$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: eHY9XESjc16A9ObdI8ggH42vMQ9aj6Xma1h92eILJAw= Subject key identifier: 26:5E:64:B0:70:BD:DB:5E:94:2D:10:14:AE:01:24:74:BC:14:28:17 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: EA Signing time: Wed 05 Nov 2025 05:35:17 +0000 Manifest this update: Wed 05 Nov 2025 05:35:17 +0000 Manifest next update: Wed 12 Nov 2025 05:35:17 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: /WCwyalgOpPN0UtTfe6GWojZ0Ym6qNSc4rgGbaS7sq8=) 2: 56EC0F5EABD411F0ADCDD73CC4F9AE02.roa (hash: OqbQu7kEO5HyQlsajTkQ2cRmRukKYtR+ZcR573z3wAk=) 3: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: 0Cf8THprMTDVV2fZezKAdgIeiPKZ9IZrYmhz+7CeQ7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Nov 5 05:35:17 2025 GMT Not After : Nov 12 05:35:17 2025 GMT Subject: CN=690ae215-6475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:1e:9b:ee:54:7f:b3:b1:9d:c6:82:38:d4: 82:f0:14:c6:31:e3:8c:88:39:1a:bb:72:ad:ed:e5: 83:80:8c:86:0c:3e:0e:9b:a9:06:71:83:53:d3:23: d6:d0:69:66:53:80:94:89:f2:5d:ca:3c:b3:64:dc: 7a:e4:c2:63:eb:75:b0:0c:28:79:e2:6a:d5:cc:ac: 08:9f:c2:7b:fc:b1:50:34:28:14:27:7a:8e:ed:65: 9b:6d:21:c0:64:46:ca:e6:ce:53:e2:b2:6d:ec:5e: 58:d0:4c:0d:fc:e0:dd:09:9b:34:d8:06:ec:3c:f5: 6b:d3:d1:0f:b3:a6:d7:cb:80:0e:a0:7a:7b:94:fb: 52:c6:fb:1a:b2:52:6b:aa:d8:f1:f5:ce:40:a9:62: 63:03:f1:39:5a:0b:c3:d2:de:93:81:3c:6d:1f:b2: a4:d3:44:02:f0:c3:19:5d:8f:03:4a:84:49:59:fd: 57:c0:fc:e2:dd:de:cd:f3:5d:83:1a:f9:3b:91:46: f3:68:ae:74:34:cb:27:ef:bc:0c:19:14:68:f8:10: 2f:fd:41:a2:d8:39:b0:ec:61:89:34:f8:8b:07:a2: e1:a3:3d:33:c8:1f:2d:0a:8c:ce:4a:e9:a5:4a:9a: d8:67:92:a3:13:1c:20:8f:1d:46:58:90:90:1b:cc: 9b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5E:64:B0:70:BD:DB:5E:94:2D:10:14:AE:01:24:74:BC:14:28:17 X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:8d:60:23:2d:4a:9f:0b:12:b7:3a:85:37:0e:79:35:9d:d6: a5:20:08:f5:90:3f:8a:31:2e:9e:c8:f0:9d:75:f2:17:26:f9: d9:6d:3f:f2:1f:00:30:c0:5e:66:ac:37:f2:e2:cc:9e:4e:21: cd:90:0d:a7:8a:5c:88:59:ca:73:66:16:9f:e9:fe:c1:3c:56: 84:b9:47:64:ff:51:62:fa:fb:8f:a3:2f:7c:af:ba:39:ea:b9: 79:62:cd:d4:ff:7c:09:4b:85:13:dd:51:33:ce:21:3a:16:a2: 5e:df:30:a5:c0:45:72:85:79:e9:c6:39:4a:f8:7d:89:b7:62: 3c:31:74:7c:ba:9c:bf:61:91:43:c0:12:5a:5a:7a:37:c5:98: a2:df:6b:b8:c3:c0:85:82:c6:06:af:55:fc:38:e3:9b:d5:1d: dd:a0:f4:e8:8b:01:a3:d6:3c:8a:15:ea:98:28:fd:5c:8d:f0: ce:a9:ec:93:f0:79:ba:65:eb:17:59:4b:e6:52:47:7e:ad:ea: 66:52:9b:b9:c7:bc:16:b2:c2:90:a2:a9:84:f8:6a:db:e7:03: 4f:24:97:4b:20:df:98:d9:5e:38:52:7f:80:2f:f8:7e:8e:66: 77:8d:32:dd:aa:45:0e:b0:43:13:2a:30:42:64:a9:1d:39:ae: 23:13:47:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjUxMTA1MDUzNTE3WhcNMjUxMTEyMDUzNTE3WjAYMRYwFAYD VQQDEw02OTBhZTIxNS02NDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEcem+5Uf7OxncaCONSC8BTGMeOMiDkau3Kt7eWDgIyGDD4Om6kGcYNT0yPW 0GlmU4CUifJdyjyzZNx65MJj63WwDCh54mrVzKwIn8J7/LFQNCgUJ3qO7WWbbSHA ZEbK5s5T4rJt7F5Y0EwN/ODdCZs02AbsPPVr09EPs6bXy4AOoHp7lPtSxvsaslJr qtjx9c5AqWJjA/E5WgvD0t6TgTxtH7Kk00QC8MMZXY8DSoRJWf1XwPzi3d7N812D Gvk7kUbzaK50NMsn77wMGRRo+BAv/UGi2Dmw7GGJNPiLB6Lhoz0zyB8tCozOSuml SprYZ5KjExwgjx1GWJCQG8ybIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZeZLBw vdtelC0QFK4BJHS8FCgXMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsjWAjLUqfCxK3OoU3Dnk1ndalIAj1kD+KMS6eyPCddfIXJvnZbT/y HwAwwF5mrDfy4syeTiHNkA2nilyIWcpzZhaf6f7BPFaEuUdk/1Fi+vuPoy98r7o5 6rl5Ys3U/3wJS4UT3VEzziE6FqJe3zClwEVyhXnpxjlK+H2Jt2I8MXR8upy/YZFD wBJaWno3xZii32u4w8CFgsYGr1X8OOOb1R3doPToiwGj1jyKFeqYKP1cjfDOqeyT 8Hm6ZesXWUvmUkd+repmUpu5x7wWssKQoqmE+Grb5wNPJJdLIN+Y2V44Un+AL/h+ jmZ3jTLdqkUOsEMTKjBCZKkdOa4jE0eC -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:13 2025 by rpki-client