$ rpki-client -vvf rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft File: HIAVCsljCYTTjMb1nD7MdRsl8-c.mft (raw, json) Hash identifier: 7sdEnG/q7xF3JxzPPblxPz/2s9zaOjlmehaCT+2nLLA= Subject key identifier: EA:01:7E:85:E6:A9:2D:87:D1:68:0A:95:A9:09:BC:FA:3C:04:02:7F Authority key identifier: 1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 Certificate issuer: /CN=A915A549/serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft Manifest number: 91 Signing time: Sun 19 Oct 2025 09:46:36 +0000 Manifest this update: Sun 19 Oct 2025 09:46:35 +0000 Manifest next update: Sun 26 Oct 2025 09:46:35 +0000 Files and hashes: 1: HIAVCsljCYTTjMb1nD7MdRsl8-c.crl (hash: vQkyGuAQvGCFFZZRqjh3cux6AFSLAF1qYmy54FJHLSc=) 2: E9B51C0AD24411EFBD747915C4F9AE02.roa (hash: h7LkbeKD0rtGSmQTm/4/z1tqrdfuxl9pJq7z33t/Gys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A549, serialNumber=1C80150AC9630984D38CC6F59C3ECC751B25F3E7 Validity Not Before: Oct 19 09:46:35 2025 GMT Not After : Oct 26 09:46:35 2025 GMT Subject: CN=68f4b37c-83f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:84:6d:d8:10:b5:8c:ac:b3:bc:e4:aa:45: d2:5f:cf:93:85:60:0b:8e:78:b3:5b:d8:e2:c5:bf: fc:49:ac:d1:d9:27:ba:fc:5d:96:aa:e3:bc:62:de: 55:ef:a5:a2:18:b1:24:bd:70:d7:96:fb:d1:38:6c: 2d:4c:94:17:6a:69:80:72:ab:bb:14:6f:91:29:23: 09:25:e4:88:85:e1:e6:c2:59:55:0e:78:42:37:c3: 36:2c:9b:b0:bd:a1:99:3f:ce:ab:db:1d:8c:29:df: 30:24:d8:c5:58:94:d8:0a:01:78:94:85:9b:7d:88: 21:ff:fc:ba:c0:fa:77:09:5d:e6:7e:d0:d9:b5:aa: 43:fe:46:28:c4:8e:01:36:da:d6:dd:c9:f4:7d:2c: ea:be:61:62:a5:48:88:2a:af:b9:3e:fb:28:ac:06: 37:25:42:66:ff:cc:17:91:d4:26:f9:a9:41:66:2f: 43:66:c7:03:60:98:88:8d:5b:4c:38:b0:be:30:ab: 61:cc:1c:74:d7:90:10:0e:6a:5d:e6:31:68:f0:27: 02:21:e8:54:91:53:82:55:86:5c:92:70:ea:9d:c8: 0d:3c:83:54:85:8b:f7:cf:dc:2d:88:2c:8d:d0:88: 21:02:88:4e:94:80:91:b4:a0:c2:e4:f5:0f:59:78: 77:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:01:7E:85:E6:A9:2D:87:D1:68:0A:95:A9:09:BC:FA:3C:04:02:7F X509v3 Authority Key Identifier: keyid:1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:8c:e6:59:43:0c:c6:58:0a:d9:04:ef:d8:5f:34:a7:27:b8: de:a5:85:c3:a7:52:43:9a:36:7e:26:9e:97:51:03:a7:d5:e7: 32:6a:55:8f:1a:d8:70:c6:10:16:e3:f3:e8:5a:54:14:cc:51: 05:b7:31:6b:8a:b9:49:ed:bd:e5:bd:c3:92:ad:b7:0b:02:25: 76:8a:f4:d3:2d:22:fc:ca:45:0d:30:3e:83:16:f3:02:4c:7d: 25:cb:94:da:07:c4:11:69:d7:c3:55:a6:67:f9:c6:ba:9b:93: d6:c7:b7:e1:b0:07:b3:44:26:ec:51:73:b8:a4:0f:11:3e:5b: 70:b0:77:92:f1:de:61:5f:3c:f1:1d:4d:98:2d:db:41:40:9d: 55:77:83:f8:99:93:b0:6d:86:e3:76:58:df:6e:6e:39:06:17: c5:d6:0b:c9:6d:1a:56:30:26:11:87:94:ea:a8:19:cc:05:29: d3:10:0f:d5:ab:48:58:de:a7:51:be:53:9c:e4:ac:d8:53:c2: 63:08:1b:4a:15:c9:42:87:81:9c:97:7b:19:94:eb:fc:6c:59: 3c:90:b6:71:d1:de:a5:06:c8:27:30:c1:91:6c:a5:b1:de:35: ab:ec:2b:f8:b5:2b:af:31:ab:4e:10:c8:0f:24:b7:ba:89:38: f3:0f:d4:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1NDkxMTAvBgNVBAUTKDFDODAxNTBBQzk2MzA5ODREMzhDQzZGNTlDM0VDQzc1 MUIyNUYzRTcwHhcNMjUxMDE5MDk0NjM1WhcNMjUxMDI2MDk0NjM1WjAYMRYwFAYD VQQDEw02OGY0YjM3Yy04M2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08WEbdgQtYyss7zkqkXSX8+ThWALjnizW9jixb/8SazR2Se6/F2WquO8Yt5V 76WiGLEkvXDXlvvROGwtTJQXammAcqu7FG+RKSMJJeSIheHmwllVDnhCN8M2LJuw vaGZP86r2x2MKd8wJNjFWJTYCgF4lIWbfYgh//y6wPp3CV3mftDZtapD/kYoxI4B NtrW3cn0fSzqvmFipUiIKq+5PvsorAY3JUJm/8wXkdQm+alBZi9DZscDYJiIjVtM OLC+MKthzBx015AQDmpd5jFo8CcCIehUkVOCVYZcknDqncgNPINUhYv3z9wtiCyN 0IghAohOlICRtKDC5PUPWXh3FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoBfoXm qS2H0WgKlakJvPo8BAJ/MB8GA1UdIwQYMBaAFByAFQrJYwmE04zG9Zw+zHUbJfPn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTU0OS80RDI1QkNBQUQy NDQxMUVGOUU2NTRCMTRDNEY5QUUwMi9ISUFWQ3NsakNZVFRqTWIxbkQ3TWRSc2w4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hJQVZDc2xqQ1lUVGpNYjFuRDdNZFJzbDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTU0OS80RDI1QkNBQUQyNDQxMUVGOUU2NTRCMTRDNEY5QUUwMi9ISUFWQ3NsakNZ VFRqTWIxbkQ3TWRSc2w4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1jOZZQwzGWArZBO/YXzSnJ7jepYXDp1JDmjZ+Jp6XUQOn1ecyalWP GthwxhAW4/PoWlQUzFEFtzFrirlJ7b3lvcOSrbcLAiV2ivTTLSL8ykUNMD6DFvMC TH0ly5TaB8QRadfDVaZn+ca6m5PWx7fhsAezRCbsUXO4pA8RPltwsHeS8d5hXzzx HU2YLdtBQJ1Vd4P4mZOwbYbjdljfbm45BhfF1gvJbRpWMCYRh5TqqBnMBSnTEA/V q0hY3qdRvlOc5KzYU8JjCBtKFclCh4Gcl3sZlOv8bFk8kLZx0d6lBsgnMMGRbKWx 3jWr7Cv4tSuvMatOEMgPJLe6iTjzD9T5 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:45 2025 by rpki-client