$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: zAnXhZ3vJmRzy+/OqZlAIPIn7DkJ9qd3DPDm/UU8v84= Subject key identifier: B7:53:EA:6B:67:92:96:FE:E4:56:76:00:57:8E:A5:F5:EF:AE:42:6B Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 155E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 154D Signing time: Sat 18 Oct 2025 17:14:36 +0000 Manifest this update: Sat 18 Oct 2025 17:14:36 +0000 Manifest next update: Sat 25 Oct 2025 17:14:36 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: BF+sOlykCySD+si3KKakbjKZ/rcrLIftudcbhfjlHvs=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: e0ssa3aYMf93SekbtHzPrUvWJb3pV0vdOrt0LlRsi20=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: VDqja2wA6F2/7izy8asaq5NP96Ouz+ypKnE/JwJEwCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5470 (0x155e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Oct 18 17:14:36 2025 GMT Not After : Oct 25 17:14:36 2025 GMT Subject: CN=68f3cafc-5a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:66:6b:3c:c8:3e:7d:49:9e:f4:1d:37:f1:c5: cb:07:ff:16:60:bd:75:5e:42:4c:7e:0e:c7:8a:19: 90:2c:6f:07:ad:3e:03:14:85:3e:21:c0:13:45:2d: 13:b4:13:ea:d4:08:fe:56:7a:27:9e:2c:d7:30:96: 2f:29:39:04:05:ef:03:ae:6e:67:76:2d:ed:33:94: 35:9b:b4:6a:12:af:92:3b:ba:8b:6c:eb:9d:5f:0a: ce:dd:d2:90:5b:e9:a3:13:44:b7:95:a4:cb:05:e9: 7e:a7:6d:37:e6:99:2c:d8:e6:ec:e3:53:b5:17:94: 60:f7:c1:23:a5:53:1d:97:9c:62:8e:8d:5a:15:41: 2a:49:c2:0e:3d:35:c9:1c:dd:d7:7f:a3:0c:0c:9c: 15:dd:20:ea:18:a7:20:fa:7d:bc:60:b5:c1:a5:c4: 8b:16:b4:60:7d:29:13:ab:fb:ca:c8:8d:ee:06:ae: ed:d3:74:36:92:8f:3c:7e:e5:5f:4b:cf:a1:b1:d7: f2:1f:c0:e1:7e:a6:46:de:59:af:8f:4d:70:94:60: e5:09:00:78:41:c8:9e:2f:ef:99:53:72:92:6e:4f: 12:9a:8a:72:f3:89:ea:81:82:a3:31:f8:b1:c3:54: 57:c4:3d:6d:d0:8e:d0:cd:60:a8:8d:c6:85:75:08: 15:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:53:EA:6B:67:92:96:FE:E4:56:76:00:57:8E:A5:F5:EF:AE:42:6B X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:08:2b:16:89:d5:5b:84:2d:80:fc:98:f9:27:b7:19:9f:5c: 01:b3:d2:9d:ca:67:a1:2a:3c:55:1c:3e:39:9f:f5:9c:65:dd: 61:00:b3:56:83:0a:16:76:ec:75:ea:81:08:21:64:ac:1b:3b: a5:b4:40:8b:c0:fa:f2:1f:08:43:94:a0:9e:ce:a8:7d:e9:77: c6:23:1c:54:3b:4c:fb:a3:d4:11:fa:fe:ef:14:36:5a:e5:24: 67:38:26:b7:0b:6e:7d:bb:2a:17:99:24:59:b3:a1:91:66:10: 27:76:1c:e2:b2:1e:bb:a3:77:db:25:d0:0e:58:e9:fa:e0:0f: da:1d:44:81:3b:a3:27:e4:b9:b6:8f:26:4e:30:03:5a:5a:a0: 9d:03:8c:64:74:bd:ab:10:f3:fc:3a:3e:6e:5c:ca:0c:b2:13: 84:b4:9e:87:f9:1e:61:3e:26:9b:68:a6:61:f8:04:07:ee:4d: 3c:23:2a:73:9c:15:29:9f:db:5f:e4:0f:8b:7f:48:75:99:f4: 10:b2:41:3e:0b:b1:27:52:e1:16:8d:9e:a7:c1:32:99:f8:0e: c7:c5:db:75:0d:9a:63:69:6f:87:29:88:f6:11:d4:6f:7b:0c: 0f:e1:b1:c6:36:72:9f:94:ff:c2:ab:b4:20:72:fc:6b:70:f7: f5:10:b3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUxMDE4MTcxNDM2WhcNMjUxMDI1MTcxNDM2WjAYMRYwFAYD VQQDEw02OGYzY2FmYy01YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mZrPMg+fUme9B038cXLB/8WYL11XkJMfg7HihmQLG8HrT4DFIU+IcATRS0T tBPq1Aj+VnonnizXMJYvKTkEBe8Drm5ndi3tM5Q1m7RqEq+SO7qLbOudXwrO3dKQ W+mjE0S3laTLBel+p2035pks2Obs41O1F5Rg98EjpVMdl5xijo1aFUEqScIOPTXJ HN3Xf6MMDJwV3SDqGKcg+n28YLXBpcSLFrRgfSkTq/vKyI3uBq7t03Q2ko88fuVf S8+hsdfyH8DhfqZG3lmvj01wlGDlCQB4QcieL++ZU3KSbk8Smopy84nqgYKjMfix w1RXxD1t0I7QzWCojcaFdQgVOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdT6mtn kpb+5FZ2AFeOpfXvrkJrMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSCCsWidVbhC2A/Jj5J7cZn1wBs9KdymehKjxVHD45n/WcZd1hALNW gwoWdux16oEIIWSsGzultECLwPryHwhDlKCezqh96XfGIxxUO0z7o9QR+v7vFDZa 5SRnOCa3C259uyoXmSRZs6GRZhAndhzish67o3fbJdAOWOn64A/aHUSBO6Mn5Lm2 jyZOMANaWqCdA4xkdL2rEPP8Oj5uXMoMshOEtJ6H+R5hPiabaKZh+AQH7k08Iypz nBUpn9tf5A+Lf0h1mfQQskE+C7EnUuEWjZ6nwTKZ+A7Hxdt1DZpjaW+HKYj2EdRv ewwP4bHGNnKflP/Cq7QgcvxrcPf1ELMa -----END CERTIFICATE-----Generated at Mon Oct 20 16:25:03 2025 by rpki-client