$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: zDbO8T4e10DaH9krT+cqvAZ1JjRYe6IY3MAYlerLR4s= Subject key identifier: FA:C7:43:FF:BC:C5:9F:4A:74:99:33:E5:3F:4D:96:BE:36:E4:C8:49 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 34E3 Signing time: Sun 02 Nov 2025 14:50:43 +0000 Manifest this update: Sun 02 Nov 2025 14:50:43 +0000 Manifest next update: Sun 09 Nov 2025 14:50:43 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: GvF3sxvw/ECTzm9Wb1MHA353qIqe84Ppmi9ZG4BSq2c=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: 4D8Gd5fcPnmWPe8Yaf2DxYR0OtX+KheAxOMoPi97yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Nov 2 14:50:43 2025 GMT Not After : Nov 9 14:50:43 2025 GMT Subject: CN=69076fc3-d080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8f:14:31:55:ac:07:20:e8:10:44:e8:c6:66: fc:4d:df:78:fc:14:aa:47:64:21:70:16:b1:5e:b1: b4:1e:3b:89:10:76:42:2a:ef:cf:73:b1:9c:10:97: 85:85:f3:f2:5e:d9:16:65:9d:39:07:f7:2f:7f:ab: 1c:4e:ad:3e:cd:4c:6f:0e:b7:26:90:ab:6b:d8:b8: e2:96:10:ed:1b:ab:67:5d:f5:54:9f:ae:b8:f3:11: 3b:24:a3:14:fc:47:7c:8e:1a:10:56:e2:60:25:a4: 04:0d:6f:7b:fb:20:9c:19:b9:47:74:56:ca:b1:03: db:7f:d5:42:7e:17:7f:f2:95:c0:93:13:ea:0e:b9: fc:da:53:55:b2:d3:ee:04:b7:b5:b1:a2:68:d7:47: 6d:b0:7c:6b:26:cb:2f:06:ba:8d:21:86:98:cc:fd: 74:4a:28:13:9f:15:05:49:75:59:91:58:dd:16:99: b2:70:ec:e6:99:a9:93:4f:23:e5:f0:19:0d:b3:a5: bb:61:b7:8a:27:cf:0d:20:bb:7c:1e:24:8e:42:3e: 94:2e:6c:bc:cf:85:bb:4e:9f:b6:9b:96:90:90:ac: 48:46:a3:19:07:db:a0:f8:72:eb:af:85:03:61:00: 6d:2c:15:aa:7d:0b:87:7e:67:87:f0:0f:ae:a0:fa: 73:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C7:43:FF:BC:C5:9F:4A:74:99:33:E5:3F:4D:96:BE:36:E4:C8:49 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:b3:a3:21:45:25:95:ee:2e:6a:0a:1c:3e:44:a5:15:63:e4: 30:04:5d:ef:10:f4:c5:f5:e6:0a:5e:6c:88:b4:1c:00:a4:c0: b7:83:46:7c:08:aa:c9:5c:bf:41:47:22:e7:63:94:04:16:5b: 0e:ac:4b:25:87:df:4f:d9:c0:3a:5e:60:7c:cf:d0:17:f1:5d: d1:36:0b:40:50:21:a2:93:9e:fa:8f:b9:d4:f6:5c:a2:2d:9e: d5:78:af:4d:71:e1:0a:6a:bf:9d:51:c9:52:ad:a7:d9:c7:f4: 80:cf:d2:ee:71:96:ec:a1:c2:7d:8f:bb:b2:a9:59:6d:8b:27: 74:10:55:7e:a7:e8:b4:9e:e8:e4:b7:12:04:ff:68:e7:4e:04: 90:f8:0f:18:0f:9f:11:53:0f:e9:e5:b0:71:8b:00:cd:3b:f6: c9:83:aa:96:09:67:19:f3:b5:9b:4b:a5:a1:bf:24:ed:34:12: 4f:a7:1a:43:fc:71:55:d2:ff:5f:c4:87:f2:a9:ea:8b:42:4c: 2b:df:51:02:0f:b4:00:62:38:b6:13:8e:7b:31:b7:79:87:fb: a8:c1:3f:80:83:60:3e:4e:b3:53:0c:d4:d0:d8:4a:69:fc:eb: d1:78:5c:3b:db:d5:3d:e7:9f:53:8c:b1:dc:bc:a9:05:77:b6: 2f:b3:a9:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUxMTAyMTQ1MDQzWhcNMjUxMTA5MTQ1MDQzWjAYMRYwFAYD VQQDEw02OTA3NmZjMy1kMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Y8UMVWsByDoEEToxmb8Td94/BSqR2QhcBaxXrG0HjuJEHZCKu/Pc7GcEJeF hfPyXtkWZZ05B/cvf6scTq0+zUxvDrcmkKtr2LjilhDtG6tnXfVUn6648xE7JKMU /Ed8jhoQVuJgJaQEDW97+yCcGblHdFbKsQPbf9VCfhd/8pXAkxPqDrn82lNVstPu BLe1saJo10dtsHxrJssvBrqNIYaYzP10SigTnxUFSXVZkVjdFpmycOzmmamTTyPl 8BkNs6W7YbeKJ88NILt8HiSOQj6ULmy8z4W7Tp+2m5aQkKxIRqMZB9ug+HLrr4UD YQBtLBWqfQuHfmeH8A+uoPpzbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrHQ/+8 xZ9KdJkz5T9Nlr425MhJMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBs6MhRSWV7i5qChw+RKUVY+QwBF3vEPTF9eYKXmyItBwApMC3g0Z8 CKrJXL9BRyLnY5QEFlsOrEslh99P2cA6XmB8z9AX8V3RNgtAUCGik576j7nU9lyi LZ7VeK9NceEKar+dUclSrafZx/SAz9LucZbsocJ9j7uyqVltiyd0EFV+p+i0nujk txIE/2jnTgSQ+A8YD58RUw/p5bBxiwDNO/bJg6qWCWcZ87WbS6WhvyTtNBJPpxpD /HFV0v9fxIfyqeqLQkwr31ECD7QAYji2E457Mbd5h/uowT+Ag2A+TrNTDNTQ2Epp /OvReFw729U9559TjLHcvKkFd7Yvs6l5 -----END CERTIFICATE-----Generated at Tue Nov 4 02:16:44 2025 by rpki-client