$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft File: hypmcnatRHCKRH_b6IHxYueQ3WM.mft (raw, json) Hash identifier: I5Hm7YzgvddS19l03s0sgD5tWf9EhIBdeQ2p/8GMpQE= Subject key identifier: E4:7D:A4:8C:9F:F4:92:CA:C9:6C:90:9B:C1:E4:34:CA:0A:21:39:C2 Authority key identifier: 87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 Certificate issuer: /CN=A91C5153/serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft Manifest number: 0694 Signing time: Tue 04 Nov 2025 22:28:34 +0000 Manifest this update: Tue 04 Nov 2025 22:28:33 +0000 Manifest next update: Tue 11 Nov 2025 22:28:33 +0000 Files and hashes: 1: hypmcnatRHCKRH_b6IHxYueQ3WM.crl (hash: jJQWMlEig7ubCtdV7mgmvHbrNQqfGPauqFyNt6Ad1ZQ=) 2: 5B194E5EDFF311EBBC814169C4F9AE02.roa (hash: bolwxGi/eUOKWmqsmWqcMpF1AWqbvnFw3vWt3JpNOcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5153, serialNumber=872A667276AD44708A447FDBE881F162E790DD63 Validity Not Before: Nov 4 22:28:33 2025 GMT Not After : Nov 11 22:28:33 2025 GMT Subject: CN=690a7e12-f516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:57:5e:f1:9d:d2:6f:6a:8a:67:cd:af:1f: d6:a8:32:24:84:d6:d5:3e:80:01:38:2f:29:d8:67: 26:ea:9d:0f:53:df:59:3d:1c:71:0d:d2:8c:81:fd: 0d:8b:d1:80:b7:71:48:14:28:02:6f:a4:01:eb:6b: 54:57:11:3e:e1:99:1f:40:8b:51:1c:db:19:e3:cf: 42:ce:d2:30:9a:3b:ff:00:ce:d5:43:1c:97:3e:1c: 1c:fc:7c:e9:07:19:a3:be:1b:39:5d:1b:64:38:6e: 64:a4:41:ad:d8:cf:9f:78:88:79:f8:cd:8b:02:f8: 88:78:05:d9:e6:80:04:01:b2:86:5e:17:25:57:a0: d9:66:eb:fa:7d:80:b8:55:bc:d8:e0:8f:1c:53:0b: c9:f0:8c:44:36:5b:9a:33:c0:34:e1:76:3e:5d:e4: a2:fc:2a:53:93:e8:87:9f:1e:7c:a8:de:60:42:5f: d7:7d:75:53:42:64:48:0d:b6:94:e3:f4:f2:e6:cd: 94:b3:f6:39:02:96:6c:40:ee:7e:2b:58:a9:c0:fe: cb:65:89:f2:23:cd:8c:a3:cd:0c:4b:1f:20:1e:39: c3:b5:3f:2c:ca:a5:80:61:1c:d8:f6:4a:5d:7f:be: fa:c5:67:53:ff:ba:2e:90:c4:bf:b1:b8:b5:dd:7a: d4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7D:A4:8C:9F:F4:92:CA:C9:6C:90:9B:C1:E4:34:CA:0A:21:39:C2 X509v3 Authority Key Identifier: keyid:87:2A:66:72:76:AD:44:70:8A:44:7F:DB:E8:81:F1:62:E7:90:DD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hypmcnatRHCKRH_b6IHxYueQ3WM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5153/954281C2904811EBA48E9630C4F9AE02/hypmcnatRHCKRH_b6IHxYueQ3WM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:42:ae:b9:6d:90:7a:43:1a:70:b2:36:6b:96:3a:06:fe:12: 37:75:4f:5b:b8:18:7f:25:c1:ce:2d:4d:71:e2:d0:b5:38:e6: 7f:de:80:b7:ad:55:be:df:86:da:af:0b:fb:10:68:79:30:8f: b7:54:d4:52:b4:34:58:e1:79:2d:a2:c7:f6:f9:75:a2:a2:33: 0a:e8:41:1c:ff:2d:ad:13:75:12:80:99:35:1e:d2:c9:ae:ab: a8:74:1f:ec:6d:40:26:ca:7e:7c:17:c7:36:e7:53:46:ff:b2: a9:93:dd:6e:1b:88:c7:3c:82:13:8d:45:27:9a:de:e7:52:c6: 05:13:b1:44:e4:ac:bc:5a:fc:02:b6:a7:46:eb:62:13:30:18: e1:aa:41:2b:03:3b:2c:9a:54:89:a7:cb:88:cc:8a:ae:55:c4: 86:80:77:24:fb:1e:80:1d:ca:6f:1d:55:32:30:c1:d0:a2:03: b8:c8:b1:23:75:5e:48:f8:f4:01:e6:87:e5:ee:66:c3:16:3e: 41:ca:cd:2c:68:50:4b:db:e7:bd:18:34:94:ce:4a:60:c8:98: 25:94:c6:18:06:6d:78:ed:5f:a4:50:74:8f:48:e8:1a:9b:b7: d5:0d:5a:32:6e:ec:b8:05:e9:31:03:97:47:ef:47:08:6b:41: 63:4c:19:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUxNTMxMTAvBgNVBAUTKDg3MkE2NjcyNzZBRDQ0NzA4QTQ0N0ZEQkU4ODFGMTYy RTc5MERENjMwHhcNMjUxMTA0MjIyODMzWhcNMjUxMTExMjIyODMzWjAYMRYwFAYD VQQDEw02OTBhN2UxMi1mNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1edXXvGd0m9qimfNrx/WqDIkhNbVPoABOC8p2Gcm6p0PU99ZPRxxDdKMgf0N i9GAt3FIFCgCb6QB62tUVxE+4ZkfQItRHNsZ489CztIwmjv/AM7VQxyXPhwc/Hzp Bxmjvhs5XRtkOG5kpEGt2M+feIh5+M2LAviIeAXZ5oAEAbKGXhclV6DZZuv6fYC4 VbzY4I8cUwvJ8IxENluaM8A04XY+XeSi/CpTk+iHnx58qN5gQl/XfXVTQmRIDbaU 4/Ty5s2Us/Y5ApZsQO5+K1ipwP7LZYnyI82Mo80MSx8gHjnDtT8syqWAYRzY9kpd f776xWdT/7oukMS/sbi13XrUPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOR9pIyf 9JLKyWyQm8HkNMoKITnCMB8GA1UdIwQYMBaAFIcqZnJ2rURwikR/2+iB8WLnkN1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTE1My85NTQyODFDMjkw NDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJIQ0tSSF9iNklIeFl1ZVEz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5cG1jbmF0UkhDS1JIX2I2SUh4WXVlUTNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTE1My85NTQyODFDMjkwNDgxMUVCQTQ4RTk2MzBDNEY5QUUwMi9oeXBtY25hdFJI Q0tSSF9iNklIeFl1ZVEzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuQq65bZB6QxpwsjZrljoG/hI3dU9buBh/JcHOLU1x4tC1OOZ/3oC3 rVW+34barwv7EGh5MI+3VNRStDRY4Xktosf2+XWiojMK6EEc/y2tE3USgJk1HtLJ rquodB/sbUAmyn58F8c251NG/7Kpk91uG4jHPIITjUUnmt7nUsYFE7FE5Ky8WvwC tqdG62ITMBjhqkErAzssmlSJp8uIzIquVcSGgHck+x6AHcpvHVUyMMHQogO4yLEj dV5I+PQB5ofl7mbDFj5Bys0saFBL2+e9GDSUzkpgyJgllMYYBm147V+kUHSPSOga m7fVDVoybuy4BekxA5dH70cIa0FjTBnH -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:27 2025 by rpki-client