$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: 2ozYlBWxc/Ly+nf1xDEDmpEm1jYt45JPnCpZnmrqRkA= Subject key identifier: F5:D9:96:31:A6:2F:F4:01:C8:ED:1C:6E:D3:52:E6:E1:24:77:AB:B6 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0BCF Signing time: Sat 18 Oct 2025 19:46:25 +0000 Manifest this update: Sat 18 Oct 2025 19:46:23 +0000 Manifest next update: Sat 25 Oct 2025 19:46:23 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: n6od70fQ6U38+0Gk2EYHSV1MTpb0JD436H3mzAZEXe4=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: WtUGGPBORu2ELV1J85b8AQ+2CLGSrU7TTTxiEKhsYHc=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: xCXQqgm7s0yqcl5rlXb69u+J291yS3/BUfkPMKe4WIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Oct 18 19:46:23 2025 GMT Not After : Oct 25 19:46:23 2025 GMT Subject: CN=68f3ee90-925f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2b:31:0e:54:56:a8:7e:99:e8:d9:14:5f:71: 38:6c:e8:c6:cc:5a:8a:87:ce:ee:4d:79:e8:f0:ce: 31:63:8a:0a:13:3f:4c:7b:02:c8:22:d5:15:ca:d8: f0:2c:a8:63:af:7e:ac:40:cd:d6:d2:04:a7:87:41: d7:6f:3e:5d:3a:67:03:62:ad:f5:8f:57:f7:00:c8: ac:15:af:f3:ff:3c:48:d5:19:f4:c8:ec:4b:3b:0b: 4f:7b:c3:f1:35:78:8d:5f:58:0c:0b:33:2d:ce:0a: fb:92:9a:3f:8e:e7:1a:bd:c8:78:8c:33:83:01:eb: 79:e4:67:b8:34:af:a3:ca:cd:e2:92:f0:b3:53:90: 50:fd:7e:8f:6c:fb:85:9c:25:4e:c2:14:27:28:e7: ae:84:9a:23:3d:51:28:71:b1:5b:4d:7c:69:f4:5f: d2:ec:a3:48:d2:b6:48:d4:cb:5d:c5:ae:bd:60:bd: 16:e5:59:8f:d9:b9:57:40:e1:5c:f5:a9:f7:83:86: 81:f3:50:94:91:d0:ab:d7:61:6b:1a:09:b0:9a:e7: 2f:95:84:66:e6:c0:c1:d7:6d:8d:d4:dd:07:15:60: c5:ee:01:36:8a:e8:3f:20:c1:23:94:66:bf:1e:fe: 21:58:31:c2:cf:5b:97:0f:b1:12:e6:50:91:f4:54: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D9:96:31:A6:2F:F4:01:C8:ED:1C:6E:D3:52:E6:E1:24:77:AB:B6 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d6:00:34:1f:f0:e8:94:1c:cb:69:aa:c3:64:f0:e9:71:a0: c7:29:30:3d:21:bf:c3:9c:ef:09:fc:c0:d0:18:73:8a:55:80: 1d:8d:8e:2f:89:ae:c8:42:f0:ab:f7:73:7b:b0:c2:27:bd:ab: 42:07:27:8d:23:88:12:2b:fc:e0:be:cb:34:fe:0a:9e:4a:98: fa:5d:af:82:d8:74:42:a3:05:a7:d7:9a:b8:4b:5e:7b:2d:cf: 9b:bf:6a:cf:87:74:b5:8f:83:d1:0a:58:91:50:54:22:a5:78: 08:aa:85:ed:46:f6:c9:80:0c:b1:88:0a:d4:0e:77:b7:e4:ee: 95:54:5f:10:9d:8c:50:a5:b9:fb:ec:3b:8e:d9:1f:49:03:f2: 61:ea:f6:f6:75:a9:04:34:b0:08:04:b0:23:44:65:2e:d7:57: f2:41:7f:f8:2a:65:a9:e9:74:45:21:c1:cc:5c:99:12:30:c4: 5e:b8:c1:7c:30:9e:78:a3:a1:5f:f4:2d:f6:86:99:75:fe:98: 63:45:c8:35:33:bb:31:39:ff:88:7c:d5:18:fe:ad:ba:76:8a: 53:f8:4d:c6:a7:5b:e7:f4:f1:55:91:6b:3c:a2:69:d5:21:cb: 3c:b6:ac:e4:d0:e9:17:6b:52:3f:c3:21:92:05:0e:1d:3b:90: b2:e0:ab:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUxMDE4MTk0NjIzWhcNMjUxMDI1MTk0NjIzWjAYMRYwFAYD VQQDEw02OGYzZWU5MC05MjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCsxDlRWqH6Z6NkUX3E4bOjGzFqKh87uTXno8M4xY4oKEz9MewLIItUVytjw LKhjr36sQM3W0gSnh0HXbz5dOmcDYq31j1f3AMisFa/z/zxI1Rn0yOxLOwtPe8Px NXiNX1gMCzMtzgr7kpo/jucavch4jDODAet55Ge4NK+jys3ikvCzU5BQ/X6PbPuF nCVOwhQnKOeuhJojPVEocbFbTXxp9F/S7KNI0rZI1Mtdxa69YL0W5VmP2blXQOFc 9an3g4aB81CUkdCr12FrGgmwmucvlYRm5sDB122N1N0HFWDF7gE2iug/IMEjlGa/ Hv4hWDHCz1uXD7ES5lCR9FTrHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXZljGm L/QByO0cbtNS5uEkd6u2MB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb1gA0H/DolBzLaarDZPDpcaDHKTA9Ib/DnO8J/MDQGHOKVYAdjY4v ia7IQvCr93N7sMInvatCByeNI4gSK/zgvss0/gqeSpj6Xa+C2HRCowWn15q4S157 Lc+bv2rPh3S1j4PRCliRUFQipXgIqoXtRvbJgAyxiArUDne35O6VVF8QnYxQpbn7 7DuO2R9JA/Jh6vb2dakENLAIBLAjRGUu11fyQX/4KmWp6XRFIcHMXJkSMMReuMF8 MJ54o6Ff9C32hpl1/phjRcg1M7sxOf+IfNUY/q26dopT+E3Gp1vn9PFVkWs8omnV Ics8tqzk0OkXa1I/wyGSBQ4dO5Cy4Kuu -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:00 2025 by rpki-client