$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: cWAlmT7ehT2Gg4crbxgEodpxOv/IUe2Hp4bkfnu30ik= Subject key identifier: C0:49:D7:F8:8D:84:40:C7:D1:48:2F:51:37:BD:95:BA:E5:56:93:9A Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A3D Signing time: Sun 02 Nov 2025 19:41:02 +0000 Manifest this update: Sun 02 Nov 2025 19:41:01 +0000 Manifest next update: Sun 09 Nov 2025 19:41:01 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: pG2E0AM+ceS0pfigW74/vO+KJMJK5NXJwtM3Lw0KbqU=) 2: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: B5buB00YWWO2A2xnD3M5vrisGIi+aFvWdlZltMnylng=) 3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU=) 4: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Nov 2 19:41:01 2025 GMT Not After : Nov 9 19:41:01 2025 GMT Subject: CN=6907b3cd-68af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4c:34:95:94:f5:23:7f:24:1c:5d:18:ad:b6: a1:52:d3:f0:00:70:70:9e:24:7d:04:94:a2:84:4a: ca:52:0c:b6:a6:71:70:f0:b4:0d:f6:42:8a:6b:80: aa:80:b6:56:94:b8:c5:95:ee:14:e3:08:ca:95:62: 01:97:b1:ac:67:19:0a:43:3b:50:36:4e:5f:85:9e: cf:74:2c:22:f2:86:b0:17:14:5c:94:60:52:39:d4: c5:90:2e:5b:2c:1f:c4:1b:13:48:e5:91:87:28:ba: 16:a4:e8:ea:5f:91:9b:a3:11:02:68:03:08:78:79: a4:e5:a8:1a:bf:96:85:af:72:da:99:6d:13:b6:91: 92:b0:7a:a5:53:59:68:4f:b1:bf:a7:35:4b:b1:35: a9:59:45:c8:20:7d:76:0a:75:16:e6:d1:28:93:7b: 02:fd:d7:b3:94:79:ff:9a:7d:1e:7c:6a:46:c7:58: bf:bd:52:3b:a7:a3:14:5d:9d:9d:b9:d2:c1:ac:fd: 4f:f1:81:b8:d2:3a:c6:9b:b8:d8:59:cf:82:f0:cd: 42:9f:0e:cf:eb:4d:38:5a:af:0d:b5:d2:1f:38:74: 08:ec:74:5d:1f:99:2b:e4:79:27:08:18:97:ff:10: 32:3f:77:d1:21:f7:b0:ec:54:15:95:be:03:19:d2: d4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:49:D7:F8:8D:84:40:C7:D1:48:2F:51:37:BD:95:BA:E5:56:93:9A X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ed:7f:32:73:76:0e:a9:7a:00:eb:7a:67:b4:e4:f1:71:de: fd:e4:3c:e0:1d:d7:88:d4:b5:fa:56:2a:93:5d:22:ed:fd:e0: 50:cd:ab:8a:36:49:94:a9:02:b5:62:a0:79:09:30:1b:99:cc: 13:d2:c1:12:89:d8:98:ac:88:08:9d:3d:80:75:06:27:a5:6b: a9:05:97:15:4d:84:da:13:70:d6:20:0e:43:a8:d7:6c:7a:71: 60:50:11:47:96:76:56:77:ea:c7:27:59:8a:8b:18:13:2d:64: 94:e8:a5:11:34:69:1e:7e:62:29:c9:c2:40:9c:c7:90:3a:ce: 86:0a:fb:c3:cf:5f:5f:1c:e5:88:3d:1e:fb:a8:f1:59:64:19: 62:17:ce:8d:fe:a8:1f:50:f3:cb:1a:c5:3e:8d:14:60:b0:4b: b6:bd:d2:ab:b9:04:55:54:82:92:c0:05:44:16:91:73:b7:d5: 65:88:73:57:b0:20:d5:17:f4:e1:11:df:ed:00:b1:56:33:3c: fb:a7:2c:a3:46:e2:c9:7f:05:26:fe:97:59:68:fd:02:a0:04: 8d:bd:09:f4:b7:41:4a:0b:39:99:d2:4e:9c:7c:2b:b0:34:6a: 46:53:16:bf:9d:51:39:26:88:23:6b:f5:96:70:aa:dc:1a:ca: 07:35:6c:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMTAyMTk0MTAxWhcNMjUxMTA5MTk0MTAxWjAYMRYwFAYD VQQDEw02OTA3YjNjZC02OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kw0lZT1I38kHF0YrbahUtPwAHBwniR9BJSihErKUgy2pnFw8LQN9kKKa4Cq gLZWlLjFle4U4wjKlWIBl7GsZxkKQztQNk5fhZ7PdCwi8oawFxRclGBSOdTFkC5b LB/EGxNI5ZGHKLoWpOjqX5GboxECaAMIeHmk5agav5aFr3LamW0TtpGSsHqlU1lo T7G/pzVLsTWpWUXIIH12CnUW5tEok3sC/dezlHn/mn0efGpGx1i/vVI7p6MUXZ2d udLBrP1P8YG40jrGm7jYWc+C8M1Cnw7P6004Wq8NtdIfOHQI7HRdH5kr5HknCBiX /xAyP3fRIfew7FQVlb4DGdLUFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBJ1/iN hEDH0UgvUTe9lbrlVpOaMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM7X8yc3YOqXoA63pntOTxcd795DzgHdeI1LX6ViqTXSLt/eBQzauK NkmUqQK1YqB5CTAbmcwT0sESidiYrIgInT2AdQYnpWupBZcVTYTaE3DWIA5DqNds enFgUBFHlnZWd+rHJ1mKixgTLWSU6KURNGkefmIpycJAnMeQOs6GCvvDz19fHOWI PR77qPFZZBliF86N/qgfUPPLGsU+jRRgsEu2vdKruQRVVIKSwAVEFpFzt9VliHNX sCDVF/ThEd/tALFWMzz7pyyjRuLJfwUm/pdZaP0CoASNvQn0t0FKCzmZ0k6cfCuw NGpGUxa/nVE5Jogja/WWcKrcGsoHNWwk -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:38 2025 by rpki-client