a:2c:fb:3e:29:18:1c:c2:4b:7c:f9:10:aa:2e: 4f:58:e2:92:dc:34:64:71:c1:52:c3:09:df:f9:6b:7d:3e:eb: f8:16:9e:bf:1c:44:7f:0e:b8:d4:71:46:b8:1e:e2:12:26:54: eb:5f:4e:fb:47:53:3b:ff:71:64:a8:b0:02:a0:74:be:15:e5: bd:96:b9:0a:7d:35:e8:49:ed:f8:d6:9f:09:ce:aa:78:13:73: 20:22:0b:f1:02:9f:0e:34:60:8b:a7:5b:74:5b:23:e7:45:a2: 6f:4d:d4:33:02:c9:d5:53:73:73:7d:3d:a0:b7:d9:64:77:b3: a9:a4:6e:5b:56:d2:1d:f5:58:1c:90:1d:1f:0b:16:07:f0:a1: 70:61:0e:53:3b:db:a6:28:94:86:66:26:41:5e:66:69:f4:e4: 4a:bf:3c:47:b0:02:58:c7:dc:19:b4:a3:9c:89:c3:cb:b5:42: 6c:bb:fe:27:75:28:db:a5:67:f3:a7:1f:d4:d9:ea:2c:2a:64: d2:72:b3:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0NTExMTAvBgNVBAUTKDZBMTg1QkY0MTdBMkVCMDJBMTJFMTlENTc1OTBBRDhE MTE4NDc1RjcwHhcNMjUxMTA0MTgyODQxWhcNMjUxMTExMTgyODQxWjAYMRYwFAYD VQQDEw02OTBhNDVkOS01ZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tFh2/CTe5vbfn3RxK/2WGX54P4HbpI+69pLpRHmAXZTjgeW1T7Emsc/ibjs ybSa87lYbj/TrXI0WL5wZgkQzxEmQ3bCucPVAu14jAzSV/u4N1qamYtax/SHYw8R EM6D3/VfdUJXYbn+krw7dZvTAUjCRqHLkX0zbJgYSOXSQItmSiCHuejVAksrtFWc 3yD/+aWh2n/tHHvpBDPD9uME2s1QO/3DPTrYm4P7LVle/d2INLdPJ7pVAKFdRQFo a+Fjo7Kdw3icMxVuJVCLOCdec8CaD2KCbXFercS7Y8T6Bg1M3pfb4MPm186e+D+t jsjPOXVl0F1qAAKztCY0Ap8V+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVfpl2f k3n/R6gQ+esoWpyAhHUCMB8GA1UdIwQYMBaAFGoYW/QXousCoS4Z1XWQrY0RhHX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ1MS9COTM0OTM3QTA2 RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3S2hMaG5WZFpDdGpSR0Vk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoaGI5QmVpNndLaExoblZkWkN0alJHRWRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ1MS9COTM0OTM3QTA2RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3 S2hMaG5WZFpDdGpSR0VkZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADbsDylgrXoS5q09CsDfw1cYet2mTVbqENUxA8hpm8MQQXijKvPmae zk9I2nFCzEV0/AtPWrLlSZjXGiz7PikYHMJLfPkQqi5PWOKS3DRkccFSwwnf+Wt9 Puv4Fp6/HER/DrjUcUa4HuISJlTrX077R1M7/3FkqLACoHS+FeW9lrkKfTXoSe34 1p8Jzqp4E3MgIgvxAp8ONGCLp1t0WyPnRaJvTdQzAsnVU3NzfT2gt9lkd7OppG5b VtId9VgckB0fCxYH8KFwYQ5TO9umKJSGZiZBXmZp9ORKvzxHsAJYx9wZtKOcicPL tUJsu/4ndSjbpWfzpx/U2eosKmTScrNi -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:09 2025 by rpki-client