$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: rj1sLbKPranLjQXh01uy3svdxzkUyP7ARmU6k0Ha7e0= Subject key identifier: BC:DB:63:53:5D:6A:64:27:EB:AD:BD:3E:03:C8:4E:1F:15:F9:54:C6 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 03E1 Signing time: Sun 19 Oct 2025 02:37:27 +0000 Manifest this update: Sun 19 Oct 2025 02:37:27 +0000 Manifest next update: Sun 26 Oct 2025 02:37:27 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: YIAmvEa6bTSEwsUQsCXNGW15Gwq3i1Kx/utnrSHdGI8=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Oct 19 02:37:27 2025 GMT Not After : Oct 26 02:37:27 2025 GMT Subject: CN=68f44ee7-7cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:be:d8:0f:dc:7d:18:d3:f3:24:48:9d:51: cb:da:dc:aa:dc:26:7d:ee:63:ea:16:6c:74:e5:61: c5:79:c0:54:12:ee:25:a2:67:25:da:bf:14:37:ff: dd:1c:94:bc:ff:cb:9a:9c:86:93:75:2a:d5:fc:64: 91:88:91:95:39:47:38:b6:62:91:b3:b6:8f:70:67: 2f:d9:af:f9:a8:8f:31:7c:bb:1f:0c:f1:0b:2c:01: af:2b:48:f4:6b:34:ca:70:0a:25:a6:bc:de:c9:ca: 26:43:27:1b:94:51:46:57:f3:7d:21:93:7c:a9:e4: de:03:1d:76:cc:aa:60:68:80:61:54:3c:8c:06:5f: 6d:cc:04:23:00:35:d1:ac:2e:ad:e2:6c:77:06:63: a3:d2:af:fd:c8:59:ff:f0:bc:22:56:de:54:28:bd: 2c:26:8d:9d:cf:27:04:2a:a9:0d:5b:31:db:b9:17: ae:8b:41:3e:5a:7e:68:e3:b4:68:9b:d2:4b:d2:98: 8d:8f:8f:61:c6:07:4f:99:dd:d9:60:8e:5b:07:ff: 07:7a:03:91:6d:67:90:b6:81:ce:02:c9:8c:3d:bf: 9b:dc:68:9b:38:96:75:af:38:fe:10:40:2f:d2:7f: b3:2d:85:d0:ff:6c:c8:dd:f0:2f:7b:8b:d7:ef:4b: ee:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DB:63:53:5D:6A:64:27:EB:AD:BD:3E:03:C8:4E:1F:15:F9:54:C6 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:45:2b:6b:6f:37:09:7a:76:1a:07:d7:6f:0b:9a:fa:dd:a1: 59:3e:bd:22:86:62:3a:89:56:51:43:5e:e8:2e:46:cf:f3:68: eb:25:1c:1a:dd:27:11:24:8a:30:29:c2:24:46:f8:af:02:3f: f9:c3:7e:ed:de:3d:7d:48:08:7a:01:c7:d1:86:a1:65:a2:91: f8:29:20:74:4a:3a:f2:3c:a2:67:f5:5c:8f:f7:d8:70:9e:b9: 2d:63:ed:b3:bd:fa:bd:47:06:88:34:8f:79:6b:45:5d:f3:f8: bd:37:45:b7:76:8a:c2:82:62:fe:40:38:c0:e1:0a:dc:aa:d2: bb:f0:c9:eb:d1:56:da:4c:5a:ed:e3:31:66:5f:87:db:f2:03: bb:ad:a8:34:0d:81:89:95:be:7d:26:92:f5:9c:b6:13:60:25: 22:70:27:10:2c:92:b4:47:de:32:25:97:02:e9:76:2d:9a:ca: e2:51:5f:1d:0d:9b:24:01:a5:96:49:d1:8d:33:26:1f:a9:f2: 9c:09:ba:d5:55:c9:5f:4a:0d:83:41:73:f4:a2:67:bc:68:53: b3:f3:8e:cc:2f:43:6e:d4:d8:fa:e9:93:e1:f9:5e:dd:f3:77: 67:5b:76:54:11:af:dc:0d:ac:f6:4c:93:ba:dc:7a:c2:e1:bf: 7d:fc:80:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUxMDE5MDIzNzI3WhcNMjUxMDI2MDIzNzI3WjAYMRYwFAYD VQQDEw02OGY0NGVlNy03Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsti+2A/cfRjT8yRInVHL2tyq3CZ97mPqFmx05WHFecBUEu4lomcl2r8UN//d HJS8/8uanIaTdSrV/GSRiJGVOUc4tmKRs7aPcGcv2a/5qI8xfLsfDPELLAGvK0j0 azTKcAolprzeycomQycblFFGV/N9IZN8qeTeAx12zKpgaIBhVDyMBl9tzAQjADXR rC6t4mx3BmOj0q/9yFn/8LwiVt5UKL0sJo2dzycEKqkNWzHbuReui0E+Wn5o47Ro m9JL0piNj49hxgdPmd3ZYI5bB/8HegORbWeQtoHOAsmMPb+b3GibOJZ1rzj+EEAv 0n+zLYXQ/2zI3fAve4vX70vuywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzbY1Nd amQn6629PgPITh8V+VTGMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCURStrbzcJenYaB9dvC5r63aFZPr0ihmI6iVZRQ17oLkbP82jrJRwa 3ScRJIowKcIkRvivAj/5w37t3j19SAh6AcfRhqFlopH4KSB0SjryPKJn9VyP99hw nrktY+2zvfq9RwaINI95a0Vd8/i9N0W3dorCgmL+QDjA4QrcqtK78Mnr0VbaTFrt 4zFmX4fb8gO7rag0DYGJlb59JpL1nLYTYCUicCcQLJK0R94yJZcC6XYtmsriUV8d DZskAaWWSdGNMyYfqfKcCbrVVclfSg2DQXP0ome8aFOz847ML0Nu1Nj66ZPh+V7d 83dnW3ZUEa/cDaz2TJO63HrC4b99/ID1 -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:14 2025 by rpki-client