$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: 6N00hVfGfLflGY61a0Oc7Mf6xs/8Y7F+XW4tkpvfPSk= Subject key identifier: 21:7E:D4:BF:06:E7:B9:29:C8:7B:5F:16:BA:73:4C:1C:BB:4F:C3:34 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 038C Signing time: Wed 05 Nov 2025 00:53:48 +0000 Manifest this update: Wed 05 Nov 2025 00:53:48 +0000 Manifest next update: Wed 12 Nov 2025 00:53:48 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: wqzMGgVqbNNCSti08Y5Fng+m+n3fi/dVhY+bAPAC0co=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Nov 5 00:53:48 2025 GMT Not After : Nov 12 00:53:48 2025 GMT Subject: CN=690aa01c-02c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:a8:54:6e:9e:53:d0:a2:0a:61:35:a5:86: ff:02:65:7f:13:7c:29:34:14:44:51:f2:63:82:24: 86:32:e9:9c:f0:ec:2f:e3:9d:88:4d:51:59:b3:cf: 09:de:29:f0:a1:8a:09:f7:aa:a1:4a:4f:0c:9d:37: 2d:16:08:ca:c2:bc:35:b0:05:6b:5f:18:2c:a2:00: 3f:fb:02:26:1d:23:83:29:74:02:f3:ec:89:e9:9f: 37:c0:43:12:a1:46:24:61:58:83:6a:a7:70:fe:f4: c5:1a:61:ce:29:41:fd:ca:5b:48:5f:0d:e6:64:ea: 7f:0c:4a:b4:8d:39:d0:cd:41:ac:f3:81:60:ec:8a: 74:c4:3a:51:30:6d:67:36:58:de:52:f4:42:69:e5: 44:ee:30:8e:55:bd:cc:03:68:3a:11:b5:5b:10:ee: 03:dd:3e:69:4d:e1:c7:58:96:ff:ed:bc:7b:27:0b: 7a:fe:ed:41:90:22:ac:b7:fc:07:61:9e:3d:4c:ce: ff:6b:71:11:ad:46:c3:b9:34:07:7a:e4:f7:75:c6: 6f:92:33:75:04:16:ef:f8:91:5f:cc:7f:70:aa:4e: 19:b4:0b:63:ea:73:90:66:d0:b3:5c:3c:c6:e7:d0: b0:c1:e7:52:15:c8:1b:dc:83:35:0c:e0:a3:e5:7d: 95:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7E:D4:BF:06:E7:B9:29:C8:7B:5F:16:BA:73:4C:1C:BB:4F:C3:34 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:9c:da:ee:3a:e5:49:33:f5:cc:e9:a8:3e:5e:57:83:11:49: 05:ae:95:73:99:a7:cc:1e:b4:c9:ba:7d:ab:fb:ec:01:39:d0: 32:19:45:f0:e4:80:79:bf:9e:6c:b4:cf:11:02:41:02:36:59: 01:02:e2:b1:cd:f7:d1:39:9d:fa:fe:9c:10:76:98:09:28:71: 68:02:c4:13:2b:73:60:55:7e:35:03:de:98:51:94:54:ad:9a: 23:44:49:e7:7c:1f:87:91:bc:c5:aa:f4:4f:d9:e9:ed:d4:fa: c6:e2:fa:55:49:08:26:26:be:bf:01:74:89:d1:52:37:56:a3: 49:d1:fb:6b:ac:e2:05:d5:a9:65:6b:10:25:cb:35:ee:5c:76: 5b:01:37:8a:94:a5:29:65:91:a0:f7:e9:76:0c:cd:c9:ca:6c: b2:f5:fb:05:80:f8:af:d4:27:b9:1f:4e:d3:d4:58:96:13:c2: 89:d4:76:4e:a1:34:e0:2a:35:c9:e9:b7:e9:1e:da:c0:eb:6b: bb:23:4c:b3:21:84:f9:50:3d:52:1e:77:25:ed:2a:f4:bd:dc: 46:d2:bf:09:25:4c:d2:e2:5d:56:7e:fe:28:5e:ab:2c:1d:71: 74:2d:e0:81:12:17:d8:a0:3c:f3:58:7c:56:40:81:28:fe:b7: 01:7a:eb:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMTA1MDA1MzQ4WhcNMjUxMTEyMDA1MzQ4WjAYMRYwFAYD VQQDEw02OTBhYTAxYy0wMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SmoVG6eU9CiCmE1pYb/AmV/E3wpNBREUfJjgiSGMumc8Owv452ITVFZs88J 3inwoYoJ96qhSk8MnTctFgjKwrw1sAVrXxgsogA/+wImHSODKXQC8+yJ6Z83wEMS oUYkYViDaqdw/vTFGmHOKUH9yltIXw3mZOp/DEq0jTnQzUGs84Fg7Ip0xDpRMG1n NljeUvRCaeVE7jCOVb3MA2g6EbVbEO4D3T5pTeHHWJb/7bx7Jwt6/u1BkCKst/wH YZ49TM7/a3ERrUbDuTQHeuT3dcZvkjN1BBbv+JFfzH9wqk4ZtAtj6nOQZtCzXDzG 59CwwedSFcgb3IM1DOCj5X2V/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCF+1L8G 57kpyHtfFrpzTBy7T8M0MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTnNruOuVJM/XM6ag+XleDEUkFrpVzmafMHrTJun2r++wBOdAyGUXw 5IB5v55stM8RAkECNlkBAuKxzffROZ36/pwQdpgJKHFoAsQTK3NgVX41A96YUZRU rZojREnnfB+HkbzFqvRP2ent1PrG4vpVSQgmJr6/AXSJ0VI3VqNJ0ftrrOIF1all axAlyzXuXHZbATeKlKUpZZGg9+l2DM3Jymyy9fsFgPiv1Ce5H07T1FiWE8KJ1HZO oTTgKjXJ6bfpHtrA62u7I0yzIYT5UD1SHncl7Sr0vdxG0r8JJUzS4l1Wfv4oXqss HXF0LeCBEhfYoDzzWHxWQIEo/rcBeuuX -----END CERTIFICATE-----Generated at Wed Nov 5 19:27:54 2025 by rpki-client