$ rpki-client -vvf rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft File: hneZBT7JF0sRHLtGspf6ZH6YKqU.mft (raw, json) Hash identifier: oEaDU5EyJ+IIAzRjWaOeqfIUOPzSeZ0Grk2J4oBN9Us= Subject key identifier: A9:16:05:6A:26:34:EF:C5:CD:EA:88:A7:94:EB:B6:9F:98:E3:19:EB Authority key identifier: 86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 Certificate issuer: /CN=A91A00E4/serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft Manifest number: BC Signing time: Wed 05 Nov 2025 06:07:25 +0000 Manifest this update: Wed 05 Nov 2025 06:07:25 +0000 Manifest next update: Wed 12 Nov 2025 06:07:25 +0000 Files and hashes: 1: hneZBT7JF0sRHLtGspf6ZH6YKqU.crl (hash: oDQt6KTSaSGrCTqK1KXB3CKT4XZFCTbiNomaB8TPQLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A00E4, serialNumber=867799053EC9174B111CBB46B297FA647E982AA5 Validity Not Before: Nov 5 06:07:25 2025 GMT Not After : Nov 12 06:07:25 2025 GMT Subject: CN=690ae99d-089f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:30:79:dd:10:c7:2b:6f:3c:76:6f:59:fc:ab: 0e:5a:15:8e:20:92:1b:ce:c7:b7:a5:8a:cd:a8:e2: eb:49:1a:0e:2e:14:d3:70:f4:89:2a:c1:e7:d1:cd: 6e:d4:60:b3:06:80:78:db:de:3f:76:d6:2f:53:b1: e8:ce:17:74:1b:46:ec:65:6f:60:6c:b6:d3:57:49: 1a:15:2a:a0:b7:ff:30:a4:08:1a:80:7b:15:55:99: 4c:e4:c3:65:17:69:a7:35:48:ab:2a:91:cc:f7:ff: e9:d6:d6:54:e5:ef:8f:42:33:a8:5c:11:cc:6b:65: fb:67:79:d0:46:4b:43:a8:89:d6:ea:ed:10:bb:29: 76:29:ef:55:f7:46:88:b8:2b:86:e2:e5:c4:fe:13: df:88:bd:90:4c:1a:d0:64:45:33:8b:24:a5:4b:e4: 20:5a:a2:47:95:23:b2:7f:6d:41:00:ae:50:4b:bb: c4:1b:f7:6f:59:62:b6:ca:5d:b5:93:27:5c:2e:13: 1e:c8:ce:1c:60:c0:c1:cd:2a:b3:c3:d3:b2:85:98: 5b:af:9f:96:eb:ca:ad:a4:9c:3e:6c:28:6c:49:e0: 96:2c:8e:cb:c2:e5:92:4e:e6:cc:c2:e8:8c:df:74: ce:38:d0:55:e5:ee:1a:68:06:14:32:b1:25:94:bf: d7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:16:05:6A:26:34:EF:C5:CD:EA:88:A7:94:EB:B6:9F:98:E3:19:EB X509v3 Authority Key Identifier: keyid:86:77:99:05:3E:C9:17:4B:11:1C:BB:46:B2:97:FA:64:7E:98:2A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hneZBT7JF0sRHLtGspf6ZH6YKqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A00E4/5608A4989A6511EF9F7AB226C4F9AE02/hneZBT7JF0sRHLtGspf6ZH6YKqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:03:fe:7e:32:4c:c8:4b:8c:4c:a3:24:a4:69:78:d9:9d:70: c2:08:fd:5f:c2:8f:59:a7:70:a5:78:75:5b:af:6e:2d:51:36: 29:59:aa:aa:8e:02:60:94:da:22:89:5e:16:cd:0d:97:dc:7a: 40:11:b7:a1:ec:71:4f:d1:13:66:f3:aa:83:bc:75:83:58:49: 31:5c:66:2f:23:c7:70:f3:81:0f:5d:17:c1:d0:d0:3e:76:8e: 13:5c:ee:15:f1:c8:a7:7d:c3:87:a7:56:b7:55:3d:82:30:20: 0e:52:8c:a7:84:be:7e:e6:0c:71:73:da:c9:4e:b0:ad:5a:c9: a9:61:9d:db:7e:d3:32:ad:cf:f9:8d:f8:a9:41:fb:5c:00:52: 92:b2:c7:d6:c1:0d:6f:5c:b4:a2:b6:fd:eb:dc:5e:3f:3f:b5: 30:62:c6:d9:e5:db:b5:30:27:10:c5:22:1e:11:d5:31:f7:72: 48:6d:20:16:3c:fb:b4:a8:0d:f1:f9:30:53:80:27:fb:61:1b: 58:38:c8:88:15:32:91:a6:63:21:a5:a4:3b:fa:63:38:c3:20: 87:07:98:ab:fe:05:71:88:94:36:b9:51:a3:d7:c2:05:36:66: 8b:04:45:04:7a:26:02:cc:49:46:22:94:f7:dc:e7:3e:14:73: a5:ce:53:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwRTQxMTAvBgNVBAUTKDg2Nzc5OTA1M0VDOTE3NEIxMTFDQkI0NkIyOTdGQTY0 N0U5ODJBQTUwHhcNMjUxMTA1MDYwNzI1WhcNMjUxMTEyMDYwNzI1WjAYMRYwFAYD VQQDEw02OTBhZTk5ZC0wODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzB53RDHK288dm9Z/KsOWhWOIJIbzse3pYrNqOLrSRoOLhTTcPSJKsHn0c1u 1GCzBoB4294/dtYvU7Hozhd0G0bsZW9gbLbTV0kaFSqgt/8wpAgagHsVVZlM5MNl F2mnNUirKpHM9//p1tZU5e+PQjOoXBHMa2X7Z3nQRktDqInW6u0Quyl2Ke9V90aI uCuG4uXE/hPfiL2QTBrQZEUziySlS+QgWqJHlSOyf21BAK5QS7vEG/dvWWK2yl21 kydcLhMeyM4cYMDBzSqzw9OyhZhbr5+W68qtpJw+bChsSeCWLI7LwuWSTubMwuiM 33TOONBV5e4aaAYUMrEllL/X5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkWBWom NO/FzeqIp5Trtp+Y4xnrMB8GA1UdIwQYMBaAFIZ3mQU+yRdLERy7RrKX+mR+mCql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDBFNC81NjA4QTQ5ODlB NjUxMUVGOUY3QUIyMjZDNEY5QUUwMi9obmVaQlQ3SkYwc1JITHRHc3BmNlpINllL cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huZVpCVDdKRjBzUkhMdEdzcGY2Wkg2WUtxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDBFNC81NjA4QTQ5ODlBNjUxMUVGOUY3QUIyMjZDNEY5QUUwMi9obmVaQlQ3SkYw c1JITHRHc3BmNlpINllLcVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKA/5+MkzIS4xMoySkaXjZnXDCCP1fwo9Zp3CleHVbr24tUTYpWaqq jgJglNoiiV4WzQ2X3HpAEbeh7HFP0RNm86qDvHWDWEkxXGYvI8dw84EPXRfB0NA+ do4TXO4V8cinfcOHp1a3VT2CMCAOUoynhL5+5gxxc9rJTrCtWsmpYZ3bftMyrc/5 jfipQftcAFKSssfWwQ1vXLSitv3r3F4/P7UwYsbZ5du1MCcQxSIeEdUx93JIbSAW PPu0qA3x+TBTgCf7YRtYOMiIFTKRpmMhpaQ7+mM4wyCHB5ir/gVxiJQ2uVGj18IF NmaLBEUEeiYCzElGIpT33Oc+FHOlzlMd -----END CERTIFICATE-----Generated at Wed Nov 5 17:49:19 2025 by rpki-client