$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: FCF0n6c7jbR4IOxNh7cm5zJBQpOlUzhggIGYaO1VHsg= Subject key identifier: C7:D4:BE:F3:83:8C:AB:21:AD:3F:39:CC:3B:02:6D:38:64:29:26:E1 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1555 Signing time: Sun 02 Nov 2025 16:47:27 +0000 Manifest this update: Sun 02 Nov 2025 16:47:27 +0000 Manifest next update: Sun 09 Nov 2025 16:47:27 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: 4K2nMeq5tJZm1wzs1kp7lBeF6HwIeIXomjxEYcaVH/Y=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5478 (0x1566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Nov 2 16:47:27 2025 GMT Not After : Nov 9 16:47:27 2025 GMT Subject: CN=69078b1f-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:73:85:8b:b9:bb:21:27:a5:b2:46:92:d6: 11:93:35:58:04:d7:97:15:a8:bf:3a:71:6b:d5:ce: b4:27:60:95:05:49:8e:4d:4c:55:5d:e1:97:fc:f9: 61:d1:62:1a:d8:6d:c1:c9:96:44:a9:8d:36:ce:cc: 6c:10:e2:d3:7b:3e:82:d1:10:33:43:82:5c:7c:d0: 24:56:b4:09:59:fb:ba:db:0a:a7:8e:09:ab:27:42: 51:58:5e:63:7a:3f:24:b8:f0:d8:b3:62:ee:d0:71: ec:6e:d2:29:25:83:78:c8:62:6f:20:5a:87:05:bd: e3:fe:96:0d:5d:51:90:0e:a2:fe:53:d5:83:69:a0: 0c:fa:b4:ae:f4:df:76:bb:2c:f7:d5:95:b8:90:07: 09:c1:5f:0c:ce:ac:44:e0:a0:df:41:ae:cb:4a:74: 4a:b9:56:4d:fa:89:6d:fb:d6:ef:33:77:4a:40:a5: d2:62:a5:fe:62:b8:53:62:e8:6e:f1:20:0c:89:52: b1:ff:c0:12:66:b3:14:f6:f5:15:2d:a9:80:39:c5: 12:04:57:6d:40:fc:21:83:42:b3:b6:18:c3:fb:77: 80:1e:eb:8f:b6:be:d2:af:36:c1:82:08:2d:4c:1f: 0f:a0:3a:26:b8:e3:9e:49:5f:b8:a9:e0:9f:a3:77: ce:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D4:BE:F3:83:8C:AB:21:AD:3F:39:CC:3B:02:6D:38:64:29:26:E1 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a4:33:88:68:43:92:3f:b3:cd:92:7e:ff:e3:90:7d:97:40: d9:bd:cf:20:f0:98:33:fe:60:f7:05:45:60:43:17:79:0a:29: 96:d7:20:76:09:0c:41:87:cd:a1:ae:7e:53:c7:9b:65:92:57: 75:03:11:16:ab:ad:9c:af:02:06:09:fc:ae:9c:55:b7:53:bf: 2c:ad:5c:8a:2f:7a:93:f2:f2:7e:7a:90:a2:91:b0:7b:65:41: 07:ad:66:c8:77:ee:4f:b6:9d:61:b8:6c:1e:15:4f:b4:e2:ed: 9e:95:99:07:be:09:77:6e:b3:f2:92:fe:cf:77:c2:b0:e5:98: 7d:79:64:c2:74:27:58:eb:89:a7:cb:3c:b3:ed:1c:19:4e:f5: a8:0a:52:12:23:21:a7:f2:93:01:a8:d0:03:03:89:3c:d8:36: 29:17:14:fc:b9:ba:1f:22:53:fa:0a:48:24:2e:50:0f:a8:b6: da:b8:f3:65:50:50:ec:e6:fd:68:a7:95:13:dd:ec:fe:72:5e: 1b:7d:c4:17:29:13:ef:fe:a7:09:c6:b0:cd:6b:6b:e4:a7:97: af:62:16:b5:a6:ce:d0:c5:18:30:39:9c:00:e1:9f:d2:15:b9: 7d:1d:18:ae:d9:19:78:cb:3f:8e:9d:d7:e4:a0:3e:00:67:f5: ab:7f:f2:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUxMTAyMTY0NzI3WhcNMjUxMTA5MTY0NzI3WjAYMRYwFAYD VQQDEw02OTA3OGIxZi01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsJzhYu5uyEnpbJGktYRkzVYBNeXFai/OnFr1c60J2CVBUmOTUxVXeGX/Plh 0WIa2G3ByZZEqY02zsxsEOLTez6C0RAzQ4JcfNAkVrQJWfu62wqnjgmrJ0JRWF5j ej8kuPDYs2Lu0HHsbtIpJYN4yGJvIFqHBb3j/pYNXVGQDqL+U9WDaaAM+rSu9N92 uyz31ZW4kAcJwV8MzqxE4KDfQa7LSnRKuVZN+olt+9bvM3dKQKXSYqX+YrhTYuhu 8SAMiVKx/8ASZrMU9vUVLamAOcUSBFdtQPwhg0KzthjD+3eAHuuPtr7SrzbBgggt TB8PoDomuOOeSV+4qeCfo3fO5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfUvvOD jKshrT85zDsCbThkKSbhMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPpDOIaEOSP7PNkn7/45B9l0DZvc8g8Jgz/mD3BUVgQxd5CimW1yB2 CQxBh82hrn5Tx5tlkld1AxEWq62crwIGCfyunFW3U78srVyKL3qT8vJ+epCikbB7 ZUEHrWbId+5Ptp1huGweFU+04u2elZkHvgl3brPykv7Pd8Kw5Zh9eWTCdCdY64mn yzyz7RwZTvWoClISIyGn8pMBqNADA4k82DYpFxT8ubofIlP6CkgkLlAPqLbauPNl UFDs5v1op5UT3ez+cl4bfcQXKRPv/qcJxrDNa2vkp5evYha1ps7QxRgwOZwA4Z/S Fbl9HRiu2Rl4yz+OndfkoD4AZ/Wrf/Ka -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:46 2025 by rpki-client