$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: 1hQFMmJxtiTeMeVfMxwS7flmt2KMr3IWd0+Q171+m9U= Subject key identifier: FD:F6:5E:80:BC:01:B6:C1:A1:D7:E9:24:4B:74:7B:21:8C:DF:A5:BE Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: D8 Signing time: Mon 03 Nov 2025 05:38:54 +0000 Manifest this update: Mon 03 Nov 2025 05:38:54 +0000 Manifest next update: Mon 10 Nov 2025 05:38:54 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: SerYowt4j0ecayyWQ1K81VyoLvdMmxIppwpPy7oOwOc=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: w4Rh9NpZ/IQ60xsdouCsCPn/eRzJ06RRF4GvfzZ5uwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Nov 3 05:38:54 2025 GMT Not After : Nov 10 05:38:54 2025 GMT Subject: CN=69083fee-6691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1e:ad:8d:6b:aa:65:58:11:bc:e9:41:75:8a: dc:6a:fd:02:60:54:4f:1c:f4:90:13:82:e1:5c:86: 99:5e:0d:2b:e1:17:86:40:2f:25:60:e2:1e:20:e5: 9a:9c:ca:67:05:d8:f9:04:a0:b7:0c:80:cb:b7:a8: 48:d3:d5:3e:c6:c5:7a:6e:01:bd:4a:8d:44:47:9c: 60:d7:af:8f:4b:b2:b8:bd:7b:ec:b7:54:7b:cd:10: 6c:c2:e9:d1:e2:3a:22:fa:fe:56:8e:80:b1:ca:e8: f9:fc:75:ac:60:e7:6f:49:ab:23:3d:9f:94:35:42: 8e:ac:59:1e:03:5b:d6:c4:17:06:9b:e4:65:75:4e: 4f:f3:46:df:eb:f8:52:6b:44:63:2e:e0:de:65:85: 8b:fb:11:56:db:ed:79:ef:a6:65:79:fb:2b:d4:0c: c4:3f:96:7e:c7:f5:74:5c:61:da:ca:73:c7:b1:65: 07:75:ce:f8:0c:f2:3d:bd:ee:e1:64:da:92:99:27: ad:b0:6a:c3:0b:97:2f:38:9b:4a:d0:70:af:29:35: c3:48:e7:fa:5b:e1:94:03:79:64:84:54:3a:09:f3: fa:03:e8:98:d5:9d:33:f0:74:75:c9:9c:78:f7:7c: 6f:4e:fd:9e:4b:c9:70:e7:65:1c:d6:1f:df:82:a6: c2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F6:5E:80:BC:01:B6:C1:A1:D7:E9:24:4B:74:7B:21:8C:DF:A5:BE X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:04:65:ca:b4:8b:fc:8f:29:72:69:24:2a:0d:aa:3e:c0:24: 86:c9:d7:96:a6:5e:95:ac:b6:e5:27:9a:08:87:42:9d:aa:f7: 6f:f7:e2:a8:49:b8:bb:37:7b:5a:28:f6:d2:af:85:b0:68:03: 45:dc:44:84:82:bd:7a:05:3c:d3:0b:38:30:cf:b1:2b:52:13: d8:54:f0:ef:f6:e4:11:9a:d9:04:2b:49:e6:51:bc:01:04:0d: 37:ad:61:ca:aa:94:84:60:02:4a:44:c8:81:49:ce:ca:50:e2: 79:6b:97:bf:43:7a:9b:30:21:5d:6b:84:34:a7:13:5b:a1:63: ff:49:c4:ee:f0:74:6b:73:d2:44:5c:01:23:1a:1c:95:af:61: 8e:c7:a1:ba:0e:ec:a1:9d:ec:0a:ec:d1:63:78:c1:4d:5a:cd: 28:2f:ed:08:62:ad:a1:f8:cc:04:3d:51:cd:61:f5:ef:92:17: ee:a4:57:c5:9a:19:17:69:02:07:a3:d4:bd:ba:45:35:2f:a5: 73:60:48:48:ae:7d:d5:c2:7b:50:00:bd:54:da:17:01:9a:33: 32:ad:3d:cd:48:39:cc:a4:5b:c7:9f:75:4d:5a:3e:ce:a3:7e: d8:96:e4:40:73:6b:09:0c:6b:dd:3c:72:af:8d:d5:09:29:3c: 17:96:db:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUxMTAzMDUzODU0WhcNMjUxMTEwMDUzODU0WjAYMRYwFAYD VQQDEw02OTA4M2ZlZS02NjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyx6tjWuqZVgRvOlBdYrcav0CYFRPHPSQE4LhXIaZXg0r4ReGQC8lYOIeIOWa nMpnBdj5BKC3DIDLt6hI09U+xsV6bgG9So1ER5xg16+PS7K4vXvst1R7zRBswunR 4joi+v5WjoCxyuj5/HWsYOdvSasjPZ+UNUKOrFkeA1vWxBcGm+RldU5P80bf6/hS a0RjLuDeZYWL+xFW2+1576Zlefsr1AzEP5Z+x/V0XGHaynPHsWUHdc74DPI9ve7h ZNqSmSetsGrDC5cvOJtK0HCvKTXDSOf6W+GUA3lkhFQ6CfP6A+iY1Z0z8HR1yZx4 93xvTv2eS8lw52Uc1h/fgqbCIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP32XoC8 AbbBodfpJEt0eyGM36W+MB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtBGXKtIv8jylyaSQqDao+wCSGydeWpl6VrLblJ5oIh0Kdqvdv9+Ko Sbi7N3taKPbSr4WwaANF3ESEgr16BTzTCzgwz7ErUhPYVPDv9uQRmtkEK0nmUbwB BA03rWHKqpSEYAJKRMiBSc7KUOJ5a5e/Q3qbMCFda4Q0pxNboWP/ScTu8HRrc9JE XAEjGhyVr2GOx6G6DuyhnewK7NFjeMFNWs0oL+0IYq2h+MwEPVHNYfXvkhfupFfF mhkXaQIHo9S9ukU1L6VzYEhIrn3VwntQAL1U2hcBmjMyrT3NSDnMpFvHn3VNWj7O o37YluRAc2sJDGvdPHKvjdUJKTwXltsJ -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:08 2025 by rpki-client