$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft File: hDJHwKwYH8NmZqRDchryHZ2mUNo.mft (raw, json) Hash identifier: +P35c5Xbnmayqfkvw1QlPDhdSPICvfnFnpPW5hAERyg= Subject key identifier: 33:18:72:67:85:39:54:6E:10:80:78:41:67:FD:D3:3C:4E:D8:09:73 Authority key identifier: 84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA Certificate issuer: /CN=A91CEAE0/serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft Manifest number: 0115 Signing time: Mon 03 Nov 2025 04:53:46 +0000 Manifest this update: Mon 03 Nov 2025 04:53:46 +0000 Manifest next update: Mon 10 Nov 2025 04:53:46 +0000 Files and hashes: 1: hDJHwKwYH8NmZqRDchryHZ2mUNo.crl (hash: q6jtZu2HjtL/dl7hdNSQgfHQ1WVpBmkTzCE608ToU84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=843247C0AC181FC36666A443721AF21D9DA650DA Validity Not Before: Nov 3 04:53:46 2025 GMT Not After : Nov 10 04:53:46 2025 GMT Subject: CN=6908355a-08c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:ee:bc:7c:07:7e:4c:fc:95:9c:c4:85:1f: 0d:a6:15:6e:49:a5:ef:e8:24:7e:3d:c1:26:26:8f: da:95:0c:06:fc:a4:83:69:b0:a3:18:9d:5d:1f:78: 55:4d:a9:40:ff:1f:c0:dd:36:1d:e2:74:a6:58:50: 58:59:4b:67:29:d9:87:56:6d:9b:02:76:b4:fb:4e: d2:31:da:c1:d5:ce:63:c3:2f:9b:0e:08:1a:b8:63: d7:a1:e5:4b:ec:91:43:a9:7a:47:aa:da:4e:62:d8: fb:ce:04:73:43:b9:cd:ef:53:e8:5d:de:19:ce:e8: ab:31:ce:41:73:24:c1:38:9d:f0:f1:0d:01:f4:e9: b4:c2:ef:57:9b:ab:58:7c:6f:88:4b:58:0f:23:cf: b9:d8:58:44:42:54:65:dc:41:30:bb:f6:fa:bb:ee: 19:ee:eb:ee:92:33:76:2d:c7:49:06:cf:8b:4b:0f: 3a:84:fb:08:76:c4:e3:6c:96:e8:11:d3:43:2f:de: 0d:0a:af:1d:1d:9c:4c:0d:f4:6c:73:3b:a7:e5:1d: 05:4f:96:93:89:12:5e:0d:a8:ba:e7:71:53:a6:68: 75:5f:93:63:ca:21:0d:e0:8d:67:3a:90:65:0d:83: e0:65:4b:5c:d9:a5:ad:36:1b:c0:46:b0:e5:42:72: d2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:18:72:67:85:39:54:6E:10:80:78:41:67:FD:D3:3C:4E:D8:09:73 X509v3 Authority Key Identifier: keyid:84:32:47:C0:AC:18:1F:C3:66:66:A4:43:72:1A:F2:1D:9D:A6:50:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hDJHwKwYH8NmZqRDchryHZ2mUNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/BC521A54190A11EFA90EC929C4F9AE02/hDJHwKwYH8NmZqRDchryHZ2mUNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b4:a8:e3:20:e5:30:62:dd:3a:ae:39:8f:49:cd:da:12:02: e4:dc:18:a6:19:e6:ff:de:81:8f:f9:46:63:ce:4e:6d:1d:d6: 2e:82:7b:b3:94:a4:65:13:c8:06:1c:dc:3c:78:60:2c:63:c2: 29:7d:a5:58:e1:17:51:42:c2:8d:80:90:02:22:a0:8b:45:fe: f1:f8:83:e1:d2:24:c6:a1:a6:5c:7c:97:46:58:a4:b0:d2:7e: 05:47:3f:1a:af:b8:2e:73:64:69:94:42:bb:3f:e7:9d:6a:71: 1d:8d:57:0b:12:26:fa:ef:f2:e0:c4:b2:7c:7b:34:25:74:8a: e5:16:3b:42:4b:4f:53:db:74:bb:cb:33:c7:89:d0:3e:f6:09: b5:1d:71:23:42:21:d6:0d:a6:39:83:82:a1:d7:3c:ad:60:c4: d1:67:27:57:ac:9e:f4:60:36:e7:ea:57:64:6c:8d:1a:11:08: 81:ea:48:6b:6d:24:9b:63:30:3a:42:57:8a:a3:c1:1a:3f:17: 03:ce:d3:37:1f:87:3a:d5:2f:97:1b:30:f0:bf:10:21:5c:6b: f4:cd:88:5e:00:c1:57:05:58:15:0c:3d:d3:da:2d:8e:a4:32: 4c:a9:0b:3d:fc:73:df:fa:b7:ad:ed:6a:0f:5c:fc:e1:5e:91: 8b:4a:2d:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDg0MzI0N0MwQUMxODFGQzM2NjY2QTQ0MzcyMUFGMjFE OURBNjUwREEwHhcNMjUxMTAzMDQ1MzQ2WhcNMjUxMTEwMDQ1MzQ2WjAYMRYwFAYD VQQDEw02OTA4MzU1YS0wOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNbuvHwHfkz8lZzEhR8NphVuSaXv6CR+PcEmJo/alQwG/KSDabCjGJ1dH3hV TalA/x/A3TYd4nSmWFBYWUtnKdmHVm2bAna0+07SMdrB1c5jwy+bDggauGPXoeVL 7JFDqXpHqtpOYtj7zgRzQ7nN71PoXd4ZzuirMc5BcyTBOJ3w8Q0B9Om0wu9Xm6tY fG+IS1gPI8+52FhEQlRl3EEwu/b6u+4Z7uvukjN2LcdJBs+LSw86hPsIdsTjbJbo EdNDL94NCq8dHZxMDfRsczun5R0FT5aTiRJeDai653FTpmh1X5NjyiEN4I1nOpBl DYPgZUtc2aWtNhvARrDlQnLSvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMYcmeF OVRuEIB4QWf90zxO2AlzMB8GA1UdIwQYMBaAFIQyR8CsGB/DZmakQ3Ia8h2dplDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9CQzUyMUE1NDE5 MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4Tm1acVJEY2hyeUhaMm1V Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hESkh3S3dZSDhObVpxUkRjaHJ5SFoybVVOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9CQzUyMUE1NDE5MEExMUVGQTkwRUM5MjlDNEY5QUUwMi9oREpId0t3WUg4 Tm1acVJEY2hyeUhaMm1VTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBttKjjIOUwYt06rjmPSc3aEgLk3BimGeb/3oGP+UZjzk5tHdYugnuz lKRlE8gGHNw8eGAsY8IpfaVY4RdRQsKNgJACIqCLRf7x+IPh0iTGoaZcfJdGWKSw 0n4FRz8ar7guc2RplEK7P+edanEdjVcLEib67/LgxLJ8ezQldIrlFjtCS09T23S7 yzPHidA+9gm1HXEjQiHWDaY5g4Kh1zytYMTRZydXrJ70YDbn6ldkbI0aEQiB6khr bSSbYzA6QleKo8EaPxcDztM3H4c61S+XGzDwvxAhXGv0zYheAMFXBVgVDD3T2i2O pDJMqQs9/HPf+ret7WoPXPzhXpGLSi1O -----END CERTIFICATE-----Generated at Wed Nov 5 01:25:17 2025 by rpki-client