$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: h6ABwyrdutg95YIq9YF5nXaq1UbOHvmCX7amAJ4pNoQ= Subject key identifier: B7:33:1B:43:66:B4:D7:77:23:0D:8C:07:64:7C:93:2F:D2:15:88:D5 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BF9 Signing time: Sun 02 Nov 2025 18:49:21 +0000 Manifest this update: Sun 02 Nov 2025 18:49:21 +0000 Manifest next update: Sun 09 Nov 2025 18:49:21 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: efL3vuJmf5gGpfvmb+BzbwBn80LwfN8WZmx5KvZxVx4=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Nov 2 18:49:21 2025 GMT Not After : Nov 9 18:49:21 2025 GMT Subject: CN=6907a7b1-ed7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:97:cd:60:8a:00:5d:27:90:6a:b8:3f:be:5f: 46:64:c4:eb:c1:60:28:4b:bd:b7:e5:ef:9d:56:3b: 8f:09:23:39:78:a2:07:0d:09:76:ff:85:b2:c8:fc: 32:ee:6d:3d:68:a4:2d:a8:81:1b:53:74:56:62:c5: 29:5e:01:b1:c4:f4:98:ea:13:1b:b3:1c:1d:e7:37: 7a:7c:59:45:29:fd:e1:a5:4c:be:c8:69:0c:9f:ea: 61:70:cb:77:94:7d:e5:ff:5b:44:0d:72:17:48:15: 76:f6:7b:29:e2:d6:57:4a:8f:38:81:c1:64:df:9b: 11:53:3e:c2:a0:0e:26:95:d7:98:d8:83:fc:bc:b4: 9b:10:47:b5:ce:0d:e0:f9:e7:52:f3:96:6f:fb:91: 69:78:31:c0:17:9f:bb:f8:88:8b:73:38:5d:91:25: 41:36:84:01:53:85:32:4a:38:24:60:27:7f:86:3d: e9:2d:24:2a:02:3e:c1:5e:b8:d3:a4:35:db:31:d7: e0:b1:f6:ee:cf:5f:bd:07:c3:c3:80:f5:2f:cb:a0: e9:f6:0b:1d:40:05:21:63:65:52:82:79:70:a6:0e: 1b:e8:8d:20:61:0e:b8:13:c4:85:f3:aa:0a:43:53: 43:ba:78:8b:07:41:0b:16:a3:8b:1e:43:b6:97:ab: 80:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:33:1B:43:66:B4:D7:77:23:0D:8C:07:64:7C:93:2F:D2:15:88:D5 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ab:83:b8:81:6e:00:80:f7:c2:66:ca:01:d1:35:16:5e:e3: 01:0f:f0:55:36:42:f9:23:91:df:a2:09:36:3d:fb:8d:b9:0d: c3:75:94:a0:77:b3:d0:53:80:14:9c:a1:b2:23:f6:3c:39:74: 52:7c:96:0a:d9:db:17:fb:04:d8:16:d8:fa:04:76:6c:e5:c0: b1:c2:bd:2d:2a:ba:49:f2:e0:7e:50:14:3f:4c:28:a2:d2:57: bf:39:98:c8:4a:7b:ee:80:be:8e:38:8f:62:3b:a6:7a:81:ac: 94:1f:cb:53:44:5f:5d:d9:fc:08:99:ec:81:a6:15:d1:8c:d0: 3c:29:44:2b:38:c8:ae:75:19:91:79:36:d8:92:8e:e3:f6:94: 7d:ea:3a:ff:ff:f9:54:9d:a1:ca:fe:e3:08:6a:22:55:b0:07: 4a:c3:fa:76:74:19:5f:b7:52:07:43:9b:a7:3f:61:69:96:23: c0:a8:86:a7:dd:f2:fa:44:a1:27:dc:1b:8d:b9:37:8b:35:fb: a8:81:89:85:94:b0:5d:ea:7e:e7:2c:77:a6:18:88:cd:49:e6: f3:32:ff:f5:c6:de:84:f8:05:75:fe:e9:d9:dd:55:05:dc:67: 54:96:08:a0:a2:d6:e2:68:45:69:3d:d3:a7:5b:38:1b:ff:9e: 68:ee:05:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUxMTAyMTg0OTIxWhcNMjUxMTA5MTg0OTIxWjAYMRYwFAYD VQQDEw02OTA3YTdiMS1lZDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJfNYIoAXSeQarg/vl9GZMTrwWAoS7235e+dVjuPCSM5eKIHDQl2/4WyyPwy 7m09aKQtqIEbU3RWYsUpXgGxxPSY6hMbsxwd5zd6fFlFKf3hpUy+yGkMn+phcMt3 lH3l/1tEDXIXSBV29nsp4tZXSo84gcFk35sRUz7CoA4mldeY2IP8vLSbEEe1zg3g +edS85Zv+5FpeDHAF5+7+IiLczhdkSVBNoQBU4UySjgkYCd/hj3pLSQqAj7BXrjT pDXbMdfgsfbuz1+9B8PDgPUvy6Dp9gsdQAUhY2VSgnlwpg4b6I0gYQ64E8SF86oK Q1NDuniLB0ELFqOLHkO2l6uA0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLczG0Nm tNd3Iw2MB2R8ky/SFYjVMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbq4O4gW4AgPfCZsoB0TUWXuMBD/BVNkL5I5Hfogk2PfuNuQ3DdZSg d7PQU4AUnKGyI/Y8OXRSfJYK2dsX+wTYFtj6BHZs5cCxwr0tKrpJ8uB+UBQ/TCii 0le/OZjISnvugL6OOI9iO6Z6gayUH8tTRF9d2fwImeyBphXRjNA8KUQrOMiudRmR eTbYko7j9pR96jr///lUnaHK/uMIaiJVsAdKw/p2dBlft1IHQ5unP2FpliPAqIan 3fL6RKEn3BuNuTeLNfuogYmFlLBd6n7nLHemGIjNSebzMv/1xt6E+AV1/unZ3VUF 3GdUlgigotbiaEVpPdOnWzgb/55o7gXl -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:24 2025 by rpki-client