$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: Xs3nVJ3FrJT7zShAgHg0pMnDAuQjZ23cE5OiaTt+SkU= Subject key identifier: 35:B7:FC:3C:79:C6:AF:AF:EF:9E:B1:8A:DF:98:7C:C2:FA:84:E0:51 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 264C Signing time: Tue 04 Nov 2025 15:46:34 +0000 Manifest this update: Tue 04 Nov 2025 15:46:34 +0000 Manifest next update: Tue 11 Nov 2025 15:46:34 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: SH1R5pLxeKk5WEnXYvPavFZvGmSGgJo7jAtqGFyx8GM=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9824 (0x2660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Nov 4 15:46:34 2025 GMT Not After : Nov 11 15:46:34 2025 GMT Subject: CN=690a1fda-be03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:6d:17:4a:5c:de:72:07:4d:66:f9:7b:ca: 8f:b1:80:e2:9f:e4:e2:78:b3:16:83:4c:7b:86:9a: 98:b8:82:0f:7c:2d:9a:e3:a6:2c:9d:a8:17:44:26: 3c:5d:5a:f6:e1:e1:62:f8:c0:93:b0:79:47:0e:fc: 68:ad:56:f4:b4:82:03:3d:ea:a9:bd:a6:d7:22:a0: 12:b1:56:b9:99:46:e5:90:62:52:fc:f8:99:b3:4d: 5f:a6:fd:20:c0:bd:77:4e:5b:ed:93:9f:6a:e0:f8: e2:67:a1:b0:32:28:e5:6f:10:96:f8:44:07:a5:fc: 8c:2c:af:d0:c0:f7:f0:0e:f6:17:a2:e9:a2:0b:4a: 03:61:33:48:01:d3:eb:2c:c6:4b:39:86:0f:5a:52: ec:9a:c5:2f:f9:39:c9:3b:af:57:18:0c:b0:64:fa: 61:29:b2:c5:17:3a:2c:7d:1d:9f:80:f1:52:c6:b8: d3:6b:fb:36:d4:81:c6:95:d1:f0:94:71:24:20:72: 51:3d:ee:85:e9:4e:a3:08:f2:02:fd:37:03:60:74: bf:2d:27:68:d3:f3:09:f6:eb:c0:db:96:a1:f8:db: ab:e3:fd:11:f1:f5:22:cd:f0:81:52:9e:c9:9b:4f: 72:f2:65:31:8a:2d:76:2c:78:8b:d5:73:de:6d:97: d8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B7:FC:3C:79:C6:AF:AF:EF:9E:B1:8A:DF:98:7C:C2:FA:84:E0:51 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:a7:a0:eb:18:8f:82:fb:db:03:6f:b6:d8:cb:aa:25:ea:b5: 91:27:09:83:ca:d3:cd:58:0f:b7:ce:3e:0b:f4:c7:e1:48:de: 2b:df:40:58:13:8d:c5:23:22:60:f8:25:0a:09:aa:84:f9:6e: b5:2c:f7:5c:c6:4e:6e:45:a8:21:ff:3b:99:e8:aa:74:f3:aa: b9:01:ef:c3:9f:9d:67:8d:a7:79:15:89:7f:90:f2:b7:55:bd: 9e:77:dc:ed:4c:fa:fa:b6:e4:aa:9f:e5:07:a7:2c:e6:f0:4d: 80:5d:6c:69:7f:f9:78:ed:05:6e:6f:90:ce:d0:d8:73:44:8a: 25:c9:db:c4:18:4d:87:b7:aa:f7:7c:df:0a:60:39:01:aa:8e: 35:40:3a:d5:d3:32:9e:b6:3a:96:0b:4f:2f:93:01:89:fb:37: e8:19:a8:06:96:4d:6f:5f:55:ce:22:88:77:f9:96:bb:96:df: 09:eb:aa:75:ee:76:33:1d:cc:6a:35:6f:85:d8:84:c1:33:57: b5:8f:b2:23:0c:e2:8c:95:e6:ad:42:b4:2d:a2:10:f7:63:4d: 91:6b:af:b3:bb:ad:5e:0e:47:d3:43:e1:15:b4:77:bb:98:95: 5f:29:c2:8a:47:77:4a:37:e9:a0:0a:1d:b9:be:7b:a6:c8:6e: 16:09:42:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUxMTA0MTU0NjM0WhcNMjUxMTExMTU0NjM0WjAYMRYwFAYD VQQDEw02OTBhMWZkYS1iZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LhtF0pc3nIHTWb5e8qPsYDin+TieLMWg0x7hpqYuIIPfC2a46YsnagXRCY8 XVr24eFi+MCTsHlHDvxorVb0tIIDPeqpvabXIqASsVa5mUblkGJS/PiZs01fpv0g wL13Tlvtk59q4PjiZ6GwMijlbxCW+EQHpfyMLK/QwPfwDvYXoumiC0oDYTNIAdPr LMZLOYYPWlLsmsUv+TnJO69XGAywZPphKbLFFzosfR2fgPFSxrjTa/s21IHGldHw lHEkIHJRPe6F6U6jCPIC/TcDYHS/LSdo0/MJ9uvA25ah+Nur4/0R8fUizfCBUp7J m09y8mUxii12LHiL1XPebZfYBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDW3/Dx5 xq+v756xit+YfML6hOBRMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCup6DrGI+C+9sDb7bYy6ol6rWRJwmDytPNWA+3zj4L9MfhSN4r30BY E43FIyJg+CUKCaqE+W61LPdcxk5uRagh/zuZ6Kp086q5Ae/Dn51njad5FYl/kPK3 Vb2ed9ztTPr6tuSqn+UHpyzm8E2AXWxpf/l47QVub5DO0NhzRIolydvEGE2Ht6r3 fN8KYDkBqo41QDrV0zKetjqWC08vkwGJ+zfoGagGlk1vX1XOIoh3+Za7lt8J66p1 7nYzHcxqNW+F2ITBM1e1j7IjDOKMleatQrQtohD3Y02Ra6+zu61eDkfTQ+EVtHe7 mJVfKcKKR3dKN+mgCh25vnumyG4WCUIC -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:20 2025 by rpki-client