$ rpki-client -vvf rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft File: HFloWGy0x-KD8UGfWFBGjtpVloI.mft (raw, json) Hash identifier: me9nKi9+O4cAuIZ6hfZ8Iw/Uu1sLcMv/8692BSFGwKQ= Subject key identifier: 3D:6D:10:11:24:4B:53:FB:58:DE:AA:D6:34:8B:E5:86:A7:55:8E:63 Authority key identifier: 1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 Certificate issuer: /CN=A91C78A7/serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft Manifest number: 08 Signing time: Mon 03 Nov 2025 08:05:11 +0000 Manifest this update: Mon 03 Nov 2025 08:05:10 +0000 Manifest next update: Mon 10 Nov 2025 08:05:10 +0000 Files and hashes: 1: HFloWGy0x-KD8UGfWFBGjtpVloI.crl (hash: R1dovRUmRvN8Rq9bfIu6BeVhZ44x3Dfwl/eelqhsrVk=) 2: 7EE7A08EB62111F08C9BBB5DC4F9AE02.roa (hash: CqEVesEQUIRS9swO5wlG/SMUzejeu/Jelkeq4CxPI+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C78A7, serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Validity Not Before: Nov 3 08:05:10 2025 GMT Not After : Nov 10 08:05:10 2025 GMT Subject: CN=69086236-26c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:2f:d4:b1:42:13:7e:0d:ea:09:12:04:ec: 71:21:05:31:b0:3b:a4:ed:ed:42:4b:13:67:3c:57: 06:83:60:d0:d2:fe:6d:4e:7c:56:83:77:6f:1d:63: bd:d9:db:23:10:38:1e:45:50:10:d1:68:14:21:07: 58:f8:c5:07:f0:5c:0e:7c:6b:52:4d:2a:4f:78:17: d2:8b:54:e6:bb:b1:d5:fe:2c:39:37:42:94:be:f7: 2d:66:04:28:dd:67:fe:6d:94:e8:63:2a:ec:2e:28: 78:37:e9:f8:9c:18:4e:68:2b:8d:3a:13:11:b0:f0: 3c:d3:d8:e1:57:ee:68:e5:20:87:86:51:e7:50:1e: 71:4d:f8:35:25:ac:b2:e1:d5:63:9d:de:f0:db:58: a4:66:bf:6f:07:41:af:82:a9:d9:18:d8:0b:49:b5: aa:b1:ed:64:5e:54:09:59:6d:a2:04:e0:f7:c8:e8: 08:38:eb:03:09:3c:c4:43:5b:c0:fe:8c:36:8d:08: 04:23:28:3d:91:74:f9:38:3c:e6:b8:82:21:90:27: 94:f5:fc:cc:7d:59:86:a4:14:c8:ec:5a:cb:7c:43: 65:60:76:f2:92:76:0a:d8:a3:04:4f:5c:40:0a:04: 99:fa:ec:c7:0f:16:01:f5:94:e8:a5:b3:c9:63:26: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6D:10:11:24:4B:53:FB:58:DE:AA:D6:34:8B:E5:86:A7:55:8E:63 X509v3 Authority Key Identifier: keyid:1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9f:34:b3:97:4f:bd:ec:b7:fd:a2:fe:29:cc:6b:fc:12:d4: 8a:f5:c2:0a:14:f5:79:d5:28:90:5e:e3:57:eb:71:62:fc:17: 98:eb:40:48:61:78:17:17:45:07:6d:dc:3e:2f:79:e3:50:3b: 8a:81:1a:99:b6:01:3f:4d:9e:39:29:4c:bb:b9:37:98:eb:d4: 15:78:59:39:6d:a0:56:e6:9e:29:03:56:f8:26:a3:ac:89:94: 13:92:ec:9c:97:f8:74:38:5d:be:43:a7:68:14:ce:14:34:22: a4:73:2e:9a:90:ae:20:1e:67:4a:08:77:8c:96:b9:c6:1d:29: 9f:47:97:c1:0f:93:2c:f9:30:08:b1:27:2a:61:be:f2:5a:ef: eb:4d:40:fa:04:e9:e5:83:12:2d:0c:7d:c6:fa:34:af:16:e3: fe:d6:f6:c4:00:25:10:a4:1c:69:c7:89:56:0d:cc:7f:76:01: 0e:c6:0f:54:5e:2d:20:14:7d:cc:18:79:ad:ed:e2:75:7d:5c: 6a:37:ca:81:76:66:a1:06:df:c0:d3:9e:ed:93:a1:a7:6b:56: 07:9a:80:65:3e:57:48:27:fb:cd:6d:3f:2a:c2:cf:db:be:6d: 2a:d0:03:f5:e6:ab:76:d2:25:84:38:17:8d:16:e3:19:be:bd: 45:d6:0c:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzhBNzExMC8GA1UEBRMoMUM1OTY4NTg2Q0I0QzdFMjgzRjE0MTlGNTg1MDQ2OEVE QTU1OTY4MjAeFw0yNTExMDMwODA1MTBaFw0yNTExMTAwODA1MTBaMBgxFjAUBgNV BAMTDTY5MDg2MjM2LTI2YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCvy/UsUITfg3qCRIE7HEhBTGwO6Tt7UJLE2c8VwaDYNDS/m1OfFaDd28dY73Z 2yMQOB5FUBDRaBQhB1j4xQfwXA58a1JNKk94F9KLVOa7sdX+LDk3QpS+9y1mBCjd Z/5tlOhjKuwuKHg36ficGE5oK406ExGw8DzT2OFX7mjlIIeGUedQHnFN+DUlrLLh 1WOd3vDbWKRmv28HQa+CqdkY2AtJtaqx7WReVAlZbaIE4PfI6Ag46wMJPMRDW8D+ jDaNCAQjKD2RdPk4POa4giGQJ5T1/Mx9WYakFMjsWst8Q2VgdvKSdgrYowRPXEAK BJn67McPFgH1lOils8ljJrP1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPW0QESRL U/tY3qrWNIvlhqdVjmMwHwYDVR0jBBgwFoAUHFloWGy0x+KD8UGfWFBGjtpVloIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3OEE3L0ZBRTk2QzRBQjYy MDExRjBBNzQ5MjExRkM0RjlBRTAyL0hGbG9XR3kweC1LRDhVR2ZXRkJHanRwVmxv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSEZsb1dHeTB4LUtEOFVHZldGQkdqdHBWbG9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 OEE3L0ZBRTk2QzRBQjYyMDExRjBBNzQ5MjExRkM0RjlBRTAyL0hGbG9XR3kweC1L RDhVR2ZXRkJHanRwVmxvSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGufNLOXT73st/2i/inMa/wS1Ir1wgoU9XnVKJBe41frcWL8F5jrQEhh eBcXRQdt3D4veeNQO4qBGpm2AT9NnjkpTLu5N5jr1BV4WTltoFbmnikDVvgmo6yJ lBOS7JyX+HQ4Xb5Dp2gUzhQ0IqRzLpqQriAeZ0oId4yWucYdKZ9Hl8EPkyz5MAix JyphvvJa7+tNQPoE6eWDEi0Mfcb6NK8W4/7W9sQAJRCkHGnHiVYNzH92AQ7GD1Re LSAUfcwYea3t4nV9XGo3yoF2ZqEG38DTnu2ToadrVgeagGU+V0gn+81tPyrCz9u+ bSrQA/Xmq3bSJYQ4F40W4xm+vUXWDMw= -----END CERTIFICATE-----Generated at Wed Nov 5 00:02:02 2025 by rpki-client