$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: FsFMrBTLek5LDcpxeIkuoNRgRHcBbizX45t9P9QyrkE= Subject key identifier: 0E:B7:EF:2D:6D:28:96:5E:E1:21:6E:8D:C1:AC:33:E5:08:4F:B5:92 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: C6 Signing time: Wed 05 Nov 2025 05:59:29 +0000 Manifest this update: Wed 05 Nov 2025 05:59:29 +0000 Manifest next update: Wed 12 Nov 2025 05:59:29 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: Fj6riuxNLoCJFfKA7DS0E/43SCmjOqu6KMe4ZgpeUKo=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Nov 5 05:59:29 2025 GMT Not After : Nov 12 05:59:29 2025 GMT Subject: CN=690ae7c1-1329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5b:bd:ce:51:5e:40:f6:5b:6f:0d:b0:27:e4: 60:7a:3e:f1:4a:08:ee:40:cb:b3:54:ee:6b:ca:0c: c2:9b:14:64:b0:42:ad:e1:f3:36:44:e3:fc:5e:27: ca:55:fb:6e:fb:b5:9f:e6:67:e0:73:4e:0f:dc:b1: 3e:97:87:54:cd:00:4a:88:76:92:50:74:df:f6:07: 88:62:91:3d:7a:da:67:ad:ac:0d:f7:c8:c2:2b:ad: 41:50:c6:a3:fd:15:69:64:3c:70:fe:7b:f4:b0:28: ae:01:74:25:39:19:8f:a2:4a:db:d7:9b:17:f4:7f: 70:8c:52:47:27:f2:d9:4a:aa:b3:0c:be:90:39:68: 00:b4:4a:91:4b:f1:86:77:c7:e0:4f:fc:ed:21:6e: cc:fa:b0:23:ae:8a:ef:7a:fb:e3:46:a7:c1:07:81: 28:79:10:d6:e3:52:28:56:fc:79:ba:71:c4:ee:b3: c5:7b:ff:c6:ec:04:a4:16:c1:4d:3f:45:25:72:23: 31:64:05:55:c5:a1:03:21:91:c3:cf:03:da:a0:90: 19:94:cf:86:dd:1e:38:79:a6:da:dd:ed:b8:9d:8e: ae:50:9e:a4:f8:cc:94:4b:6f:78:3f:04:86:03:c1: 68:36:9e:9a:48:54:5b:e2:65:a1:e4:0f:79:20:ca: 01:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B7:EF:2D:6D:28:96:5E:E1:21:6E:8D:C1:AC:33:E5:08:4F:B5:92 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b9:d9:5e:ce:fd:b6:ed:27:57:70:eb:79:5d:41:bb:a4:9a: da:60:f7:05:3b:bd:fe:df:f0:7f:0b:8e:fd:52:01:1d:7d:bd: 33:da:11:be:c7:ec:bf:1a:70:27:02:43:59:e9:4a:42:ff:2d: a1:bf:58:4d:f3:63:ab:88:a0:94:20:c9:da:7d:fb:2c:a9:dc: 66:01:48:94:01:2a:51:4f:76:8c:a7:e6:91:05:b2:52:0b:2d: bb:0e:bb:33:ba:2b:2d:bd:85:ce:61:d6:ec:31:5c:80:14:01: f4:61:60:38:55:70:4c:d9:57:99:6a:ec:1f:e4:72:41:65:77: 18:24:d6:c8:b8:e1:6c:7d:0c:d2:2f:51:6a:ca:5c:df:94:7e: e0:b0:ae:05:98:d0:b2:bd:56:40:07:15:01:42:a5:e2:8c:f7: 7f:35:90:80:59:c1:98:3a:a3:a9:0a:5d:53:b8:d2:6e:17:04: 28:67:fd:7f:17:d3:5f:c2:9d:c3:49:52:30:f2:35:e3:f4:9f: 99:ff:4c:68:a6:9d:3b:04:8f:c7:b4:aa:c6:66:d8:e0:1b:a0: 0e:b8:42:7f:d6:e3:dc:fd:9e:45:cd:c8:83:8f:7d:0a:e0:c9: b4:3b:28:ba:c5:62:ec:5c:ec:c4:e6:4f:0d:36:a0:60:0f:b0: 78:97:f8:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMTkxMTAvBgNVBAUTKDFERDMzQTY4QkMwQjVDOTMxMEZGRjUyQUQ3Mzk0MTIw RDEwMkE2MjcwHhcNMjUxMTA1MDU1OTI5WhcNMjUxMTEyMDU1OTI5WjAYMRYwFAYD VQQDEw02OTBhZTdjMS0xMzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFu9zlFeQPZbbw2wJ+Rgej7xSgjuQMuzVO5rygzCmxRksEKt4fM2ROP8XifK Vftu+7Wf5mfgc04P3LE+l4dUzQBKiHaSUHTf9geIYpE9etpnrawN98jCK61BUMaj /RVpZDxw/nv0sCiuAXQlORmPokrb15sX9H9wjFJHJ/LZSqqzDL6QOWgAtEqRS/GG d8fgT/ztIW7M+rAjrorvevvjRqfBB4EoeRDW41IoVvx5unHE7rPFe//G7ASkFsFN P0UlciMxZAVVxaEDIZHDzwPaoJAZlM+G3R44eaba3e24nY6uUJ6k+MyUS294PwSG A8FoNp6aSFRb4mWh5A95IMoB6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA637y1t KJZe4SFujcGsM+UIT7WSMB8GA1UdIwQYMBaAFB3TOmi8C1yTEP/1Ktc5QSDRAqYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMxOS9GOTRENDFDODhD MkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhKTVFfX1VxMXpsQklORUNw aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3BpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMxOS9GOTRENDFDODhDMkMxMUVGODEyMkVDMTFDNEY5QUUwMi9IZE02YUx3TFhK TVFfX1VxMXpsQklORUNwaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmudlezv227SdXcOt5XUG7pJraYPcFO73+3/B/C479UgEdfb0z2hG+ x+y/GnAnAkNZ6UpC/y2hv1hN82OriKCUIMnaffssqdxmAUiUASpRT3aMp+aRBbJS Cy27DrszuistvYXOYdbsMVyAFAH0YWA4VXBM2VeZauwf5HJBZXcYJNbIuOFsfQzS L1FqylzflH7gsK4FmNCyvVZABxUBQqXijPd/NZCAWcGYOqOpCl1TuNJuFwQoZ/1/ F9Nfwp3DSVIw8jXj9J+Z/0xopp07BI/HtKrGZtjgG6AOuEJ/1uPc/Z5FzciDj30K 4Mm0Oyi6xWLsXOzE5k8NNqBgD7B4l/j1 -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:31 2025 by rpki-client