$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: KmqPqmRgc4KeZIKdIvXt5mw+7j0rbC7HHvL8V+CHz18= Subject key identifier: 86:7F:8F:8A:13:1F:09:F7:C6:22:14:D6:DC:2D:D0:25:47:7F:05:B4 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 23 Signing time: Mon 03 Nov 2025 07:48:12 +0000 Manifest this update: Mon 03 Nov 2025 07:48:11 +0000 Manifest next update: Mon 10 Nov 2025 07:48:11 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: LDxaQxGAjZuysuBB+eF6Vzh63YNGHFohl9tj7rf6ZMM=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 3: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Nov 3 07:48:11 2025 GMT Not After : Nov 10 07:48:11 2025 GMT Subject: CN=69085e3b-436c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9a:8b:50:fe:c4:3c:bd:8d:26:20:a1:0a:34: 2d:a1:56:22:d1:ea:a4:52:e4:2f:be:ec:b4:5f:71: fa:89:43:8b:fd:27:1c:bd:62:b3:bf:81:63:1b:6f: 14:31:bd:c9:34:6c:78:ae:98:93:77:b9:3a:88:c4: d3:27:a1:90:1c:f2:8f:ac:ad:30:ed:44:42:86:b1: 2f:60:c4:c4:d5:a8:c8:a5:e3:9b:6c:22:e3:55:61: 04:b8:8d:18:7c:e4:82:11:3a:24:8f:7a:d2:1f:c9: 4a:cd:47:bb:11:cc:e8:52:98:33:c2:ad:6f:0a:28: 38:0a:1a:40:d0:84:de:f3:d4:b8:c2:a3:ec:f4:72: e1:a9:2e:ab:31:ff:27:e7:f5:05:c8:8f:d7:8d:a1: 18:e8:31:dd:0e:33:45:42:46:de:d5:b5:09:24:46: c2:dd:c2:54:76:ce:7c:e4:84:73:e6:ae:ff:6f:65: 48:da:94:1d:7f:76:5b:f7:c6:c1:5a:3c:2a:47:03: 0a:7a:34:dc:cf:c2:14:aa:eb:f5:da:85:1f:2d:84: 21:e4:56:d3:06:60:c0:2b:4f:65:2d:50:19:0f:ae: 1f:0f:9e:1d:af:a4:3b:94:83:a3:fb:98:67:c5:9e: b8:aa:b7:49:6e:e0:cc:95:3b:b2:d0:44:77:fa:8f: b9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7F:8F:8A:13:1F:09:F7:C6:22:14:D6:DC:2D:D0:25:47:7F:05:B4 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:43:42:78:86:0d:9e:87:22:de:c9:fe:27:5c:dc:54:e0:7c: 48:3b:31:b0:2d:f0:1c:a7:a7:67:01:52:65:36:83:e3:15:3e: 15:c9:09:0e:49:ed:c4:bb:ce:1e:64:ca:27:c9:5e:25:b3:4b: 9a:43:bd:8a:dc:a9:06:c8:4b:35:57:30:30:28:04:85:e1:21: f5:ee:90:ff:78:82:d4:37:70:ae:91:f0:f2:3d:1e:82:ab:bf: e9:46:8f:d3:20:38:f0:21:c4:64:f4:4f:3b:3c:8d:b9:49:b5: a7:71:16:16:b4:2a:5d:d7:94:8e:04:69:11:3e:f6:6b:a1:de: d9:0f:3f:83:19:64:ba:16:88:e9:12:d6:17:0f:6e:64:88:bd: fe:df:fd:f8:04:69:20:40:59:34:f5:da:c2:b2:a5:17:73:ad: b3:87:f7:d5:c3:56:04:2c:2c:cd:b5:88:60:bb:bb:f1:11:82: 1a:db:f6:6b:ff:54:0e:c4:01:a0:c2:c6:32:b4:54:ca:60:8d: 0c:d6:3c:f1:e2:b8:55:0a:c7:14:6a:cb:c8:96:82:df:20:12: d6:02:5a:95:1f:83:f7:45:6a:b3:11:20:fd:5c:7a:60:09:14: cb:1e:40:65:bd:78:a3:d2:22:02:2a:de:29:5b:cf:07:3f:1f: 8a:86:c0:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTExMDMwNzQ4MTFaFw0yNTExMTAwNzQ4MTFaMBgxFjAUBgNV BAMTDTY5MDg1ZTNiLTQzNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXmotQ/sQ8vY0mIKEKNC2hViLR6qRS5C++7LRfcfqJQ4v9Jxy9YrO/gWMbbxQx vck0bHiumJN3uTqIxNMnoZAc8o+srTDtREKGsS9gxMTVqMil45tsIuNVYQS4jRh8 5IIROiSPetIfyUrNR7sRzOhSmDPCrW8KKDgKGkDQhN7z1LjCo+z0cuGpLqsx/yfn 9QXIj9eNoRjoMd0OM0VCRt7VtQkkRsLdwlR2znzkhHPmrv9vZUjalB1/dlv3xsFa PCpHAwp6NNzPwhSq6/XahR8thCHkVtMGYMArT2UtUBkPrh8Pnh2vpDuUg6P7mGfF nriqt0lu4MyVO7LQRHf6j7lZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhn+PihMf CffGIhTW3C3QJUd/BbQwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABVDQniGDZ6HIt7J/idc3FTgfEg7MbAt8Bynp2cBUmU2g+MVPhXJCQ5J 7cS7zh5kyifJXiWzS5pDvYrcqQbISzVXMDAoBIXhIfXukP94gtQ3cK6R8PI9HoKr v+lGj9MgOPAhxGT0Tzs8jblJtadxFha0Kl3XlI4EaRE+9muh3tkPP4MZZLoWiOkS 1hcPbmSIvf7f/fgEaSBAWTT12sKypRdzrbOH99XDVgQsLM21iGC7u/ERghrb9mv/ VA7EAaDCxjK0VMpgjQzWPPHiuFUKxxRqy8iWgt8gEtYCWpUfg/dFarMRIP1cemAJ FMseQGW9eKPSIgIq3ilbzwc/H4qGwOA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:33 2025 by rpki-client