$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: aVkMFcVDwsbv85VM/ohHcZNwyRfm2+UtgSTIQoICD3o= Subject key identifier: 68:C3:0B:93:C2:1B:DC:32:0E:F1:21:B9:4B:30:F9:BD:BC:E1:BE:6B Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 1394 Signing time: Tue 04 Nov 2025 17:05:43 +0000 Manifest this update: Tue 04 Nov 2025 17:05:43 +0000 Manifest next update: Tue 11 Nov 2025 17:05:43 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: IpsYivYr0ZUFWb7pn249BA+RUDqXUJybaEgHBtaFlEs=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5054 (0x13be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Nov 4 17:05:43 2025 GMT Not After : Nov 11 17:05:43 2025 GMT Subject: CN=690a3267-d4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5d:a9:5e:dc:de:d4:9a:70:b9:d3:b1:76:e0: d4:b2:5c:85:54:46:26:c1:30:11:1f:c5:52:d5:dc: a5:9b:cb:b2:86:93:84:d2:9b:65:2d:d5:4c:68:67: 42:ed:63:72:ae:ea:91:7c:74:ea:05:82:7d:57:e0: 88:d3:a8:66:36:45:ea:9b:d8:17:8c:94:76:41:f5: 00:c1:3b:6e:de:f2:f7:12:b6:77:ab:3f:4b:06:a3: 3a:15:a5:a7:ab:a0:bc:e4:de:77:eb:f8:7e:1f:5d: 3e:c5:7a:d8:b5:1d:d0:9c:b4:c3:a3:db:02:92:ca: 26:eb:fa:48:a3:85:c8:0b:24:a7:a2:b5:a4:e5:ca: dc:38:11:ae:91:9d:95:b2:b7:df:17:7e:91:22:07: 8b:cc:d7:97:ea:e1:d3:23:c8:a9:fa:75:6b:dd:83: 49:4b:72:f4:13:7c:0b:2d:fe:37:ea:d1:be:11:e6: fb:69:61:3b:71:d8:3a:ad:b8:f5:44:c6:23:9f:42: bb:45:34:b4:df:25:26:da:83:fd:c1:03:c1:64:32: 96:c2:a7:69:ba:9e:5c:90:64:18:e4:19:8d:f7:35: 90:c8:a3:ee:31:e0:16:3a:68:87:4f:03:82:78:3a: 26:7a:4f:4e:a6:54:e7:a5:90:c0:87:fa:1e:df:05: 8f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C3:0B:93:C2:1B:DC:32:0E:F1:21:B9:4B:30:F9:BD:BC:E1:BE:6B X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:10:f3:79:5a:50:84:be:56:11:dc:50:ac:3e:e0:5b:21:fc: 4f:8d:db:99:18:4a:89:14:02:4d:02:07:0b:37:63:36:af:a4: ad:47:a5:21:be:f5:0a:6f:c1:ed:f0:1e:f3:6f:e1:09:1b:e4: 88:35:59:70:8c:c2:cf:59:61:7e:f2:fc:2f:4f:25:ff:21:9f: 18:e7:32:ac:e7:7d:31:d7:80:45:cf:85:66:90:f2:2e:7c:1a: 40:c0:12:b3:10:b2:46:e2:64:c8:bb:f2:27:71:8f:5f:ca:4d: 07:a7:7a:4c:4a:22:9a:aa:ad:32:5f:ee:a8:86:40:9d:b5:e2: 30:06:d3:e7:09:66:23:0e:5c:2b:54:16:af:48:db:ce:c4:38: 49:58:d4:2e:b7:43:f6:1b:b1:92:c1:75:14:e6:bd:e8:64:0b: 97:33:2e:c9:99:b0:68:77:c5:1e:66:55:f8:bb:ed:7d:8d:f3: 79:66:64:db:30:4e:65:d5:b4:3b:be:89:c4:9a:d9:77:36:6b: a1:4a:64:ee:08:ac:f4:c6:7e:92:fc:e4:da:28:21:72:6d:52: 94:e6:21:81:e1:10:47:24:83:1a:70:4c:ce:53:4c:fc:00:57: 51:48:96:a2:63:be:38:c1:44:c2:a7:58:c3:c7:50:e2:bc:df: 37:d1:f6:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUxMTA0MTcwNTQzWhcNMjUxMTExMTcwNTQzWjAYMRYwFAYD VQQDEw02OTBhMzI2Ny1kNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2l2pXtze1JpwudOxduDUslyFVEYmwTARH8VS1dylm8uyhpOE0ptlLdVMaGdC 7WNyruqRfHTqBYJ9V+CI06hmNkXqm9gXjJR2QfUAwTtu3vL3ErZ3qz9LBqM6FaWn q6C85N536/h+H10+xXrYtR3QnLTDo9sCksom6/pIo4XICySnorWk5crcOBGukZ2V srffF36RIgeLzNeX6uHTI8ip+nVr3YNJS3L0E3wLLf436tG+Eeb7aWE7cdg6rbj1 RMYjn0K7RTS03yUm2oP9wQPBZDKWwqdpup5ckGQY5BmN9zWQyKPuMeAWOmiHTwOC eDomek9OplTnpZDAh/oe3wWPOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjDC5PC G9wyDvEhuUsw+b284b5rMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATEPN5WlCEvlYR3FCsPuBbIfxPjduZGEqJFAJNAgcLN2M2r6StR6Uh vvUKb8Ht8B7zb+EJG+SINVlwjMLPWWF+8vwvTyX/IZ8Y5zKs530x14BFz4VmkPIu fBpAwBKzELJG4mTIu/IncY9fyk0Hp3pMSiKaqq0yX+6ohkCdteIwBtPnCWYjDlwr VBavSNvOxDhJWNQut0P2G7GSwXUU5r3oZAuXMy7JmbBod8UeZlX4u+19jfN5ZmTb ME5l1bQ7vonEmtl3NmuhSmTuCKz0xn6S/OTaKCFybVKU5iGB4RBHJIMacEzOU0z8 AFdRSJaiY744wUTCp1jDx1DivN830faX -----END CERTIFICATE-----Generated at Wed Nov 5 07:10:32 2025 by rpki-client