$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: g91U/3bs/x71V6UAm0V3OPriNQxQqA+4JGqPx0l/OVU= Subject key identifier: C8:FE:4E:44:56:1F:27:A9:1B:73:E4:A8:C6:D3:68:97:0C:8A:DC:C6 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: 01CE Signing time: Mon 03 Nov 2025 02:51:30 +0000 Manifest this update: Mon 03 Nov 2025 02:51:29 +0000 Manifest next update: Mon 10 Nov 2025 02:51:29 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: tUSJcQYXGX9Nhw5RIQ3gQwbd2UyysF6rVx01nQf3vzI=) 2: C369BA98260D11F082934618C4F9AE02.roa (hash: eheiIoP+DIGo6TDFauXxAmF27naEz5wcAihLZFXfuog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A, serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: Nov 3 02:51:29 2025 GMT Not After : Nov 10 02:51:29 2025 GMT Subject: CN=690818b1-668d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dc:3e:7c:3a:72:6c:3e:2a:64:ff:21:33:5a: 8a:48:cd:e0:ad:cf:06:62:5a:36:95:9c:f8:37:de: 12:62:b1:12:e9:43:69:91:42:81:17:59:1b:9e:55: 92:cb:ed:e3:00:94:80:cc:67:51:c9:c4:00:dd:2c: 53:c1:6a:cd:ce:a8:f2:59:10:ea:ad:8f:a8:b7:09: c1:e3:4c:a5:a1:68:8d:d3:52:8b:52:31:9a:4b:91: 84:7d:46:4a:4d:44:e4:25:22:8a:32:8f:a6:76:1f: eb:9c:75:4f:cf:05:d0:23:95:db:3c:b3:55:91:0c: 2c:db:24:02:7f:bd:c6:fb:1c:f0:9b:38:8e:a2:cb: aa:ba:74:4f:50:6b:9e:6b:ca:74:b5:dc:1f:00:7a: 33:2a:3a:ab:03:93:ba:b2:c3:f6:48:39:52:57:87: c9:ad:07:d6:e4:f2:44:a9:99:16:06:9a:a8:6b:32: 9d:a6:a0:93:6c:ce:64:83:84:65:24:bd:1a:4b:27: f0:71:af:8d:83:65:3a:b0:8f:65:0d:34:8a:8e:36: 39:1c:7f:e1:07:63:97:f1:5f:7d:d4:bf:98:97:1c: e9:2f:09:af:76:0b:90:be:1a:ea:ab:ad:69:2a:e1: 6a:ee:6f:a8:64:10:76:cc:27:5b:32:b5:18:bc:4d: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FE:4E:44:56:1F:27:A9:1B:73:E4:A8:C6:D3:68:97:0C:8A:DC:C6 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:4b:22:96:39:49:d8:63:b1:31:ab:29:d3:00:1a:2b:25:dc: 52:8f:25:2d:d7:69:95:b9:1c:81:7b:ae:23:9e:2d:94:de:27: 11:9d:66:78:1e:2c:7e:80:44:51:67:47:f3:53:92:a1:08:7d: 53:cc:21:47:f9:46:a3:b5:99:82:c1:49:73:7c:aa:a2:c2:1d: 78:b7:50:08:a3:af:bf:be:1e:d8:3d:6e:e9:eb:38:88:85:e1: 63:f0:cc:cf:5a:c4:b9:67:93:de:65:9c:63:8e:87:d8:53:9b: a2:1f:71:4a:99:ce:ba:77:54:01:71:d4:e8:6c:f0:dd:a4:25: f9:d4:c5:c5:0e:ad:e9:af:9f:65:c2:0f:82:90:10:c6:82:99: 73:85:d1:0e:00:0a:04:b3:b5:f2:01:4a:7e:ee:d7:d6:4c:a3: 71:18:2e:81:4f:92:65:66:7b:b5:da:4c:29:ce:f5:8d:c3:e9: c3:86:84:27:96:5e:b6:a6:2c:4e:eb:f1:be:c4:7a:5f:b9:a6: cd:62:4e:91:e3:89:ec:f0:b0:2a:1a:07:91:02:bd:03:82:d3: d2:11:ce:25:dd:9a:51:c0:63:20:8a:c3:51:ba:95:b4:d3:dd: 58:95:24:2d:c6:b9:2e:e2:db:87:fd:c6:e7:ce:a0:63:6d:2c: 1f:58:d8:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjUxMTAzMDI1MTI5WhcNMjUxMTEwMDI1MTI5WjAYMRYwFAYD VQQDEw02OTA4MThiMS02NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39w+fDpybD4qZP8hM1qKSM3grc8GYlo2lZz4N94SYrES6UNpkUKBF1kbnlWS y+3jAJSAzGdRycQA3SxTwWrNzqjyWRDqrY+otwnB40yloWiN01KLUjGaS5GEfUZK TUTkJSKKMo+mdh/rnHVPzwXQI5XbPLNVkQws2yQCf73G+xzwmziOosuqunRPUGue a8p0tdwfAHozKjqrA5O6ssP2SDlSV4fJrQfW5PJEqZkWBpqoazKdpqCTbM5kg4Rl JL0aSyfwca+Ng2U6sI9lDTSKjjY5HH/hB2OX8V991L+YlxzpLwmvdguQvhrqq61p KuFq7m+oZBB2zCdbMrUYvE0p7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj+TkRW HyepG3PkqMbTaJcMitzGMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDsSyKWOUnYY7ExqynTABorJdxSjyUt12mVuRyBe64jni2U3icRnWZ4 Hix+gERRZ0fzU5KhCH1TzCFH+UajtZmCwUlzfKqiwh14t1AIo6+/vh7YPW7p6ziI heFj8MzPWsS5Z5PeZZxjjofYU5uiH3FKmc66d1QBcdTobPDdpCX51MXFDq3pr59l wg+CkBDGgplzhdEOAAoEs7XyAUp+7tfWTKNxGC6BT5JlZnu12kwpzvWNw+nDhoQn ll62pixO6/G+xHpfuabNYk6R44ns8LAqGgeRAr0DgtPSEc4l3ZpRwGMgisNRupW0 091YlSQtxrku4tuH/cbnzqBjbSwfWNgL -----END CERTIFICATE-----Generated at Wed Nov 5 00:15:24 2025 by rpki-client