$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft File: HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json) Hash identifier: JCfehJU3BvqR/EsDu69KSWAUjPJ2WRiKHJu30jDmmWM= Subject key identifier: 73:53:2B:26:CB:6B:20:6A:EF:5D:5C:8E:31:37:32:40:3D:68:54:B8 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft Manifest number: 9E Signing time: Mon 03 Nov 2025 06:24:13 +0000 Manifest this update: Mon 03 Nov 2025 06:24:12 +0000 Manifest next update: Mon 10 Nov 2025 06:24:12 +0000 Files and hashes: 1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: T8t8EcM2/Xm+/Fa5hqibxrblZ725c6Ju8g6MgmUDoxU=) 2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=) 3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Nov 3 06:24:12 2025 GMT Not After : Nov 10 06:24:12 2025 GMT Subject: CN=69084a8d-9017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:77:78:9e:83:6b:04:c3:8a:b6:1c:f8:4a:d6: 83:61:97:f7:04:48:53:2f:2b:11:07:29:39:53:e1: f0:6c:93:9d:91:7e:5b:60:81:50:64:71:97:6f:83: 89:79:1f:88:57:47:ea:21:21:0d:ca:53:cd:16:74: b3:89:23:04:45:e6:7e:8b:77:38:4d:cf:52:b2:e0: 91:e3:5f:0b:7f:c8:49:80:a9:fe:b7:c0:3c:4e:71: ac:6c:7b:3e:e7:c9:64:16:da:5d:68:6d:3f:24:00: 12:27:58:4e:58:30:bd:99:ea:86:c5:85:0e:cd:d5: 3e:80:91:b8:9b:10:11:30:b9:61:ba:5a:61:fc:6a: 8e:33:08:67:3f:0d:48:df:7d:2f:fb:6a:6b:d5:e9: ff:38:25:8a:2d:e3:6b:f2:b4:01:34:ee:ef:fc:5b: 6d:19:e7:9c:f8:f3:22:46:1a:33:d8:7b:b4:5f:62: 42:b2:3e:ad:e9:80:1f:d5:c9:3a:19:cb:95:c2:ee: dc:da:bf:7d:83:51:5f:ba:9c:64:39:44:d6:90:46: 7e:35:e4:04:74:c9:12:25:e1:21:92:46:4a:af:5c: cb:01:d6:f3:f5:3b:f1:18:c4:f6:b0:ef:d5:ba:f9: 08:a4:b8:f1:58:3a:a2:7b:97:d0:54:58:27:f7:c7: d5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:53:2B:26:CB:6B:20:6A:EF:5D:5C:8E:31:37:32:40:3D:68:54:B8 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:fb:ae:9a:31:04:a1:59:b8:b2:7b:69:d1:8a:fd:3c:2f:86: 5d:1f:f5:4a:ce:ab:13:cd:e5:01:87:46:46:5a:e4:04:1a:fd: d3:37:55:a4:37:75:16:64:d9:41:7a:63:04:80:47:48:7a:56: a8:83:d4:b1:4b:fc:32:0c:65:02:f2:84:9c:58:ea:66:00:91: 30:87:41:23:15:45:33:ba:74:cc:0a:df:21:e3:8e:bb:cb:a0: dd:77:ad:dd:fe:48:4d:b8:69:75:a7:0e:f6:9a:9a:c7:55:7a: a9:b3:f1:e4:18:01:fb:51:4a:00:7c:a7:fc:d1:a1:58:3e:4c: cc:94:4e:a7:93:14:29:6d:89:c8:47:0c:c7:23:c0:63:e7:d1: 11:2b:aa:ec:48:0b:52:ca:cc:92:6f:13:3f:6c:a6:e7:8c:25: 55:99:41:f4:76:1a:cb:d6:0b:3b:64:d7:c3:eb:26:ac:6e:8a: d5:b6:ab:9b:43:23:2b:48:35:e4:17:06:4f:08:64:5b:cd:3e: b8:83:a6:86:af:1c:7f:27:e2:cf:01:88:de:61:8a:d1:47:dd: f6:b6:6a:25:70:8a:43:40:cc:72:34:f4:31:c1:47:79:e8:1c: a8:45:43:dc:0a:97:bf:c3:4f:40:30:82:a8:00:42:92:3e:81: 15:b6:a1:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1NzgxMTAvBgNVBAUTKDFEM0RBRUY3RDI3ODgzNzNFRERGQ0IxQUQ1QzRDMjM1 NkM1N0FERUQwHhcNMjUxMTAzMDYyNDEyWhcNMjUxMTEwMDYyNDEyWjAYMRYwFAYD VQQDEw02OTA4NGE4ZC05MDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Hd4noNrBMOKthz4StaDYZf3BEhTLysRByk5U+HwbJOdkX5bYIFQZHGXb4OJ eR+IV0fqISENylPNFnSziSMEReZ+i3c4Tc9SsuCR418Lf8hJgKn+t8A8TnGsbHs+ 58lkFtpdaG0/JAASJ1hOWDC9meqGxYUOzdU+gJG4mxARMLlhulph/GqOMwhnPw1I 330v+2pr1en/OCWKLeNr8rQBNO7v/FttGeec+PMiRhoz2Hu0X2JCsj6t6YAf1ck6 GcuVwu7c2r99g1FfupxkOUTWkEZ+NeQEdMkSJeEhkkZKr1zLAdbz9TvxGMT2sO/V uvkIpLjxWDqie5fQVFgn98fV3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNTKybL ayBq711cjjE3MkA9aFS4MB8GA1UdIwQYMBaAFB09rvfSeINz7d/LGtXEwjVsV63t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDU3OC8wMDNBNzlEQUNG M0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGczUHQzOHNhMWNUQ05XeFhy ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDU3OC8wMDNBNzlEQUNGM0QxMUVGOTEzODBFMTFDNEY5QUUwMi9IVDJ1OTlKNGcz UHQzOHNhMWNUQ05XeFhyZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK+66aMQShWbiye2nRiv08L4ZdH/VKzqsTzeUBh0ZGWuQEGv3TN1Wk N3UWZNlBemMEgEdIelaog9SxS/wyDGUC8oScWOpmAJEwh0EjFUUzunTMCt8h4467 y6Ddd63d/khNuGl1pw72mprHVXqps/HkGAH7UUoAfKf80aFYPkzMlE6nkxQpbYnI RwzHI8Bj59ERK6rsSAtSysySbxM/bKbnjCVVmUH0dhrL1gs7ZNfD6yasborVtqub QyMrSDXkFwZPCGRbzT64g6aGrxx/J+LPAYjeYYrRR932tmolcIpDQMxyNPQxwUd5 6ByoRUPcCpe/w09AMIKoAEKSPoEVtqFd -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:52 2025 by rpki-client