$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: nT2QGQeGB+RfHzBiwb/2twdOFLbqjZr5wh5XpsfSzxQ= Subject key identifier: 7B:60:F2:E0:3F:1B:52:27:91:6A:8C:2C:B1:36:06:39:89:2E:98:AA Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 05C6 Signing time: Sun 02 Nov 2025 23:05:38 +0000 Manifest this update: Sun 02 Nov 2025 23:05:37 +0000 Manifest next update: Sun 09 Nov 2025 23:05:37 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: Cuj/HP0dm3WYToQu+GExX91xp06iLLadw4IY3UPuQdU=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: Mr4cvAF99YsJ9vM3bpplyr/XjV6Oh9dCkUlGWW3glRM=) 3: A6EF097068F911F092D77151C4F9AE02.roa (hash: CVgVNZzRg+yoeNSO5TmorciwKychjnQza4bd4ni3W/0=) 4: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: olIQCCewOfkMwGkHHOS/5ivD24pRNNt8XVcMGE/8pfs=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: yhFTvnQ9OnQm5YRLzb7trt3j3jJDg72T+yloJnYuUVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Nov 2 23:05:37 2025 GMT Not After : Nov 9 23:05:37 2025 GMT Subject: CN=6907e3c2-7a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:41:64:f7:f2:c1:10:6f:ee:d4:f9:ea:2a:f7: 05:cb:e9:4c:4f:a0:40:24:fa:1a:b7:7f:eb:b5:4a: c8:2c:f0:41:d5:df:94:91:0f:2f:41:92:40:b8:2b: 97:b0:46:18:ed:09:59:60:a1:1c:8d:ae:e8:28:6c: d7:93:7f:94:f5:4c:22:4a:6b:f5:9f:c0:45:68:43: 6f:cb:35:50:f6:84:97:31:b7:9f:ef:ac:36:88:3a: 09:9a:99:82:cc:49:fb:e2:d7:fa:15:d1:39:54:a6: 9a:72:6f:d1:84:44:d4:41:bf:51:da:9c:c9:4c:02: 1c:8a:86:b2:ad:ac:6a:df:a6:c7:9c:7c:cf:0d:1e: 5e:05:57:2e:0c:b9:fa:1b:16:d8:e5:d4:e6:ce:95: 18:1c:20:1a:1a:e0:01:97:bc:75:60:f2:f5:ab:a7: 29:c1:12:03:91:87:19:cf:ee:bd:31:c9:04:f9:bf: 2e:10:2d:b5:e8:df:2d:ae:6a:78:dd:ff:17:7e:c8: 1f:c9:a6:3d:1d:8a:fd:4c:ae:36:59:a3:e6:41:a8: f5:79:8e:d0:b9:73:3e:a1:6d:e5:c2:1f:89:a4:b0: 86:cb:dd:3c:50:76:80:f7:bd:fc:b6:b5:04:68:47: d6:6e:5a:63:9d:02:97:32:63:b7:00:3f:ba:bb:b1: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:60:F2:E0:3F:1B:52:27:91:6A:8C:2C:B1:36:06:39:89:2E:98:AA X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b0:1e:6f:6f:d8:74:a8:e8:e2:90:a3:db:0e:14:67:24:e7: b3:72:24:b4:1a:98:c1:85:f6:4b:32:cd:a4:d8:11:a1:5a:34: 8a:ac:98:91:f4:43:05:0a:9f:ab:4e:e6:74:f5:47:21:84:67: 3d:df:ee:3c:c2:17:9d:40:3f:cb:6c:43:47:c0:b0:c4:29:14: c0:fb:75:01:c0:f0:14:c6:a6:8e:73:bf:f2:a0:e1:d0:ef:dc: e1:6d:25:49:65:c1:47:89:64:6d:fa:6e:5c:83:52:7a:c5:96: 87:65:ad:6e:a5:c9:91:56:a1:c7:2e:9e:9b:1e:55:cb:67:d0: fb:f7:9e:d2:ae:f3:e1:7e:1d:db:2f:56:b3:6e:a2:14:1a:e6: 4a:dc:90:be:42:87:26:92:00:58:bc:a9:b0:1b:41:f9:76:3e: 8b:a2:7e:ab:38:4f:a9:f7:e6:a9:1c:c6:dc:ab:3a:53:0e:fc: ef:49:cd:bc:d0:12:41:be:f2:c3:18:45:7c:0e:d9:a7:c9:d2: f3:2b:7b:34:d5:cc:65:dc:e1:f7:46:61:6c:b5:41:8c:21:21: 7d:ad:28:81:00:bd:10:c5:3e:91:26:8f:02:31:2b:49:68:7a: bb:ad:21:d7:40:48:7a:3b:86:d5:86:49:b0:d3:82:5e:97:ca: 5d:89:40:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUxMTAyMjMwNTM3WhcNMjUxMTA5MjMwNTM3WjAYMRYwFAYD VQQDEw02OTA3ZTNjMi03YTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kFk9/LBEG/u1PnqKvcFy+lMT6BAJPoat3/rtUrILPBB1d+UkQ8vQZJAuCuX sEYY7QlZYKEcja7oKGzXk3+U9UwiSmv1n8BFaENvyzVQ9oSXMbef76w2iDoJmpmC zEn74tf6FdE5VKaacm/RhETUQb9R2pzJTAIcioayraxq36bHnHzPDR5eBVcuDLn6 GxbY5dTmzpUYHCAaGuABl7x1YPL1q6cpwRIDkYcZz+69MckE+b8uEC216N8trmp4 3f8XfsgfyaY9HYr9TK42WaPmQaj1eY7QuXM+oW3lwh+JpLCGy908UHaA9738trUE aEfWblpjnQKXMmO3AD+6u7H3xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtg8uA/ G1InkWqMLLE2BjmJLpiqMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYsB5vb9h0qOjikKPbDhRnJOezciS0GpjBhfZLMs2k2BGhWjSKrJiR 9EMFCp+rTuZ09UchhGc93+48whedQD/LbENHwLDEKRTA+3UBwPAUxqaOc7/yoOHQ 79zhbSVJZcFHiWRt+m5cg1J6xZaHZa1upcmRVqHHLp6bHlXLZ9D7957SrvPhfh3b L1azbqIUGuZK3JC+QocmkgBYvKmwG0H5dj6Lon6rOE+p9+apHMbcqzpTDvzvSc28 0BJBvvLDGEV8DtmnydLzK3s01cxl3OH3RmFstUGMISF9rSiBAL0QxT6RJo8CMStJ aHq7rSHXQEh6O4bVhkmw04Jel8pdiUB4 -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:57 2025 by rpki-client