$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: Jct+1HbXl/l2bqxyFAExbZnStSPJDccOvXSVTS65oN0= Subject key identifier: DD:D1:A8:8B:A4:5A:B2:EE:BB:A0:A6:24:09:96:E9:4A:17:0E:0A:1D Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 03A1 Signing time: Sun 19 Oct 2025 02:44:27 +0000 Manifest this update: Sun 19 Oct 2025 02:44:26 +0000 Manifest next update: Sun 26 Oct 2025 02:44:26 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: F6Z/Y5PqIOAim7gLwVXVpGncsc9MwRuDQx64o9Dixn0=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: m/bIsnc72f+GKlsPAyrWqEs82wNRpWBNpwKZDStdnM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Oct 19 02:44:26 2025 GMT Not After : Oct 26 02:44:26 2025 GMT Subject: CN=68f4508a-180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:93:4a:bd:dc:9b:5d:e4:81:9c:d3:8d:56:69: 9d:e3:00:f6:d0:b8:2f:23:f2:93:70:af:db:20:56: c4:c1:5b:ef:1e:ae:b8:78:ff:0f:f7:b1:40:5f:fa: 22:1a:83:9f:94:09:a7:ac:a2:ae:32:bf:c2:05:59: 50:91:68:7f:ec:9e:1f:b2:b3:c0:d4:2d:65:09:83: bb:2d:cd:c3:3f:ff:03:3e:f7:9f:eb:6d:53:79:85: 17:82:00:36:7f:31:bd:b6:4c:38:25:0e:fa:42:aa: aa:53:40:f8:fc:94:92:4c:49:b8:e9:84:f2:1a:ed: 28:fa:79:fd:af:da:22:5f:17:91:f6:92:2c:f2:94: e4:20:94:4e:eb:98:34:2a:7a:14:da:5f:9c:5c:bc: 60:4b:8a:6e:f9:74:ce:fc:bf:f8:bc:0c:d1:73:ec: b7:26:3e:1c:41:90:48:17:5b:98:75:24:18:03:0d: 22:56:cf:01:59:1e:ba:2b:7a:fd:16:cb:6a:5d:61: 05:75:4f:2b:9d:4b:84:70:bd:c3:a5:6e:49:74:97: 18:9a:37:ec:84:d2:76:67:a8:48:ab:45:33:a3:84: 1e:93:59:3e:87:de:0e:43:d8:1c:5f:78:a4:c5:91: 7c:d0:55:d8:d1:37:98:ac:b1:88:64:ac:13:0f:67: 27:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D1:A8:8B:A4:5A:B2:EE:BB:A0:A6:24:09:96:E9:4A:17:0E:0A:1D X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5f:41:db:d7:62:7b:34:c3:b6:e4:2b:ab:bb:7a:9c:c0:88: f9:08:77:41:ad:54:97:39:e9:4b:2d:3e:d1:f4:1f:ee:28:f2: ee:07:75:e2:b9:e8:6e:ae:a8:40:e8:8f:f1:cc:25:a8:80:40: ee:bf:71:82:7b:76:0b:3a:4c:0d:7d:98:3d:3c:be:cf:e4:74: a4:7d:f0:55:0d:c7:5b:6b:28:80:69:13:7c:08:a2:30:b9:25: 45:54:1e:b7:dc:7d:c5:a6:48:e3:31:b6:a7:26:e5:11:43:28: f8:f2:57:7f:ce:8d:0d:f3:b6:b4:0a:43:bf:73:59:fd:03:d7: 1f:69:e4:bf:c7:48:92:42:7e:ac:ff:5b:94:dd:d3:c1:82:fb: 93:07:ef:53:28:7e:ae:4c:16:08:17:06:ce:89:b7:ee:26:f4: 95:f2:34:a3:73:aa:15:68:5d:4a:5d:07:b2:32:9b:d6:21:6a: d2:cc:fa:4c:7b:c2:56:19:a0:92:50:15:27:e7:f8:ff:fc:67: 64:96:60:06:2f:39:72:d7:0e:d6:4d:4e:15:2b:87:4b:00:2e: d5:4d:13:3b:aa:be:9c:37:15:b5:e8:4b:a2:53:d4:c5:eb:01: b0:5b:62:54:48:f6:5b:fe:0e:a8:d8:dc:7a:83:26:d5:06:9e: 29:26:e4:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjUxMDE5MDI0NDI2WhcNMjUxMDI2MDI0NDI2WjAYMRYwFAYD VQQDEw02OGY0NTA4YS0xODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5NKvdybXeSBnNONVmmd4wD20LgvI/KTcK/bIFbEwVvvHq64eP8P97FAX/oi GoOflAmnrKKuMr/CBVlQkWh/7J4fsrPA1C1lCYO7Lc3DP/8DPvef621TeYUXggA2 fzG9tkw4JQ76QqqqU0D4/JSSTEm46YTyGu0o+nn9r9oiXxeR9pIs8pTkIJRO65g0 KnoU2l+cXLxgS4pu+XTO/L/4vAzRc+y3Jj4cQZBIF1uYdSQYAw0iVs8BWR66K3r9 FstqXWEFdU8rnUuEcL3DpW5JdJcYmjfshNJ2Z6hIq0Uzo4Qek1k+h94OQ9gcX3ik xZF80FXY0TeYrLGIZKwTD2cn1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3RqIuk WrLuu6CmJAmW6UoXDgodMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPX0Hb12J7NMO25Curu3qcwIj5CHdBrVSXOelLLT7R9B/uKPLuB3Xi uehurqhA6I/xzCWogEDuv3GCe3YLOkwNfZg9PL7P5HSkffBVDcdbayiAaRN8CKIw uSVFVB633H3FpkjjMbanJuURQyj48ld/zo0N87a0CkO/c1n9A9cfaeS/x0iSQn6s /1uU3dPBgvuTB+9TKH6uTBYIFwbOibfuJvSV8jSjc6oVaF1KXQeyMpvWIWrSzPpM e8JWGaCSUBUn5/j//GdklmAGLzly1w7WTU4VK4dLAC7VTRM7qr6cNxW16EuiU9TF 6wGwW2JUSPZb/g6o2Nx6gybVBp4pJuS+ -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:11 2025 by rpki-client