$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: rc9jvwFnr7Z06g38/d7e55LEzu4kWZkMkzQKXy/GyiQ= Subject key identifier: 44:D7:CE:A2:EF:F9:8B:C6:F3:1F:1E:B3:92:52:43:C7:51:B9:9C:98 Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01F3 Signing time: Mon 03 Nov 2025 02:30:28 +0000 Manifest this update: Mon 03 Nov 2025 02:30:28 +0000 Manifest next update: Mon 10 Nov 2025 02:30:28 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: kEDM/97S6m0kv9UWPcW4BGGMNx+HMz55Gw1ho0jTbk4=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: A4mMoOgqhrpbmnUE3oA6zWgyEjfGMI0KKDHAWWwT+kY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Nov 3 02:30:28 2025 GMT Not After : Nov 10 02:30:28 2025 GMT Subject: CN=690813c4-60cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:46:c6:9b:08:97:fa:72:b6:9d:ed:99:61: 2c:65:8d:9e:a4:73:7e:07:74:8f:90:bf:3c:eb:41: db:2f:67:3e:6a:bd:9c:1e:7c:be:6e:eb:b9:3a:51: f9:2d:19:3a:c7:05:90:80:5c:8f:5f:85:b2:c7:e9: c8:f7:d3:97:7a:79:5b:09:fb:a9:60:39:c6:a8:db: f9:d4:43:0e:b6:93:b1:b4:98:9d:68:0f:1d:2f:1f: c8:90:e9:c4:37:11:77:2e:10:56:65:c8:00:86:67: d5:eb:93:65:0e:30:98:cf:00:2f:18:29:8a:33:52: bc:6c:f4:78:a1:ca:86:95:48:79:ba:96:de:83:4e: 3e:22:3f:ef:7b:a9:40:74:8b:5d:e3:da:4f:94:a1: 08:bd:0c:e1:90:ca:46:99:29:b2:d8:93:86:7c:62: 4b:23:0c:8d:db:e2:07:4d:22:f4:43:1a:7b:d5:f8: ae:af:ec:5c:78:7e:39:b0:22:ca:2a:37:84:ad:94: 46:9b:4a:ae:b1:b6:71:06:4a:a8:ab:f8:a1:ef:c1: 82:b7:77:2a:99:00:8d:86:57:90:d5:57:6f:bb:f5: b4:1a:07:d2:2e:aa:26:20:be:34:b7:1f:6c:3a:ed: 11:ee:58:11:0f:80:9f:0e:6d:51:a6:cf:2d:4f:9d: 81:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D7:CE:A2:EF:F9:8B:C6:F3:1F:1E:B3:92:52:43:C7:51:B9:9C:98 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:24:df:bb:81:19:a9:2e:92:be:ca:0a:61:13:d9:30:5c:d8: 3d:a4:e3:6b:9e:69:14:14:72:5e:9f:55:89:2d:18:86:64:ba: df:27:e6:8e:3d:29:f8:70:93:6c:cc:42:2d:8b:e2:39:ae:6b: dc:41:bd:3e:8c:fe:70:db:94:91:0c:f5:af:2a:94:e1:cd:06: 8e:9a:d2:dd:92:d6:42:73:cf:00:e2:2e:b4:b4:95:46:b0:7d: f6:e0:03:6c:3e:e4:c9:67:98:6e:e8:8f:b3:4a:cd:5b:72:c8: a7:7b:1a:cf:74:9e:ef:24:50:27:05:d2:d3:06:5c:49:54:f2: b0:ac:69:64:97:8d:35:f6:c8:e1:fc:2f:61:fb:da:b9:ee:4c: 37:3d:a3:5e:dc:29:5b:d2:b2:1f:63:97:9e:23:87:51:ba:6c: f5:7f:55:5d:8f:48:f5:2d:55:8a:cf:5c:a9:9f:17:7e:b6:47: 3f:ea:09:50:f7:57:0b:55:f9:9e:bf:1c:74:3c:9a:89:54:be: bb:e1:04:c4:02:a8:49:16:35:9b:fc:32:8e:e0:95:c8:32:95: 83:4a:ec:7c:88:a0:db:bc:10:71:de:e4:d2:00:ff:64:19:8c: 40:7e:d5:6e:fc:93:f9:41:68:6d:6f:6b:5c:bb:f6:1d:4b:86: b6:9f:02:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUxMTAzMDIzMDI4WhcNMjUxMTEwMDIzMDI4WjAYMRYwFAYD VQQDEw02OTA4MTNjNC02MGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6FGxpsIl/pytp3tmWEsZY2epHN+B3SPkL8860HbL2c+ar2cHny+buu5OlH5 LRk6xwWQgFyPX4Wyx+nI99OXenlbCfupYDnGqNv51EMOtpOxtJidaA8dLx/IkOnE NxF3LhBWZcgAhmfV65NlDjCYzwAvGCmKM1K8bPR4ocqGlUh5upbeg04+Ij/ve6lA dItd49pPlKEIvQzhkMpGmSmy2JOGfGJLIwyN2+IHTSL0Qxp71fiur+xceH45sCLK KjeErZRGm0qusbZxBkqoq/ih78GCt3cqmQCNhleQ1Vdvu/W0GgfSLqomIL40tx9s Ou0R7lgRD4CfDm1Rps8tT52BEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETXzqLv +YvG8x8es5JSQ8dRuZyYMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpJN+7gRmpLpK+ygphE9kwXNg9pONrnmkUFHJen1WJLRiGZLrfJ+aO PSn4cJNszEIti+I5rmvcQb0+jP5w25SRDPWvKpThzQaOmtLdktZCc88A4i60tJVG sH324ANsPuTJZ5hu6I+zSs1bcsinexrPdJ7vJFAnBdLTBlxJVPKwrGlkl4019sjh /C9h+9q57kw3PaNe3Clb0rIfY5eeI4dRumz1f1Vdj0j1LVWKz1ypnxd+tkc/6glQ 91cLVfmevxx0PJqJVL674QTEAqhJFjWb/DKO4JXIMpWDSux8iKDbvBBx3uTSAP9k GYxAftVu/JP5QWhtb2tcu/YdS4a2nwKG -----END CERTIFICATE-----Generated at Tue Nov 4 16:30:17 2025 by rpki-client