$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: jvqpNPHyM61yQ1iytrI+pWzJBsk4op7XK9HzBXRDta8= Subject key identifier: 10:70:AE:B1:E1:69:F3:EE:E6:4A:67:EB:60:FD:4F:84:9C:EF:AB:C3 Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: 7D Signing time: Wed 05 Nov 2025 06:57:52 +0000 Manifest this update: Wed 05 Nov 2025 06:57:51 +0000 Manifest next update: Wed 12 Nov 2025 06:57:51 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: 0MHIJM5QrxUKcLrOVqWP7ZI9KyQFdMddITdPp9d2JcA=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: LMQmjwLQrmdrjw5ITfcjjvXTHrCvldYng4+Bqh2xDu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Nov 5 06:57:51 2025 GMT Not After : Nov 12 06:57:51 2025 GMT Subject: CN=690af570-be3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:13:c1:45:a7:8f:a2:8b:50:1e:e6:2c:7b:f1: 8a:e9:13:04:92:3f:4a:a8:80:84:92:d1:cd:16:9a: bd:d6:bb:31:c1:b9:87:65:5f:9d:ee:f3:60:71:57: e8:0d:cf:23:0c:e4:6a:c9:da:1a:8d:63:d5:9c:1e: 85:04:81:a8:fc:03:be:f2:44:43:38:2e:f4:a8:54: 8c:04:db:b5:2f:2b:0c:f2:ee:d0:45:11:a0:1d:81: 93:0c:95:ef:97:4f:95:46:a0:4d:b6:b9:bb:d1:7e: 46:89:7f:0d:ac:c2:bd:f0:58:a6:e0:ca:3a:71:1a: c5:aa:7b:22:20:4b:91:f1:87:96:ca:ea:e0:e6:c8: 43:43:8d:a5:ea:af:0a:71:6f:72:e2:c8:d6:8a:da: 8c:ff:ea:f6:b9:9a:3c:83:91:03:ac:43:d2:83:34: 1b:44:84:21:5b:e2:27:d8:d2:14:c9:0d:00:a0:68: c6:3e:53:70:25:0e:a6:a0:f3:4e:7a:4d:68:c7:d1: c2:de:43:08:35:eb:e0:2c:ec:6e:8c:1d:22:f4:5d: 50:1d:97:91:69:2d:f8:f0:a5:ae:91:40:4a:f6:ef: f0:92:87:87:67:5b:3d:b7:37:2d:e3:02:04:0c:ba: 72:3c:c4:a4:05:80:9b:f3:12:3b:50:7c:8b:21:d9: d9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:70:AE:B1:E1:69:F3:EE:E6:4A:67:EB:60:FD:4F:84:9C:EF:AB:C3 X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e0:62:6a:04:ad:8e:8e:aa:d8:75:08:e0:de:3d:32:c5:42: 14:7b:b1:c3:1d:0b:65:ec:22:9c:04:e1:8d:e1:cf:d5:a3:78: 62:a7:92:06:9d:f4:d6:dc:50:38:15:a5:39:e8:ad:e2:cb:1d: 0a:50:c4:8b:f8:b1:87:e9:c8:f6:33:85:bd:7e:8c:f2:8d:98: d9:f3:9c:32:c2:cc:c4:48:f0:f0:4d:b3:74:e2:6d:0f:aa:5d: b5:c2:2e:c0:47:be:23:23:b6:69:11:b5:16:7d:1f:6b:e0:59: b9:1f:37:fc:d2:fb:0d:33:67:22:e6:bd:b9:73:ef:f9:2b:86: ef:f0:3b:79:64:8e:85:db:e7:42:db:cc:21:12:4c:88:cb:1c: ee:cd:58:e5:26:47:3e:38:12:d9:42:01:10:0f:14:d9:d9:bf: 37:d2:de:1f:43:86:2c:5d:30:16:dc:4a:36:fd:d4:1d:21:26: e5:1d:29:13:44:40:a1:71:85:2f:bc:f2:56:59:42:48:55:a3: e7:18:92:f5:ff:4e:b3:ad:29:9f:31:9d:74:b0:5f:22:cb:65: 54:0f:40:d3:6b:41:29:49:5b:fa:ba:a7:3a:c8:42:ff:ae:42: aa:64:8d:ae:dc:a9:3a:6f:8c:0b:82:97:9e:62:f9:70:b0:6a: 4f:9c:aa:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoMUY0RENFMzQzOUIxRjQwMzVGRkY4QzcxQ0UzNTlFNUQy MEU2OUEyNDAeFw0yNTExMDUwNjU3NTFaFw0yNTExMTIwNjU3NTFaMBgxFjAUBgNV BAMTDTY5MGFmNTcwLWJlM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUE8FFp4+ii1Ae5ix78YrpEwSSP0qogISS0c0Wmr3WuzHBuYdlX53u82BxV+gN zyMM5GrJ2hqNY9WcHoUEgaj8A77yREM4LvSoVIwE27UvKwzy7tBFEaAdgZMMle+X T5VGoE22ubvRfkaJfw2swr3wWKbgyjpxGsWqeyIgS5Hxh5bK6uDmyENDjaXqrwpx b3LiyNaK2oz/6va5mjyDkQOsQ9KDNBtEhCFb4ifY0hTJDQCgaMY+U3AlDqag8056 TWjH0cLeQwg16+As7G6MHSL0XVAdl5FpLfjwpa6RQEr27/CSh4dnWz23Ny3jAgQM unI8xKQFgJvzEjtQfIsh2dkNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEHCuseFp 8+7mSmfrYP1PhJzvq8MwHwYDVR0jBBgwFoAUH03ONDmx9ANf/4xxzjWeXSDmmiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzJGMjUzQzFBRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1p US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSDAzT05EbXg5QU5mXzR4eHpqV2VYU0RtbWlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzJGMjUzQzFBRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14OUFO Zl80eHh6aldlWFNEbW1pUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEHgYmoErY6Oqth1CODePTLFQhR7scMdC2XsIpwE4Y3hz9WjeGKnkgad 9NbcUDgVpTnoreLLHQpQxIv4sYfpyPYzhb1+jPKNmNnznDLCzMRI8PBNs3TibQ+q XbXCLsBHviMjtmkRtRZ9H2vgWbkfN/zS+w0zZyLmvblz7/krhu/wO3lkjoXb50Lb zCESTIjLHO7NWOUmRz44EtlCARAPFNnZvzfS3h9DhixdMBbcSjb91B0hJuUdKRNE QKFxhS+88lZZQkhVo+cYkvX/TrOtKZ8xnXSwXyLLZVQPQNNrQSlJW/q6pzrIQv+u Qqpkja7cqTpvjAuCl55i+XCwak+cqpI= -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:32 2025 by rpki-client