$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: B9bLzEHnbfvsMES5HthAcTa3plt+Lyz4rlXY6w1NmMA= Subject key identifier: 39:54:16:14:80:B8:47:B6:3E:EA:F5:10:11:13:09:38:3B:B6:E9:1E Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: 99 Signing time: Mon 03 Nov 2025 06:23:20 +0000 Manifest this update: Mon 03 Nov 2025 06:23:20 +0000 Manifest next update: Mon 10 Nov 2025 06:23:20 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: 3Wny6v3uzJIovYoZ8pSi/ApJw3NtJCGviDXae2F//JU=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Nov 3 06:23:20 2025 GMT Not After : Nov 10 06:23:20 2025 GMT Subject: CN=69084a58-4e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:53:8b:78:2c:b4:3e:f3:a3:5e:7a:c7:3c:7e: 9c:4c:8e:10:e3:37:c6:48:b7:69:0f:f8:5c:fc:c9: 03:02:ae:30:b2:b8:a3:f4:1a:74:65:27:bd:1d:b8: 51:3e:da:b2:d9:0c:01:c8:0f:5c:4c:b4:fb:28:41: bb:89:49:4d:06:f6:0b:9b:1f:85:12:44:46:07:ea: 5e:e1:89:57:ce:22:51:1b:1c:7b:a1:8e:45:ee:8e: 20:d0:f7:69:1b:eb:48:7c:dd:bd:51:b2:f8:41:2a: 2a:42:0d:7d:84:44:29:05:3b:6a:66:ad:86:ac:51: 63:87:af:eb:5c:86:a4:25:e8:ce:de:23:32:17:4c: e6:3b:eb:3b:62:b0:9d:8a:2f:a1:5e:9d:a0:94:f7: 03:a2:14:90:1c:c0:c9:48:36:0c:41:ff:43:48:f6: e7:c4:f8:73:79:0c:6b:df:26:3e:78:dd:49:67:b3: 08:44:67:98:62:f8:05:e0:4f:d6:68:ed:27:02:98: 6e:1e:92:69:58:78:ad:95:a5:b0:6e:b4:40:9d:c3: 22:df:87:17:f9:01:6e:ef:96:59:56:28:83:b1:70: c6:87:bf:67:90:d0:7f:21:2c:cc:59:e5:77:93:a1: 08:3b:a8:dd:55:99:8c:3a:4d:13:6e:cf:0d:75:bd: 03:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:54:16:14:80:B8:47:B6:3E:EA:F5:10:11:13:09:38:3B:B6:E9:1E X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:14:9a:76:c8:af:62:2a:f8:75:6a:84:63:37:3e:55:59:77: ea:3c:54:02:40:07:f2:aa:15:d7:c2:cc:a6:66:4c:79:ed:63: 40:04:5f:32:73:ad:4c:8e:c1:0a:d3:29:5c:94:53:4a:78:4c: b2:91:3d:05:49:85:55:fd:28:93:1f:b2:23:d1:5b:8d:29:7a: 4b:57:8b:c0:5b:db:f6:f4:98:f1:fb:12:31:19:90:96:54:43: c4:27:97:4e:7a:66:e7:05:be:25:9e:82:1e:cf:c4:78:13:db: 23:28:1f:45:fc:a6:6d:5f:3f:3c:00:42:45:00:72:7c:f3:95: be:45:d6:36:2e:2e:da:29:bb:55:f7:67:35:72:f9:4e:63:89: a4:0e:51:11:18:ef:ad:3c:11:51:10:d0:58:93:7d:47:4b:1e: dc:62:6a:07:14:2e:ce:ff:5b:7f:ed:4e:cc:00:56:dd:da:a9: ed:f9:31:dd:b2:6b:d9:a6:ec:ff:49:a9:8f:18:40:3d:b6:5e: c0:c0:69:3f:33:c0:a3:46:de:f8:ef:dc:94:25:4f:2b:db:2f: 96:c8:de:24:ba:c6:be:33:45:ef:50:70:f7:b4:cb:0a:10:17: 07:4c:75:3e:f8:f0:4f:71:4c:9d:c1:69:6d:1f:6b:47:85:3a: fa:43:e1:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVCQ0MxMTAvBgNVBAUTKDFFNDhFRkU1M0U2MkVEMjA0QkE3QTY5NDM4NENCQUM5 MjQ2Nzk0QTcwHhcNMjUxMTAzMDYyMzIwWhcNMjUxMTEwMDYyMzIwWjAYMRYwFAYD VQQDEw02OTA4NGE1OC00ZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlOLeCy0PvOjXnrHPH6cTI4Q4zfGSLdpD/hc/MkDAq4wsrij9Bp0ZSe9HbhR Ptqy2QwByA9cTLT7KEG7iUlNBvYLmx+FEkRGB+pe4YlXziJRGxx7oY5F7o4g0Pdp G+tIfN29UbL4QSoqQg19hEQpBTtqZq2GrFFjh6/rXIakJejO3iMyF0zmO+s7YrCd ii+hXp2glPcDohSQHMDJSDYMQf9DSPbnxPhzeQxr3yY+eN1JZ7MIRGeYYvgF4E/W aO0nAphuHpJpWHitlaWwbrRAncMi34cX+QFu75ZZViiDsXDGh79nkNB/ISzMWeV3 k6EIO6jdVZmMOk0Tbs8Ndb0DkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlUFhSA uEe2Pur1EBETCTg7tukeMB8GA1UdIwQYMBaAFB5I7+U+Yu0gS6emlDhMuskkZ5Sn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUJDQy9COTU4OEJBQ0NF NzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdTQkxwNmFVT0V5NnlTUm5s S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUJDQy9COTU4OEJBQ0NFNzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdT QkxwNmFVT0V5NnlTUm5sS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhFJp2yK9iKvh1aoRjNz5VWXfqPFQCQAfyqhXXwsymZkx57WNABF8y c61MjsEK0ylclFNKeEyykT0FSYVV/SiTH7Ij0VuNKXpLV4vAW9v29Jjx+xIxGZCW VEPEJ5dOembnBb4lnoIez8R4E9sjKB9F/KZtXz88AEJFAHJ885W+RdY2Li7aKbtV 92c1cvlOY4mkDlERGO+tPBFRENBYk31HSx7cYmoHFC7O/1t/7U7MAFbd2qnt+THd smvZpuz/SamPGEA9tl7AwGk/M8CjRt7479yUJU8r2y+WyN4kusa+M0XvUHD3tMsK EBcHTHU++PBPcUydwWltH2tHhTr6Q+FW -----END CERTIFICATE-----Generated at Tue Nov 4 02:16:40 2025 by rpki-client