$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: a74tgc+TtkeiK7DB5OUN3KSZanPl/zRwVX/4waxYin8= Subject key identifier: 45:1B:59:EB:26:64:46:FB:14:6D:65:08:8F:09:16:8E:F3:FF:38:81 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 2139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 2127 Signing time: Tue 04 Nov 2025 16:02:03 +0000 Manifest this update: Tue 04 Nov 2025 16:02:02 +0000 Manifest next update: Tue 11 Nov 2025 16:02:02 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: uyU+Cc7pS11VM3sXoEFWIOtzP4pEe1mcIN92xmAhAQ8=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8505 (0x2139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Nov 4 16:02:02 2025 GMT Not After : Nov 11 16:02:02 2025 GMT Subject: CN=690a237a-b43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d0:5b:0e:2f:cb:63:70:3d:e2:b9:22:c6:13: 09:cf:5e:00:5d:fa:0f:bf:d6:66:73:44:0d:66:a8: a1:40:4d:a0:3a:06:1b:52:04:4d:d5:d3:ca:34:0c: c8:86:1b:5a:d6:cb:c9:b8:3e:7b:b3:d2:23:3b:1a: 91:48:4a:ff:24:b8:7e:de:d1:8e:3a:7d:07:aa:17: 83:57:7d:5e:26:c7:51:74:da:bf:a5:12:e4:bf:69: e2:1c:10:96:2a:af:e6:1e:7a:2b:7e:9e:f1:f5:87: 9c:8a:41:61:4a:f0:7d:da:64:84:e6:fa:07:97:b7: c8:cf:af:ea:89:a0:e1:a7:ef:fa:5b:88:36:a7:85: 5e:50:b6:5e:96:0e:73:32:b8:e6:43:3e:47:a9:19: 28:1e:3b:d1:b6:19:04:9b:e7:c7:17:f5:da:c1:da: 64:76:c5:d0:60:fa:b7:96:a6:1d:6c:7e:33:f5:1f: a5:15:94:5f:11:36:d5:50:df:60:19:d3:11:17:e5: 59:a9:f3:52:6b:0e:89:17:3a:ea:e7:56:b0:ce:0b: 4b:d8:2f:43:a0:95:ae:fd:2d:7c:6b:e2:f6:97:18: 55:f3:57:e5:b9:09:c3:79:24:7b:2d:c5:17:e6:a6: 70:ce:20:8a:5d:23:da:3c:81:22:01:9d:e3:23:4c: fc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1B:59:EB:26:64:46:FB:14:6D:65:08:8F:09:16:8E:F3:FF:38:81 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:41:92:71:9a:d4:d7:e7:2f:e2:f2:ba:1f:b6:9f:4c:23:58: cc:c5:ee:fa:ba:dd:68:c7:27:59:8d:93:f6:c5:56:cc:3c:e3: 8f:54:cc:57:a1:98:9c:2d:08:11:09:e3:52:36:d4:82:3d:9a: 9a:84:72:6a:68:30:5f:63:98:61:34:27:d8:9b:81:30:72:64: 21:06:e4:75:2b:23:82:b0:5e:c6:9f:a4:37:07:f4:95:f7:7f: 58:0c:fe:af:1f:2e:54:fc:21:14:1d:a3:30:87:3a:e7:27:b1: eb:d8:79:58:c8:a9:58:65:2f:97:7c:45:7b:9f:6d:96:66:13: 7c:6c:01:bf:d5:c7:73:1e:57:03:49:55:df:a1:ec:ee:d6:0c: e7:d5:65:55:43:c1:4f:20:1a:01:12:7b:f4:39:3e:f0:42:e1: 5b:0e:b0:ca:9f:35:34:1e:f2:cf:f8:93:f7:3c:00:3c:48:e2: 60:be:7e:ed:49:f6:71:73:39:8a:46:8e:3f:f1:16:64:0e:f9: 34:70:d8:13:5c:22:d1:91:ac:46:e8:e6:09:42:9d:a9:1b:f5: 00:a9:53:c6:4e:fc:6f:a3:26:ab:86:a9:d2:e6:c8:c0:5b:ff: 15:41:9a:25:bb:74:21:2a:89:4a:b7:55:ca:c8:ac:e5:77:73: 31:6a:04:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUxMTA0MTYwMjAyWhcNMjUxMTExMTYwMjAyWjAYMRYwFAYD VQQDEw02OTBhMjM3YS1iNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NBbDi/LY3A94rkixhMJz14AXfoPv9Zmc0QNZqihQE2gOgYbUgRN1dPKNAzI hhta1svJuD57s9IjOxqRSEr/JLh+3tGOOn0HqheDV31eJsdRdNq/pRLkv2niHBCW Kq/mHnorfp7x9YecikFhSvB92mSE5voHl7fIz6/qiaDhp+/6W4g2p4VeULZelg5z MrjmQz5HqRkoHjvRthkEm+fHF/XawdpkdsXQYPq3lqYdbH4z9R+lFZRfETbVUN9g GdMRF+VZqfNSaw6JFzrq51awzgtL2C9DoJWu/S18a+L2lxhV81fluQnDeSR7LcUX 5qZwziCKXSPaPIEiAZ3jI0z8awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUbWesm ZEb7FG1lCI8JFo7z/ziBMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVQZJxmtTX5y/i8roftp9MI1jMxe76ut1oxydZjZP2xVbMPOOPVMxX oZicLQgRCeNSNtSCPZqahHJqaDBfY5hhNCfYm4EwcmQhBuR1KyOCsF7Gn6Q3B/SV 939YDP6vHy5U/CEUHaMwhzrnJ7Hr2HlYyKlYZS+XfEV7n22WZhN8bAG/1cdzHlcD SVXfoezu1gzn1WVVQ8FPIBoBEnv0OT7wQuFbDrDKnzU0HvLP+JP3PAA8SOJgvn7t SfZxczmKRo4/8RZkDvk0cNgTXCLRkaxG6OYJQp2pG/UAqVPGTvxvoyarhqnS5sjA W/8VQZolu3QhKolKt1XKyKzld3MxagR8 -----END CERTIFICATE-----Generated at Wed Nov 5 16:58:54 2025 by rpki-client