$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: c2NvZ1p12xmb8g3nest+G4XX6KndkLiOewTsxCVYL9I= Subject key identifier: 0A:52:62:89:D3:32:CF:ED:DC:A2:05:25:13:22:24:48:DF:FE:10:20 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 13B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 138B Signing time: Sat 18 Oct 2025 17:29:51 +0000 Manifest this update: Sat 18 Oct 2025 17:29:50 +0000 Manifest next update: Sat 25 Oct 2025 17:29:50 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: OdQ4COJyHWzqQvr4mvM9W4Vca8F+7NZSno3bLKCHjGU=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: VriM0YGDOfhzo18xUQqToLLJGd+19KKo1Yju23Rp1tg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Oct 18 17:29:50 2025 GMT Not After : Oct 25 17:29:50 2025 GMT Subject: CN=68f3ce8f-95da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2d:ec:86:74:d9:03:54:ab:bc:e9:39:f6:fb: 6e:8d:31:c2:4d:d3:bf:5c:1e:31:94:a9:f8:c1:df: c0:49:eb:06:68:25:83:62:f5:f8:40:56:7b:5a:a6: bd:23:cd:fb:23:6f:fb:4d:ee:d6:8e:dd:9d:a6:7e: 38:5f:90:dc:38:b8:a5:a4:33:11:dd:73:c0:31:fe: af:a9:99:41:07:e3:17:52:5a:2b:8d:ea:df:14:94: d0:83:d4:fd:99:8a:51:1c:90:66:7b:b8:d4:71:47: e4:d3:5e:18:fb:ea:99:27:7b:c4:78:45:fb:16:61: 76:43:f6:1d:ca:fd:09:09:f0:e9:8f:35:36:0b:0c: 3b:94:ed:5e:1f:1b:9c:7d:ff:35:63:dc:bd:90:e5: df:94:79:85:2c:0f:4d:d8:61:cf:61:e5:1c:e5:ef: ea:fd:1a:03:82:89:5e:c8:1b:eb:76:a3:0e:0b:be: c9:1a:7c:13:4b:33:59:bd:62:66:ab:fd:9e:a2:68: 8a:de:61:7c:b5:cb:17:3b:cc:82:ec:09:db:1e:6f: 7c:92:96:cd:00:0c:6d:60:70:8a:f7:8b:07:f2:02: e6:9a:16:9e:46:58:4c:37:92:02:d3:31:8c:50:c9: e5:aa:ea:93:94:80:ba:83:4a:bc:d0:73:46:fa:67: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:52:62:89:D3:32:CF:ED:DC:A2:05:25:13:22:24:48:DF:FE:10:20 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:2a:f4:e4:db:5c:1a:a6:ce:a4:11:3e:82:63:ae:5f:69:25: a9:03:3a:70:bb:ce:7e:10:cc:8e:48:22:d5:4d:ae:25:c8:99: 62:6a:85:f6:bb:38:36:53:29:d9:c0:d1:1d:4e:ce:ce:f5:ce: ef:67:45:fd:98:25:6e:62:65:26:ca:1b:a4:35:ff:43:5a:7b: 96:f0:a1:3e:7a:89:ba:9d:a5:e7:d4:27:a1:1e:ee:ce:37:4d: ef:7f:da:17:58:4b:b4:98:e9:41:85:aa:87:79:49:96:ce:bd: fc:dd:0a:8f:91:e1:6f:ef:04:d5:2c:02:ab:42:4f:04:62:e0: 58:3d:a1:f9:0d:7f:37:a9:95:9b:e5:70:21:56:35:70:ec:be: 13:74:55:3b:e0:37:ba:87:65:7e:d1:6a:34:0b:75:0f:dc:91: a1:d7:05:74:04:38:4d:cf:3f:20:f1:43:ab:78:a8:b9:7e:99: b6:4b:89:9a:0d:d5:c2:53:68:1f:8c:57:ad:a1:cb:ee:1b:06: 48:6e:e0:a9:f6:1e:dc:9b:6e:60:50:ab:a7:54:d1:89:e4:58: d1:25:ea:58:cc:a8:58:52:ab:75:45:7f:2e:97:22:d4:fa:86: 7e:92:fe:5e:42:a0:c9:63:5e:25:7c:3f:df:76:d5:6d:47:9b: 8a:76:2f:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjUxMDE4MTcyOTUwWhcNMjUxMDI1MTcyOTUwWjAYMRYwFAYD VQQDEw02OGYzY2U4Zi05NWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7C3shnTZA1SrvOk59vtujTHCTdO/XB4xlKn4wd/ASesGaCWDYvX4QFZ7Wqa9 I837I2/7Te7Wjt2dpn44X5DcOLilpDMR3XPAMf6vqZlBB+MXUlorjerfFJTQg9T9 mYpRHJBme7jUcUfk014Y++qZJ3vEeEX7FmF2Q/Ydyv0JCfDpjzU2Cww7lO1eHxuc ff81Y9y9kOXflHmFLA9N2GHPYeUc5e/q/RoDgoleyBvrdqMOC77JGnwTSzNZvWJm q/2eomiK3mF8tcsXO8yC7AnbHm98kpbNAAxtYHCK94sH8gLmmhaeRlhMN5IC0zGM UMnlquqTlIC6g0q80HNG+mej2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApSYonT Ms/t3KIFJRMiJEjf/hAgMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNKvTk21waps6kET6CY65faSWpAzpwu85+EMyOSCLVTa4lyJliaoX2 uzg2UynZwNEdTs7O9c7vZ0X9mCVuYmUmyhukNf9DWnuW8KE+eom6naXn1CehHu7O N03vf9oXWEu0mOlBhaqHeUmWzr383QqPkeFv7wTVLAKrQk8EYuBYPaH5DX83qZWb 5XAhVjVw7L4TdFU74De6h2V+0Wo0C3UP3JGh1wV0BDhNzz8g8UOreKi5fpm2S4ma DdXCU2gfjFetocvuGwZIbuCp9h7cm25gUKunVNGJ5FjRJepYzKhYUqt1RX8ulyLU +oZ+kv5eQqDJY14lfD/fdtVtR5uKdi8T -----END CERTIFICATE-----Generated at Mon Oct 20 06:55:48 2025 by rpki-client