$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: 8kR+Vr0G6nBDguV93ssd9oPv22bfW//qmSOZlXcX3ns= Subject key identifier: 72:61:90:DB:CE:14:12:67:5F:37:67:0E:D2:0A:A3:F2:1E:BA:BD:42 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0C13 Signing time: Tue 04 Nov 2025 18:51:58 +0000 Manifest this update: Tue 04 Nov 2025 18:51:58 +0000 Manifest next update: Tue 11 Nov 2025 18:51:58 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: Ez82cvXk/G9JnniH1WEe7cNJ2od4XZbxs1dK0oB2zFw=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Nov 4 18:51:58 2025 GMT Not After : Nov 11 18:51:58 2025 GMT Subject: CN=690a4b4e-3b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6d:20:3c:6b:dd:81:cf:49:01:47:54:ee:54: eb:af:e2:14:fa:a9:ab:63:45:76:40:14:85:e1:46: 67:01:a1:0f:1c:6b:68:2c:d6:70:4b:8e:d1:cb:fb: 90:2e:bf:6b:43:2f:02:83:95:71:a6:f0:2d:9c:ae: 6a:79:47:a4:f1:0b:8f:db:fc:0a:e4:38:2a:a4:d8: e5:ae:b9:e8:64:28:10:60:19:92:4b:87:04:f1:39: 17:b6:5b:da:14:2a:c2:49:b8:6e:56:ae:85:12:5c: 64:bd:37:27:f2:93:1b:a7:89:b8:b2:6d:07:c1:cd: 2a:5e:94:e8:ee:cc:5b:f5:b4:c7:a6:3a:9a:dd:60: 51:ac:52:d5:5d:5e:44:04:2d:d6:5c:0a:67:af:03: 9d:5e:eb:ef:a9:0f:d3:79:33:8f:0f:0e:ec:5e:23: 80:4d:08:65:5e:32:de:1f:14:4f:87:b8:ff:04:f6: 00:8e:0d:ea:e9:69:39:bf:fb:f1:b7:46:f7:d8:71: fa:c0:36:8d:0f:fc:bc:db:73:f5:bb:7a:34:f2:d5: a5:c3:8f:c4:f3:f9:4d:8f:06:1e:a4:a7:b5:22:a6: 52:54:47:00:42:69:fd:86:88:c6:fa:47:02:67:fb: 3f:9e:4c:64:9f:04:3c:2c:4b:ef:58:fb:11:54:ce: 18:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:61:90:DB:CE:14:12:67:5F:37:67:0E:D2:0A:A3:F2:1E:BA:BD:42 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:04:99:2c:7a:a2:a6:bd:e1:b1:c1:92:f2:e1:ff:dc:89:11: a3:87:95:01:21:a5:b3:f1:ca:42:11:3c:9f:09:d0:5d:72:35: 24:a3:8e:09:2f:2c:1b:99:ed:7d:7b:8a:cf:84:40:02:aa:52: 97:b3:31:d7:9c:60:13:47:b8:dd:77:c7:7c:9b:9b:8e:c2:13: a1:dc:eb:82:d4:0c:16:e8:c7:ae:72:31:39:77:71:b7:5a:4f: 54:fb:2d:31:79:5c:d3:48:b0:76:c7:36:67:82:43:29:da:d8: 8b:7f:90:20:a3:c5:7b:5d:89:66:90:5c:4f:33:6e:64:45:aa: 73:9d:b3:5b:49:b2:b2:ef:ed:87:79:a7:b0:12:f5:69:6e:76: 63:4b:36:bf:5d:0d:b4:1f:08:ff:74:73:33:9d:5b:c1:f5:fc: 38:51:92:5e:d6:7a:61:7c:a9:bf:46:d7:cb:51:cf:94:2b:4d: ad:14:69:19:91:cd:ff:9d:55:66:6d:1e:d6:df:7f:ac:43:45: e8:56:f8:b6:3c:cd:ad:25:fc:13:20:30:3d:e4:6a:dd:19:1d: c7:51:9c:b0:40:20:89:06:ce:29:f1:27:70:87:8b:bc:a6:93: 22:ea:55:ca:1a:33:f6:d0:e9:78:b0:69:f7:d5:b4:a3:ce:f6: 2e:91:12:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUxMTA0MTg1MTU4WhcNMjUxMTExMTg1MTU4WjAYMRYwFAYD VQQDEw02OTBhNGI0ZS0zYjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx20gPGvdgc9JAUdU7lTrr+IU+qmrY0V2QBSF4UZnAaEPHGtoLNZwS47Ry/uQ Lr9rQy8Cg5VxpvAtnK5qeUek8QuP2/wK5DgqpNjlrrnoZCgQYBmSS4cE8TkXtlva FCrCSbhuVq6FElxkvTcn8pMbp4m4sm0Hwc0qXpTo7sxb9bTHpjqa3WBRrFLVXV5E BC3WXApnrwOdXuvvqQ/TeTOPDw7sXiOATQhlXjLeHxRPh7j/BPYAjg3q6Wk5v/vx t0b32HH6wDaND/y823P1u3o08tWlw4/E8/lNjwYepKe1IqZSVEcAQmn9hojG+kcC Z/s/nkxknwQ8LEvvWPsRVM4YswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJhkNvO FBJnXzdnDtIKo/Ieur1CMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiBJkseqKmveGxwZLy4f/ciRGjh5UBIaWz8cpCETyfCdBdcjUko44J Lywbme19e4rPhEACqlKXszHXnGATR7jdd8d8m5uOwhOh3OuC1AwW6MeucjE5d3G3 Wk9U+y0xeVzTSLB2xzZngkMp2tiLf5Ago8V7XYlmkFxPM25kRapznbNbSbKy7+2H eaewEvVpbnZjSza/XQ20Hwj/dHMznVvB9fw4UZJe1nphfKm/RtfLUc+UK02tFGkZ kc3/nVVmbR7W33+sQ0XoVvi2PM2tJfwTIDA95GrdGR3HUZywQCCJBs4p8Sdwh4u8 ppMi6lXKGjP20Ol4sGn31bSjzvYukRLG -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:02 2025 by rpki-client