$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: oNbodDI1NvGfH6NYAsLZcG9TEdFT2/NBZCI2o0G2iio= Subject key identifier: 35:43:EC:8D:78:E2:37:88:89:B4:7F:07:42:09:3E:29:50:0F:F1:52 Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: E0 Signing time: Sun 19 Oct 2025 08:34:07 +0000 Manifest this update: Sun 19 Oct 2025 08:34:06 +0000 Manifest next update: Sun 26 Oct 2025 08:34:06 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: gO7RW15nPNeYUb3opobarI0xh4vOkXEj8dIHx4KiJNw=) 2: 13435546ABF211F0BA77FA0DC4F9AE02.roa (hash: q/F51LSqhdUzQ5wuFfu2jC3x+BTiobOoytHd+JzEAJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Oct 19 08:34:06 2025 GMT Not After : Oct 26 08:34:06 2025 GMT Subject: CN=68f4a27f-2f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:f3:e5:c7:74:f4:ee:6f:74:2d:84:a4:2c: 8e:2f:8f:b0:8c:37:16:f2:69:de:ae:d5:31:15:c5: e1:ae:0f:89:7b:be:98:55:e8:fc:4b:e3:ac:eb:20: ac:d8:8e:08:bd:79:b4:8d:81:d9:f1:6b:f3:91:91: 3e:c4:eb:18:84:f0:5b:b4:e5:e3:bc:ec:66:97:ad: d8:0d:f6:db:47:9a:1d:5b:29:d9:26:89:eb:5b:ba: 63:00:b7:28:8a:db:98:4b:a8:45:df:ef:11:92:9f: 27:a1:72:69:f6:63:39:cc:9b:75:ba:0a:a6:c4:bb: 58:7a:a9:1b:c6:38:4f:13:b4:00:fd:af:80:38:e5: a6:ea:20:aa:ab:de:6c:1f:65:d2:2b:7c:2c:98:76: 37:5e:73:ba:05:d2:7d:b3:de:0b:f9:20:f0:43:8d: 53:22:ef:94:dc:f3:1d:b9:b4:08:c0:77:4f:d4:e4: ca:ca:52:a4:f4:c0:1d:44:a0:5c:13:98:a1:07:d7: 48:45:a7:13:81:2c:2a:e0:53:12:29:a8:6f:dd:66: 75:d5:e0:a7:65:80:0d:32:02:9e:b8:13:d5:c7:e0: 74:16:e8:1d:a2:e2:d3:3e:d6:31:ef:a1:cf:6d:81: 43:4b:a9:e1:83:8f:ac:0a:bf:16:a1:e4:26:c0:9c: 99:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:43:EC:8D:78:E2:37:88:89:B4:7F:07:42:09:3E:29:50:0F:F1:52 X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:af:d5:9d:f1:e2:46:66:34:1b:cf:a1:de:bd:f0:bc:3e:a1: 64:71:e2:09:8f:aa:47:b6:86:21:2e:46:52:36:2c:62:a2:1c: fd:a5:f2:44:e5:2d:da:ca:75:11:d1:f7:89:81:b5:98:8f:77: e3:bd:00:3a:48:0c:dd:36:f7:ba:f7:08:31:72:c3:32:8d:6b: b3:fd:b2:e0:6d:cb:f4:59:e5:7a:ab:3b:db:4f:3e:71:10:b5: 5a:eb:a3:9d:8a:9e:50:b6:83:4e:35:b4:56:91:83:dc:c3:75: 89:09:ce:44:4e:1d:f0:7e:48:78:4c:30:99:1a:e0:f9:d1:10: 7f:a6:c5:dc:f7:c8:8d:98:1c:7d:9d:58:24:13:cb:19:e8:8e: 2d:de:d4:35:c3:e6:42:f6:18:12:f4:36:09:d7:4c:41:bb:eb: 28:57:d2:f6:89:31:02:20:a8:9a:5d:61:70:3f:7c:26:f5:62: 64:87:3a:a4:29:75:70:14:ae:f2:7c:20:7a:4f:cd:1e:0f:16: 1c:c8:07:17:39:3f:61:df:57:f6:8b:d2:d4:9d:6a:5f:69:35: af:4d:71:a3:44:17:2c:85:62:c9:3f:9c:2e:71:c4:ef:43:ee: 54:b1:ad:ee:4d:3f:40:d2:4d:60:43:ed:46:c4:6b:75:25:cb: d8:0f:c3:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUxMDE5MDgzNDA2WhcNMjUxMDI2MDgzNDA2WjAYMRYwFAYD VQQDEw02OGY0YTI3Zi0yZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8Dz5cd09O5vdC2EpCyOL4+wjDcW8mnertUxFcXhrg+Je76YVej8S+Os6yCs 2I4IvXm0jYHZ8WvzkZE+xOsYhPBbtOXjvOxml63YDfbbR5odWynZJonrW7pjALco ituYS6hF3+8Rkp8noXJp9mM5zJt1ugqmxLtYeqkbxjhPE7QA/a+AOOWm6iCqq95s H2XSK3wsmHY3XnO6BdJ9s94L+SDwQ41TIu+U3PMdubQIwHdP1OTKylKk9MAdRKBc E5ihB9dIRacTgSwq4FMSKahv3WZ11eCnZYANMgKeuBPVx+B0FugdouLTPtYx76HP bYFDS6nhg4+sCr8WoeQmwJyZSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVD7I14 4jeIibR/B0IJPilQD/FSMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJr9Wd8eJGZjQbz6HevfC8PqFkceIJj6pHtoYhLkZSNixiohz9pfJE 5S3aynUR0feJgbWYj3fjvQA6SAzdNve69wgxcsMyjWuz/bLgbcv0WeV6qzvbTz5x ELVa66Odip5QtoNONbRWkYPcw3WJCc5ETh3wfkh4TDCZGuD50RB/psXc98iNmBx9 nVgkE8sZ6I4t3tQ1w+ZC9hgS9DYJ10xBu+soV9L2iTECIKiaXWFwP3wm9WJkhzqk KXVwFK7yfCB6T80eDxYcyAcXOT9h31f2i9LUnWpfaTWvTXGjRBcshWLJP5wuccTv Q+5Usa3uTT9A0k1gQ+1GxGt1JcvYD8P+ -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:57 2025 by rpki-client