$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: CcKx9QS8c27rsulMQ6i9y/cF9ZzvDXjLVO+w0PnxQYs= Subject key identifier: 46:CA:55:46:3C:03:79:0E:26:7F:54:B1:03:1F:5F:04:37:43:96:A4 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 08A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 089D Signing time: Tue 04 Nov 2025 20:36:36 +0000 Manifest this update: Tue 04 Nov 2025 20:36:35 +0000 Manifest next update: Tue 11 Nov 2025 20:36:35 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: 1rbAVj3iPH32seIkMDWtbuA4AlQXhoRbPGgt7ZdOq2Y=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: 1N0QMhN8bev3U7bduyRkYXLSMRn8SE8/x15vjryS7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Nov 4 20:36:35 2025 GMT Not After : Nov 11 20:36:35 2025 GMT Subject: CN=690a63d4-fe80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:3d:4e:58:b6:40:aa:ca:ae:e6:97:0b:5a: 7d:25:dc:a2:d7:b8:03:74:22:22:5d:55:e2:cb:22: d8:de:fb:d3:82:55:b2:da:e8:83:12:c2:15:1d:7c: 2c:a4:df:fc:96:f9:b9:61:ae:df:07:33:10:bd:30: 0a:f7:d8:4f:1c:b2:df:8b:b2:58:0c:85:3e:91:f9: ab:e0:89:37:e8:be:ea:08:f4:bf:c1:ee:ec:ba:a7: 13:38:a2:09:70:99:9c:82:7e:d5:1c:c1:2b:0f:d6: b4:11:b4:36:95:78:e5:2f:b1:b8:bd:b6:89:1d:79: 5f:9a:d3:71:60:8b:40:40:29:64:b2:38:c1:dd:61: a8:20:cc:5a:6e:a9:4e:24:66:d7:eb:89:2d:e6:0e: 6a:26:73:63:59:88:65:11:61:df:64:0f:9e:bd:d0: 5d:95:15:36:46:f1:d1:a2:74:d4:e8:9e:b4:77:b7: cb:15:e5:46:74:e2:e8:10:f6:79:db:28:fb:ae:67: c8:9a:5d:15:fc:a4:2c:02:56:0f:19:9f:e4:5b:a2: af:f9:8c:f0:d1:8f:89:87:6a:18:7c:c0:41:9e:0a: 5e:38:8d:3b:52:a9:a5:e4:57:aa:a3:af:bd:04:91: 2b:6c:fe:23:88:05:fe:28:f5:e9:f7:6d:f9:a9:6c: db:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CA:55:46:3C:03:79:0E:26:7F:54:B1:03:1F:5F:04:37:43:96:A4 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a5:24:31:43:ff:0c:3b:05:1e:32:1e:f9:80:3b:c9:ef:c8: 26:a3:ae:83:b6:a4:2c:59:35:f9:cf:e4:41:0b:70:f2:c6:55: 66:74:a7:57:b8:c7:ff:40:76:9e:c7:08:23:da:50:3d:fa:cb: b5:39:79:d8:15:55:4f:0f:39:42:e6:12:0d:81:ac:89:af:75: 0c:06:ac:64:3c:ab:ee:57:0c:da:e4:0b:85:1c:eb:cf:ba:00: b2:25:29:de:15:fb:95:e1:94:85:4a:72:d4:25:ca:56:61:c3: 05:a7:43:c1:ad:ca:8e:8c:8b:9b:a7:68:ac:ed:dd:42:e1:18: e6:f0:87:78:fe:47:f1:2b:84:62:59:12:78:6c:f6:89:59:5b: bb:0c:2d:40:3a:52:f6:88:f3:9d:68:05:4f:49:da:16:12:76: 28:18:b8:f9:07:3e:0c:fd:69:18:58:d0:7a:ac:a1:3d:fb:f2: 76:19:cc:ca:48:13:4b:f7:f2:67:55:ed:08:f7:75:1e:78:a6: f2:92:a0:ff:76:ac:49:dc:04:b9:a7:26:df:93:41:a4:5a:c5: 42:0e:f9:1d:34:fd:c8:77:af:15:21:f2:f8:58:fd:47:a7:d4: 6f:46:82:b9:f8:a4:10:1c:43:49:0f:fb:27:91:e9:bb:d4:3a: a3:3d:7d:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjUxMTA0MjAzNjM1WhcNMjUxMTExMjAzNjM1WjAYMRYwFAYD VQQDEw02OTBhNjNkNC1mZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvw9Tli2QKrKruaXC1p9Jdyi17gDdCIiXVXiyyLY3vvTglWy2uiDEsIVHXws pN/8lvm5Ya7fBzMQvTAK99hPHLLfi7JYDIU+kfmr4Ik36L7qCPS/we7suqcTOKIJ cJmcgn7VHMErD9a0EbQ2lXjlL7G4vbaJHXlfmtNxYItAQClksjjB3WGoIMxabqlO JGbX64kt5g5qJnNjWYhlEWHfZA+evdBdlRU2RvHRonTU6J60d7fLFeVGdOLoEPZ5 2yj7rmfIml0V/KQsAlYPGZ/kW6Kv+Yzw0Y+Jh2oYfMBBngpeOI07Uqml5Feqo6+9 BJErbP4jiAX+KPXp9235qWzb8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbKVUY8 A3kOJn9UsQMfXwQ3Q5akMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBApSQxQ/8MOwUeMh75gDvJ78gmo66DtqQsWTX5z+RBC3DyxlVmdKdX uMf/QHaexwgj2lA9+su1OXnYFVVPDzlC5hINgayJr3UMBqxkPKvuVwza5AuFHOvP ugCyJSneFfuV4ZSFSnLUJcpWYcMFp0PBrcqOjIubp2is7d1C4Rjm8Id4/kfxK4Ri WRJ4bPaJWVu7DC1AOlL2iPOdaAVPSdoWEnYoGLj5Bz4M/WkYWNB6rKE9+/J2GczK SBNL9/JnVe0I93UeeKbykqD/dqxJ3AS5pybfk0GkWsVCDvkdNP3Id68VIfL4WP1H p9RvRoK5+KQQHENJD/snkem71DqjPX1i -----END CERTIFICATE-----Generated at Tue Nov 4 23:14:38 2025 by rpki-client