$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: VtVu7z2sEdiw+a2K0qU+QEGansJYi2Kqi1WlpgWosM8= Subject key identifier: 4A:BD:6B:28:A4:4E:89:EB:84:83:1D:D1:8B:33:F0:F1:32:C5:97:80 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0384 Signing time: Sun 19 Oct 2025 02:51:17 +0000 Manifest this update: Sun 19 Oct 2025 02:51:17 +0000 Manifest next update: Sun 26 Oct 2025 02:51:17 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: Du+CTEyopJ8ymcAUT4d5SaPLUdEHyzRTulHcm5S7Yi4=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Oct 19 02:51:17 2025 GMT Not After : Oct 26 02:51:17 2025 GMT Subject: CN=68f45225-84ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0c:ce:82:54:c5:1f:64:60:b9:1a:fa:44:1b: 76:3d:64:00:62:b8:fb:08:33:9d:68:8c:12:15:36: 3c:e4:bc:70:a8:78:9d:80:4a:78:38:ef:91:aa:d4: 8b:78:12:29:11:19:9b:48:70:7e:6f:46:89:0f:d4: 81:1d:55:32:77:ed:8c:66:1a:db:bf:ba:4d:c1:ca: 4a:ff:06:d3:f4:d5:5e:69:74:0b:50:f9:91:df:aa: 4a:dd:11:20:74:bc:53:9d:15:ee:e8:50:90:f3:63: 89:3b:ef:50:97:43:31:9c:93:fa:8a:54:61:b3:ce: 0e:b4:5a:5c:56:b7:45:ad:52:0f:cb:27:46:e1:8a: a8:6e:5e:f9:da:30:77:b0:46:c1:21:6f:06:9a:ff: 75:32:b5:86:84:58:70:5d:d1:84:45:fa:36:c6:50: f3:32:1e:43:1c:54:3a:9c:e4:9e:dd:79:b2:c0:36: ea:4a:a2:34:c2:4a:39:45:ba:72:ee:b1:ba:7f:8f: f2:bc:3c:51:20:6b:5a:b2:c6:00:e2:a5:5e:e2:79: d0:20:e0:59:64:39:e1:88:8c:36:bc:06:57:c2:4f: ca:61:12:80:54:0a:85:dd:99:ac:50:de:67:cb:f6: 60:a1:ff:d1:bf:e8:a9:e0:91:5c:90:0b:dd:34:4a: 81:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BD:6B:28:A4:4E:89:EB:84:83:1D:D1:8B:33:F0:F1:32:C5:97:80 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d6:5b:0e:de:8f:94:17:df:2f:be:59:bd:12:18:2e:79:e6: 3e:03:c3:0e:ea:41:97:eb:c9:6e:c8:80:4b:d0:49:06:a2:7f: a7:e9:84:99:7f:16:fa:1b:13:39:e7:bf:8d:17:ed:31:47:8d: c6:72:07:6c:cd:73:61:d8:c5:0b:ea:fe:d8:15:5d:c1:70:a1: 12:26:67:8e:bf:50:9b:28:0b:83:47:e3:0c:d9:42:14:d9:40: e2:69:5f:58:5a:e8:fd:c6:cc:cc:0d:2f:0e:e5:b0:bb:57:a7: 57:15:fc:6b:f2:ac:3e:fc:a2:06:4b:24:62:dd:4a:50:b9:a1: 93:f3:37:74:04:ea:e3:7a:bb:84:1a:d1:bf:e7:7f:e1:4d:b8: 22:f6:97:0b:49:bf:5e:ea:6a:2e:69:43:62:1a:96:9a:81:b6: bb:75:9d:f0:2e:3c:55:9a:52:6c:52:f8:9a:37:7d:39:4c:1b: 7a:77:a9:23:d4:db:48:93:d5:15:d0:a3:bd:af:29:17:c0:90: 60:11:d5:a6:f5:6d:e4:75:51:ec:44:6e:a7:4c:d5:8f:88:08: 7a:3f:83:6e:62:24:1e:fe:f5:a4:73:d3:0f:53:98:b5:be:b4: 1d:15:32:20:28:4e:61:3d:e8:df:48:46:a2:d8:0a:9e:73:c3: 37:69:6f:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjUxMDE5MDI1MTE3WhcNMjUxMDI2MDI1MTE3WjAYMRYwFAYD VQQDEw02OGY0NTIyNS04NGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAzOglTFH2RguRr6RBt2PWQAYrj7CDOdaIwSFTY85LxwqHidgEp4OO+RqtSL eBIpERmbSHB+b0aJD9SBHVUyd+2MZhrbv7pNwcpK/wbT9NVeaXQLUPmR36pK3REg dLxTnRXu6FCQ82OJO+9Ql0MxnJP6ilRhs84OtFpcVrdFrVIPyydG4Yqobl752jB3 sEbBIW8Gmv91MrWGhFhwXdGERfo2xlDzMh5DHFQ6nOSe3XmywDbqSqI0wko5Rbpy 7rG6f4/yvDxRIGtassYA4qVe4nnQIOBZZDnhiIw2vAZXwk/KYRKAVAqF3ZmsUN5n y/Zgof/Rv+ip4JFckAvdNEqBuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq9ayik TonrhIMd0Ysz8PEyxZeAMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA81lsO3o+UF98vvlm9EhgueeY+A8MO6kGX68luyIBL0EkGon+n6YSZ fxb6GxM557+NF+0xR43GcgdszXNh2MUL6v7YFV3BcKESJmeOv1CbKAuDR+MM2UIU 2UDiaV9YWuj9xszMDS8O5bC7V6dXFfxr8qw+/KIGSyRi3UpQuaGT8zd0BOrjeruE GtG/53/hTbgi9pcLSb9e6mouaUNiGpaagba7dZ3wLjxVmlJsUviaN305TBt6d6kj 1NtIk9UV0KO9rykXwJBgEdWm9W3kdVHsRG6nTNWPiAh6P4NuYiQe/vWkc9MPU5i1 vrQdFTIgKE5hPejfSEai2Aqec8M3aW9Q -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:19 2025 by rpki-client