$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: j3n+wPW3t60fmCt/jEx3WGf2J0HDr18eELSwnOrdx3w= Subject key identifier: 94:6E:04:D4:26:8A:BA:5D:69:5E:D6:A4:8C:FD:80:D0:2C:C7:26:95 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A3F Signing time: Sun 02 Nov 2025 19:41:10 +0000 Manifest this update: Sun 02 Nov 2025 19:41:09 +0000 Manifest next update: Sun 09 Nov 2025 19:41:09 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: sqajwxYbM/EUYI9ettjam+HSfiysPxLkMHtlFrv8Ec8=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2634 (0xa4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Nov 2 19:41:09 2025 GMT Not After : Nov 9 19:41:09 2025 GMT Subject: CN=6907b3d5-7fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:6c:9c:90:71:01:4c:34:f3:78:9e:e6:41:f4: 9a:6c:e0:9b:2f:ae:31:c3:c1:dd:78:ca:f2:5b:09: bd:2c:94:c8:c2:93:43:b9:ff:7b:5e:6a:76:15:1d: 86:88:26:cf:93:77:22:e8:5a:8c:9e:91:3e:1e:d6: 2b:e4:7f:87:7d:76:99:6a:77:ee:1a:5f:4e:02:14: 7b:91:5c:f0:bc:93:ca:9b:48:00:70:6a:bf:bb:d2: 7c:e8:a0:5d:80:44:af:9b:74:82:65:63:93:09:ce: df:db:db:4d:be:4a:14:0e:ef:1c:04:30:37:af:cb: 64:f8:b2:4f:18:24:ed:90:c6:27:46:a4:ed:34:22: ff:da:cb:a9:67:05:60:4d:e8:1c:72:b2:2d:ae:eb: aa:ca:86:5c:81:aa:b8:81:35:64:0e:b0:dc:2c:71: a1:6d:b0:f7:ad:cd:7d:6f:41:60:31:53:2d:7d:7c: ee:ea:81:9e:35:68:95:57:de:7c:21:5d:76:69:68: 63:6b:b6:43:10:85:31:13:43:a4:d8:42:94:4d:17: af:f6:01:51:b7:f0:3c:d0:7c:73:7e:b1:0a:30:c7: 15:87:8a:7f:51:05:20:5c:2f:de:05:1f:18:83:d2: 51:89:a4:15:cc:a0:e3:04:21:27:5e:bf:d8:a1:e4: 68:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:6E:04:D4:26:8A:BA:5D:69:5E:D6:A4:8C:FD:80:D0:2C:C7:26:95 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:8d:1e:4c:a0:05:9e:25:02:7f:9a:69:26:eb:cb:92:1d:29: 14:3c:dc:67:e2:76:c7:d2:fc:d5:cc:ba:92:b3:11:f8:b8:58: 5d:8f:5c:ae:93:0c:e4:3b:4e:f1:99:93:06:bb:d2:25:cf:25: 9d:a0:e8:21:5f:e9:e9:44:a1:27:b4:b6:67:77:f3:db:f7:f0: f9:6a:87:5f:db:7f:9d:50:ce:25:17:18:28:30:92:d7:4b:1c: 6a:45:1d:4b:90:d7:aa:21:22:e0:19:9c:d0:00:ec:a2:18:76: 5f:05:89:f6:4f:e8:04:2f:c8:44:c1:ce:62:05:09:6f:65:c2: 02:50:91:d5:75:c4:77:4e:bc:b6:09:f0:ed:60:ee:0b:6c:38: 2b:e8:44:32:4b:97:85:b3:77:90:a4:de:94:e3:9c:6c:40:81: 1c:47:d5:96:d7:c7:e0:98:64:4a:34:31:06:b3:26:60:ce:63: c9:a8:08:d8:09:b3:df:3d:64:00:17:f3:0a:11:11:68:54:58: 2e:54:04:17:85:8a:00:56:fc:42:c9:dd:56:59:fc:d5:db:d2: 9e:29:73:c8:1e:67:7b:59:4c:eb:da:73:84:c4:82:4d:03:1d: 6d:10:cd:30:b9:53:6a:0e:3f:88:66:57:4b:6e:bf:52:20:e2: ec:3a:e6:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUxMTAyMTk0MTA5WhcNMjUxMTA5MTk0MTA5WjAYMRYwFAYD VQQDEw02OTA3YjNkNS03ZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+myckHEBTDTzeJ7mQfSabOCbL64xw8HdeMryWwm9LJTIwpNDuf97Xmp2FR2G iCbPk3ci6FqMnpE+HtYr5H+HfXaZanfuGl9OAhR7kVzwvJPKm0gAcGq/u9J86KBd gESvm3SCZWOTCc7f29tNvkoUDu8cBDA3r8tk+LJPGCTtkMYnRqTtNCL/2supZwVg TegccrItruuqyoZcgaq4gTVkDrDcLHGhbbD3rc19b0FgMVMtfXzu6oGeNWiVV958 IV12aWhja7ZDEIUxE0Ok2EKUTRev9gFRt/A80HxzfrEKMMcVh4p/UQUgXC/eBR8Y g9JRiaQVzKDjBCEnXr/YoeRoRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRuBNQm irpdaV7WpIz9gNAsxyaVMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGjR5MoAWeJQJ/mmkm68uSHSkUPNxn4nbH0vzVzLqSsxH4uFhdj1yu kwzkO07xmZMGu9IlzyWdoOghX+npRKEntLZnd/Pb9/D5aodf23+dUM4lFxgoMJLX SxxqRR1LkNeqISLgGZzQAOyiGHZfBYn2T+gEL8hEwc5iBQlvZcICUJHVdcR3Try2 CfDtYO4LbDgr6EQyS5eFs3eQpN6U45xsQIEcR9WW18fgmGRKNDEGsyZgzmPJqAjY CbPfPWQAF/MKERFoVFguVAQXhYoAVvxCyd1WWfzV29KeKXPIHmd7WUzr2nOExIJN Ax1tEM0wuVNqDj+IZldLbr9SIOLsOuaN -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:41 2025 by rpki-client