$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: 4juUp+9g8E4yu3I+dnSHwftDKzKYnLszDKnFu4lrwzU= Subject key identifier: E5:6A:B1:6B:A6:40:8F:2C:00:AA:18:F7:77:2D:D9:28:42:C4:22:B6 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 06F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 06E7 Signing time: Tue 04 Nov 2025 22:06:10 +0000 Manifest this update: Tue 04 Nov 2025 22:06:10 +0000 Manifest next update: Tue 11 Nov 2025 22:06:10 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: 3bC7Y5LRhwDk/SZuaQbvazNXlvQEFM6hNEay7nMv7fI=) 2: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 5BOUZnIceKppG/eOWr9McqTQMkFI46F0FXPhmOPQ3MY=) 3: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: Td9ZRXmDLCaOWu5C2VPY0G2nu6GZr9orup/Cn82OpN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1782 (0x6f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Nov 4 22:06:10 2025 GMT Not After : Nov 11 22:06:10 2025 GMT Subject: CN=690a78d2-d0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c4:62:40:4c:98:8b:41:05:2a:03:ee:19:43: 9f:c6:e4:47:bb:3a:a7:b1:e4:21:81:2f:11:eb:91: fb:ff:5c:fc:24:74:bb:16:64:82:cd:d6:6b:3c:0e: 1b:bd:a9:49:20:27:f9:f4:f3:d9:c6:59:6a:f3:44: 6f:5c:5d:9c:e6:d8:9b:9d:df:56:72:34:fe:6f:ac: a9:80:38:d2:95:40:9b:b0:71:8e:fb:46:23:84:4b: a7:7c:54:9d:73:2f:c2:62:b1:50:19:10:92:8a:4e: 27:b2:60:31:ad:d0:5d:da:dc:a4:fc:20:43:34:11: bd:11:3d:65:02:05:a4:f3:1a:2b:82:01:42:30:e1: b5:6c:15:19:bb:9b:b1:67:c9:27:7a:51:50:90:4c: 3a:16:3f:e1:5a:fd:15:3b:81:f3:b0:1e:89:55:1d: 49:08:de:8c:71:0f:99:13:43:be:a8:7b:56:c0:be: 94:98:46:86:15:f2:25:88:43:00:e8:32:a8:0a:2a: 96:3c:01:b1:6c:07:89:5b:03:60:52:e5:cb:fa:d8: 54:99:f6:84:13:20:33:a6:1a:0b:b6:07:6b:6f:38: c9:4b:ab:1f:b4:5c:2e:67:2c:1a:34:b9:26:29:54: f2:90:4f:ac:1d:98:b9:3d:93:64:8b:b7:b1:0a:c4: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6A:B1:6B:A6:40:8F:2C:00:AA:18:F7:77:2D:D9:28:42:C4:22:B6 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:f6:03:c1:06:96:41:28:62:2a:cc:16:ce:3a:c4:cf:68:d8: 9d:d9:43:7a:f0:a6:0b:6a:b0:45:df:d7:7f:43:c6:d2:72:9b: 37:72:29:ad:91:50:a0:72:f9:94:cc:a5:2f:b6:24:40:7f:fa: 12:eb:ad:1c:8e:b0:b4:03:0f:20:2e:01:c1:74:1c:10:af:e9: 67:c0:61:2a:2b:1a:3c:81:18:7a:2f:ed:fd:e7:1a:af:5b:9f: 1d:fa:55:96:2e:1c:49:56:5a:f3:9f:4e:82:3b:57:e3:cb:1b: 2a:93:9c:b5:c3:ee:2e:2b:af:4d:5d:29:6f:a7:a4:82:22:5e: 69:ee:11:25:d6:21:f4:bc:e0:71:65:93:bd:2c:a8:cf:d2:1a: 15:b2:f1:9f:98:0b:46:09:44:8b:bb:6d:30:aa:98:74:bb:13: 09:a0:df:75:f5:37:86:80:88:61:ad:96:0d:b8:a1:f6:61:c7: 23:34:8e:15:44:fb:e9:bf:4c:17:37:9e:e8:62:ae:a6:d6:8e: 59:4f:0f:81:49:0c:af:8a:30:1c:11:de:66:4c:b7:64:e3:33: 12:26:45:32:b5:64:7b:0a:62:de:de:37:a6:f0:db:d1:4f:18: ab:fb:6c:ee:c0:7b:94:9d:d3:83:ba:54:6b:d1:fc:36:90:a2: 71:cd:29:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUxMTA0MjIwNjEwWhcNMjUxMTExMjIwNjEwWjAYMRYwFAYD VQQDEw02OTBhNzhkMi1kMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8RiQEyYi0EFKgPuGUOfxuRHuzqnseQhgS8R65H7/1z8JHS7FmSCzdZrPA4b valJICf59PPZxllq80RvXF2c5tibnd9WcjT+b6ypgDjSlUCbsHGO+0YjhEunfFSd cy/CYrFQGRCSik4nsmAxrdBd2tyk/CBDNBG9ET1lAgWk8xorggFCMOG1bBUZu5ux Z8knelFQkEw6Fj/hWv0VO4HzsB6JVR1JCN6McQ+ZE0O+qHtWwL6UmEaGFfIliEMA 6DKoCiqWPAGxbAeJWwNgUuXL+thUmfaEEyAzphoLtgdrbzjJS6sftFwuZywaNLkm KVTykE+sHZi5PZNki7exCsTABQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVqsWum QI8sAKoY93ct2ShCxCK2MB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB9gPBBpZBKGIqzBbOOsTPaNid2UN68KYLarBF39d/Q8bScps3cimt kVCgcvmUzKUvtiRAf/oS660cjrC0Aw8gLgHBdBwQr+lnwGEqKxo8gRh6L+395xqv W58d+lWWLhxJVlrzn06CO1fjyxsqk5y1w+4uK69NXSlvp6SCIl5p7hEl1iH0vOBx ZZO9LKjP0hoVsvGfmAtGCUSLu20wqph0uxMJoN919TeGgIhhrZYNuKH2YccjNI4V RPvpv0wXN57oYq6m1o5ZTw+BSQyvijAcEd5mTLdk4zMSJkUytWR7CmLe3jem8NvR Txir+2zuwHuUndODulRr0fw2kKJxzSlw -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:55 2025 by rpki-client