$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft File: H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft (raw, json) Hash identifier: 44rRPga9vg//XecuCG3Na9P7MQJGqz0f+JvQWS1I8yo= Subject key identifier: 39:2E:16:97:13:98:80:0B:1D:7F:10:CF:02:E5:85:72:77:A1:76:E0 Authority key identifier: 1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 Certificate issuer: /CN=A91C3ED8/serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft Manifest number: 021B Signing time: Sun 19 Oct 2025 04:25:34 +0000 Manifest this update: Sun 19 Oct 2025 04:25:34 +0000 Manifest next update: Sun 26 Oct 2025 04:25:34 +0000 Files and hashes: 1: H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl (hash: 8sZz92bYwO+MhxO/is1E+4esFC8oT5JtxSDldKW/+s8=) 2: 51CC97DE72D711ED95179B5EC4F9AE02.roa (hash: k1Zwpv5X+PU26A87kFtIjFMNyUjqNWGBGW/MolkeBNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ED8, serialNumber=1FDF88B359F448ED4C712F9F157D083CC2114C14 Validity Not Before: Oct 19 04:25:34 2025 GMT Not After : Oct 26 04:25:34 2025 GMT Subject: CN=68f4683e-c875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:aa:be:46:0a:dd:ed:2b:65:41:0f:55:96:f2: 30:ad:08:ce:c7:a6:17:c3:c4:11:9f:a3:4a:0b:2b: f7:e8:90:15:05:88:1e:10:d4:e8:c9:33:29:84:c5: d4:71:75:de:28:78:52:8b:17:88:12:38:22:fe:56: 14:db:4c:68:f6:65:b9:e9:a9:95:97:68:f4:59:62: 79:af:74:06:42:90:15:0f:f9:90:08:42:ce:5d:5b: dc:ea:75:80:68:f8:48:68:f9:2d:ba:bf:91:9a:db: 5e:f5:b9:82:87:91:fc:19:91:ca:36:95:bd:b5:ad: 7d:29:d6:71:7b:73:df:d4:3c:6f:f1:8d:94:1d:d7: ec:f1:55:f5:dd:34:b0:c8:d5:9e:cd:06:d2:7f:4a: 3b:1a:9e:b0:7e:98:63:d0:ad:ed:d0:21:c5:0e:58: 21:30:06:65:2e:cf:02:39:bb:fb:8d:67:81:b8:09: b3:4b:3d:e5:04:88:09:2d:b3:1f:1b:e7:a2:8c:36: c7:5a:df:85:53:19:2b:aa:4d:2f:fa:26:7b:97:13: 05:f3:48:cd:20:ff:5e:c1:a8:7a:2c:17:41:77:4d: 6d:6b:b9:3d:d4:4e:da:74:4f:7f:6d:bc:4a:25:ff: a1:3b:d7:d7:4a:a0:05:fc:81:fc:36:6b:c4:f2:b5: 15:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2E:16:97:13:98:80:0B:1D:7F:10:CF:02:E5:85:72:77:A1:76:E0 X509v3 Authority Key Identifier: keyid:1F:DF:88:B3:59:F4:48:ED:4C:71:2F:9F:15:7D:08:3C:C2:11:4C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9-Is1n0SO1McS-fFX0IPMIRTBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ED8/3C5533AE72D511ED95F5595EC4F9AE02/H9-Is1n0SO1McS-fFX0IPMIRTBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b0:26:89:9a:f6:33:ea:b9:1c:d1:5a:3d:a3:0b:e1:bc:c9: 2e:9a:86:f4:71:bf:63:1d:2d:b3:66:fd:34:b4:03:c8:6f:54: 11:af:8c:82:b5:92:0a:91:77:54:e9:5e:73:a3:25:03:8f:fa: 43:91:b1:83:ce:45:54:5d:36:5c:ed:b4:60:f5:bf:b9:45:4c: da:a9:f4:1a:62:6f:47:fb:51:74:d7:7b:de:45:64:0e:0a:16: dd:0e:20:c2:fb:9a:0c:36:22:17:95:5c:6c:97:83:0a:e3:79: 37:4a:05:5e:97:44:c6:e5:c5:7c:bd:0d:4b:bb:5b:94:f4:1f: 0d:01:cb:53:49:2a:41:f6:e5:69:f5:66:77:27:54:86:5f:23: 92:3b:a9:90:6f:5a:a2:47:97:7e:52:93:11:35:20:2e:c4:bc: d3:71:58:7d:c9:6d:98:af:0b:cc:b8:87:ef:c0:55:ae:37:d1: 11:82:f5:09:af:7a:1d:9d:5d:d5:b2:dd:29:f7:9a:40:ab:68: d7:7f:46:4e:d1:b4:cb:2d:42:96:37:16:1f:2f:55:09:08:1d: 67:13:e3:d4:f9:be:5f:09:32:98:12:50:4b:3d:09:04:dd:4f: 7f:94:cd:65:b6:15:d2:5a:55:cd:f3:1e:ce:f6:c6:d1:3a:b6: 64:c9:dc:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFRDgxMTAvBgNVBAUTKDFGREY4OEIzNTlGNDQ4RUQ0QzcxMkY5RjE1N0QwODND QzIxMTRDMTQwHhcNMjUxMDE5MDQyNTM0WhcNMjUxMDI2MDQyNTM0WjAYMRYwFAYD VQQDEw02OGY0NjgzZS1jODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaq+Rgrd7StlQQ9VlvIwrQjOx6YXw8QRn6NKCyv36JAVBYgeENToyTMphMXU cXXeKHhSixeIEjgi/lYU20xo9mW56amVl2j0WWJ5r3QGQpAVD/mQCELOXVvc6nWA aPhIaPktur+Rmtte9bmCh5H8GZHKNpW9ta19KdZxe3Pf1Dxv8Y2UHdfs8VX13TSw yNWezQbSf0o7Gp6wfphj0K3t0CHFDlghMAZlLs8CObv7jWeBuAmzSz3lBIgJLbMf G+eijDbHWt+FUxkrqk0v+iZ7lxMF80jNIP9ewah6LBdBd01ta7k91E7adE9/bbxK Jf+hO9fXSqAF/IH8NmvE8rUVfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkuFpcT mIALHX8QzwLlhXJ3oXbgMB8GA1UdIwQYMBaAFB/fiLNZ9EjtTHEvnxV9CDzCEUwU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0VEOC8zQzU1MzNBRTcy RDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNPMU1jUy1mRlgwSVBNSVJU QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5LUlzMW4wU08xTWNTLWZGWDBJUE1JUlRCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0VEOC8zQzU1MzNBRTcyRDUxMUVEOTVGNTU5NUVDNEY5QUUwMi9IOS1JczFuMFNP MU1jUy1mRlgwSVBNSVJUQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxsCaJmvYz6rkc0Vo9owvhvMkumob0cb9jHS2zZv00tAPIb1QRr4yC tZIKkXdU6V5zoyUDj/pDkbGDzkVUXTZc7bRg9b+5RUzaqfQaYm9H+1F013veRWQO ChbdDiDC+5oMNiIXlVxsl4MK43k3SgVel0TG5cV8vQ1Lu1uU9B8NActTSSpB9uVp 9WZ3J1SGXyOSO6mQb1qiR5d+UpMRNSAuxLzTcVh9yW2YrwvMuIfvwFWuN9ERgvUJ r3odnV3Vst0p95pAq2jXf0ZO0bTLLUKWNxYfL1UJCB1nE+PU+b5fCTKYElBLPQkE 3U9/lM1lthXSWlXN8x7O9sbROrZkydye -----END CERTIFICATE-----Generated at Mon Oct 20 10:04:03 2025 by rpki-client