$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: 9S3R6s7KclA30O3FGTDyCmr79Z99jxsmdQlNsfX8joY= Subject key identifier: F7:2C:80:A4:64:D3:BF:83:18:B3:B4:56:57:F0:B8:EF:DD:DF:B6:D2 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 04FC Signing time: Tue 04 Nov 2025 23:45:09 +0000 Manifest this update: Tue 04 Nov 2025 23:45:09 +0000 Manifest next update: Tue 11 Nov 2025 23:45:09 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: e++Z0voASSRd7jDWepQVhuAJAW4VbRJnNEt7XEgrxE8=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Nov 4 23:45:09 2025 GMT Not After : Nov 11 23:45:09 2025 GMT Subject: CN=690a9005-c754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:67:aa:51:b5:6b:62:7a:ac:e2:f7:5f:2d:18: e3:1e:e9:63:97:a9:f4:95:40:bc:ea:f0:85:7c:43: 09:93:28:26:9d:b8:d2:b1:59:7b:80:22:cb:49:d5: 2a:11:79:d9:88:d5:a8:46:ac:d4:21:fd:7b:73:ff: 32:49:50:8a:67:69:27:09:b6:73:f4:b4:05:a5:91: 26:76:ad:be:5e:b4:a2:ac:ec:9e:d1:13:d5:d2:8c: 78:e3:39:bc:fe:5f:54:cd:89:9c:77:f7:ea:ac:44: 8b:83:4e:6b:61:cb:a0:31:e4:49:30:d4:f7:1d:30: 02:58:3d:68:68:86:68:f5:3e:4c:bc:b0:7a:b6:09: 55:79:d4:25:6b:ac:ea:13:ad:75:31:10:68:da:dd: 2c:2a:bd:8e:36:c4:09:c2:da:99:e7:18:ce:6f:72: 04:26:f7:3c:ba:37:4f:fe:b4:1a:b2:a7:fd:38:aa: 39:67:3e:c9:3c:0c:20:ca:1a:84:58:78:83:59:ef: f0:55:37:17:5d:e3:cc:af:57:47:a0:bf:b5:d2:2a: f2:5b:0f:b0:e8:bb:ee:db:c6:0c:e9:fe:a9:d5:05: 9e:70:26:f9:33:c5:04:41:88:63:7f:61:01:15:6e: 1f:75:91:81:35:62:19:d4:1c:79:95:30:bc:ae:7f: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2C:80:A4:64:D3:BF:83:18:B3:B4:56:57:F0:B8:EF:DD:DF:B6:D2 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e0:26:a3:f7:7c:01:17:8e:b2:a1:ee:e1:00:3a:bd:a9:74: d4:c4:b3:67:a3:e7:01:65:41:b0:05:04:c5:ef:04:27:69:cf: 67:51:67:c5:e9:85:af:87:b4:83:2b:c2:ff:83:c0:30:43:fd: 6a:ab:87:0c:cc:6d:df:f4:73:ca:bf:0a:ec:8d:86:f5:78:99: 51:86:5f:de:6d:88:df:34:a2:1a:05:51:58:b0:69:10:f0:f4: 78:d8:6a:84:f4:37:ad:fe:7b:f8:3d:70:ed:37:3d:ca:88:d8: f0:f6:a1:41:f4:eb:6a:b3:80:38:41:a6:b3:43:0c:d9:99:dd: 6f:b8:15:25:d9:ab:f1:ae:6d:82:77:81:29:24:7b:6e:51:7c: 40:e2:90:ab:e0:fa:76:ac:f7:56:58:b1:01:34:1f:b0:52:2f: c3:ba:4e:e9:83:e0:40:d5:ba:ca:41:4f:3e:93:3b:cb:c6:aa: 4a:d3:89:4e:e5:3e:a9:ac:21:3b:46:c7:6a:45:0b:ae:d8:ea: 1d:a7:cb:a8:7b:63:de:2b:37:01:c2:55:27:e2:0f:f7:4c:a9: f3:77:eb:c6:f6:d9:30:ea:4b:24:4b:79:fb:83:5b:12:c0:16: ad:cd:9d:e3:77:3a:3a:d9:c3:53:29:87:e6:d7:9e:c0:27:c7: 2c:5b:aa:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjUxMTA0MjM0NTA5WhcNMjUxMTExMjM0NTA5WjAYMRYwFAYD VQQDEw02OTBhOTAwNS1jNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWeqUbVrYnqs4vdfLRjjHuljl6n0lUC86vCFfEMJkygmnbjSsVl7gCLLSdUq EXnZiNWoRqzUIf17c/8ySVCKZ2knCbZz9LQFpZEmdq2+XrSirOye0RPV0ox44zm8 /l9UzYmcd/fqrESLg05rYcugMeRJMNT3HTACWD1oaIZo9T5MvLB6tglVedQla6zq E611MRBo2t0sKr2ONsQJwtqZ5xjOb3IEJvc8ujdP/rQasqf9OKo5Zz7JPAwgyhqE WHiDWe/wVTcXXePMr1dHoL+10iryWw+w6Lvu28YM6f6p1QWecCb5M8UEQYhjf2EB FW4fdZGBNWIZ1Bx5lTC8rn9xGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcsgKRk 07+DGLO0VlfwuO/d37bSMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL4Caj93wBF46yoe7hADq9qXTUxLNno+cBZUGwBQTF7wQnac9nUWfF 6YWvh7SDK8L/g8AwQ/1qq4cMzG3f9HPKvwrsjYb1eJlRhl/ebYjfNKIaBVFYsGkQ 8PR42GqE9Det/nv4PXDtNz3KiNjw9qFB9Otqs4A4QaazQwzZmd1vuBUl2avxrm2C d4EpJHtuUXxA4pCr4Pp2rPdWWLEBNB+wUi/Duk7pg+BA1brKQU8+kzvLxqpK04lO 5T6prCE7RsdqRQuu2Oodp8uoe2PeKzcBwlUn4g/3TKnzd+vG9tkw6kskS3n7g1sS wBatzZ3jdzo62cNTKYfm157AJ8csW6oa -----END CERTIFICATE-----Generated at Wed Nov 5 06:27:16 2025 by rpki-client