$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: SsX8Sx69htUvZw6nfMzNVdb/x0YPkmLInBppBFMs3Qk= Subject key identifier: 7E:9E:AB:C2:11:C9:27:E5:19:1B:EE:DF:29:31:1E:1F:1F:56:5C:FE Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0BD7 Signing time: Sun 02 Nov 2025 18:53:49 +0000 Manifest this update: Sun 02 Nov 2025 18:53:48 +0000 Manifest next update: Sun 09 Nov 2025 18:53:48 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: nWnCUvvX5VA+dUDdq7ruxDpfJP/FRKCCxMYyzxjXDK4=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: WtUGGPBORu2ELV1J85b8AQ+2CLGSrU7TTTxiEKhsYHc=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3060 (0xbf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Nov 2 18:53:48 2025 GMT Not After : Nov 9 18:53:48 2025 GMT Subject: CN=6907a8bc-cb6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:46:2e:5b:55:a8:91:e3:98:cb:85:6d:23:f6: a9:da:a0:12:fb:fe:53:05:5c:96:0b:68:3e:81:34: 77:24:bd:89:67:47:4f:84:78:37:24:65:01:a6:f3: 7a:fd:dc:8d:3b:04:16:eb:f1:ef:67:45:92:e1:79: c2:66:16:ae:c8:c1:af:48:2b:61:5e:08:83:c3:fb: cd:00:49:0a:fb:94:ad:eb:45:99:29:78:65:1f:4b: e9:ce:e5:70:44:cb:0b:a7:59:50:ca:e9:29:76:a8: d2:fa:a1:37:2e:d5:f0:53:c0:fa:82:df:fb:d0:3a: 15:71:a2:29:72:c6:3e:13:de:ed:7d:6e:ed:c4:75: 9b:88:e3:c6:88:57:7b:26:6d:54:88:02:cd:08:94: 09:84:65:49:74:ca:fc:8d:79:37:91:20:dc:96:99: f7:82:80:05:70:48:d3:e9:59:6d:2e:2e:1f:f8:b7: 1b:a7:a2:c7:a1:0a:c4:37:17:63:46:43:30:0d:27: 8f:4f:00:7a:eb:f9:c0:e7:e4:3b:79:92:2f:f5:0e: 40:98:bc:46:e0:c8:43:0d:fd:98:5b:53:3c:ef:38: 3f:6b:67:3f:e2:66:56:43:2b:81:cb:2b:fe:78:0d: 1b:14:99:94:9c:0c:99:2d:0f:b8:9a:48:33:c0:06: 0b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9E:AB:C2:11:C9:27:E5:19:1B:EE:DF:29:31:1E:1F:1F:56:5C:FE X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:47:64:65:b9:14:b2:ff:3e:a0:35:25:59:ba:de:e3:12:3e: 0c:d3:d5:2f:8f:25:37:01:8f:65:6c:91:de:6c:3d:e3:a9:be: 63:46:d4:88:35:fc:14:c2:e7:cd:09:d6:ee:4a:76:c4:f4:79: d5:4c:4c:ba:a4:5f:5a:9d:7c:2d:df:63:a6:5b:52:a5:77:9b: ca:85:c2:ef:fb:9d:46:75:20:b3:86:db:c4:48:82:3d:4a:3c: aa:c7:d4:a3:60:f2:30:57:df:89:06:af:43:fc:f8:91:ab:fd: 76:1c:99:d8:fd:4e:47:5e:34:25:30:48:27:72:5c:94:9f:2b: 72:2c:1c:c4:50:57:07:9c:87:84:dc:e9:e5:81:10:c2:06:f2: a7:96:83:f9:fd:bb:86:c8:60:e3:d6:21:7c:18:b2:3e:e8:b7: dc:68:5f:0b:bd:9e:d5:bb:70:f9:c7:1f:95:ed:b5:44:26:cc: e3:e3:51:48:3d:0c:a0:94:d5:6e:f9:eb:74:a9:0c:f9:6c:c3: cd:d7:31:0d:64:fc:ac:5c:20:b9:fd:5c:33:43:2d:a2:8b:d7: 95:38:0e:3e:d3:dd:e8:a4:ad:bb:f3:45:94:33:01:f9:15:2f: 63:5b:00:c6:60:98:9f:c9:86:78:61:3d:e6:d4:8f:49:8a:ae: cf:65:9a:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUxMTAyMTg1MzQ4WhcNMjUxMTA5MTg1MzQ4WjAYMRYwFAYD VQQDEw02OTA3YThiYy1jYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30YuW1WokeOYy4VtI/ap2qAS+/5TBVyWC2g+gTR3JL2JZ0dPhHg3JGUBpvN6 /dyNOwQW6/HvZ0WS4XnCZhauyMGvSCthXgiDw/vNAEkK+5St60WZKXhlH0vpzuVw RMsLp1lQyukpdqjS+qE3LtXwU8D6gt/70DoVcaIpcsY+E97tfW7txHWbiOPGiFd7 Jm1UiALNCJQJhGVJdMr8jXk3kSDclpn3goAFcEjT6VltLi4f+Lcbp6LHoQrENxdj RkMwDSePTwB66/nA5+Q7eZIv9Q5AmLxG4MhDDf2YW1M87zg/a2c/4mZWQyuByyv+ eA0bFJmUnAyZLQ+4mkgzwAYLPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6eq8IR ySflGRvu3ykxHh8fVlz+MB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9R2RluRSy/z6gNSVZut7jEj4M09UvjyU3AY9lbJHebD3jqb5jRtSI NfwUwufNCdbuSnbE9HnVTEy6pF9anXwt32OmW1Kld5vKhcLv+51GdSCzhtvESII9 Sjyqx9SjYPIwV9+JBq9D/PiRq/12HJnY/U5HXjQlMEgnclyUnytyLBzEUFcHnIeE 3OnlgRDCBvKnloP5/buGyGDj1iF8GLI+6LfcaF8LvZ7Vu3D5xx+V7bVEJszj41FI PQyglNVu+et0qQz5bMPN1zENZPysXCC5/VwzQy2ii9eVOA4+093opK2780WUMwH5 FS9jWwDGYJifyYZ4YT3m1I9Jiq7PZZrS -----END CERTIFICATE-----Generated at Tue Nov 4 08:21:16 2025 by rpki-client