$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: dAts9WTRKP9RccUMwnIAaiKebvXCo6iCjsp2eNI933w= Subject key identifier: 0A:3C:13:27:C8:FB:49:6B:57:79:9B:F2:E8:E7:A6:25:68:04:93:64 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 352B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 34FE Signing time: Sat 18 Oct 2025 14:36:55 +0000 Manifest this update: Sat 18 Oct 2025 14:36:54 +0000 Manifest next update: Sat 25 Oct 2025 14:36:54 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: o4pLgxg14OjC6+Z0MfLHK/nCkNI2BlG/qxdSerzumZM=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: 3fyzJnDSAItu3J0CBVQ2xspPY/AKlFaYNYl3dja6jIc=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: L9XUW5EKcX3N5kGAQjlCulKdYkLxOgguoKHEktNkp/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13611 (0x352b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Oct 18 14:36:54 2025 GMT Not After : Oct 25 14:36:54 2025 GMT Subject: CN=68f3a606-2e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2b:b0:5f:4d:47:71:d5:1e:95:f2:fb:2c:16: 1c:7a:46:a0:16:52:51:ff:75:c0:f8:75:42:32:c3: 8e:10:a2:ff:7c:0a:29:25:6f:74:02:02:36:01:a1: 84:e1:ef:e0:88:b6:99:42:ff:45:a6:6c:1e:06:f2: a2:1c:54:85:8e:9c:2e:bc:04:ce:29:79:47:8b:5c: 1e:3e:60:a2:e3:f9:c4:ff:7b:04:fd:29:43:08:e1: 49:dd:bc:44:4f:a4:59:60:d9:b2:c4:ba:fd:73:84: 43:24:7a:87:d8:20:3f:e1:18:c2:f1:94:43:bb:70: 4f:94:57:44:7f:1b:c1:12:33:50:0a:24:95:fa:ed: b5:4a:5f:4c:aa:14:06:16:88:97:03:44:b3:17:81: cf:74:30:af:2a:72:55:4c:2b:fd:c9:5a:24:19:f0: c8:02:8f:3b:43:af:4e:23:88:da:9e:2a:df:b7:68: 50:39:7c:c9:81:5a:4b:c9:66:87:a5:a5:9a:ee:06: 3a:1a:b8:d0:8a:b8:9f:9f:d7:db:51:37:c8:2a:86: e9:e6:2a:76:47:98:0a:ec:ba:e8:61:3d:83:2b:b2: dc:2d:8b:d0:9a:ec:da:24:11:5d:fb:64:8c:0b:49: ce:e4:8a:99:14:5e:4b:3a:cb:02:33:38:05:dd:d8: 05:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3C:13:27:C8:FB:49:6B:57:79:9B:F2:E8:E7:A6:25:68:04:93:64 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b4:51:80:a3:bf:3a:31:db:86:37:c1:e4:05:5f:55:4e:cc: 31:72:8f:98:77:70:a5:9c:ce:96:b6:95:47:8c:6d:a2:fe:e0: ba:5d:5c:a0:4a:d8:10:39:bd:ff:c5:5c:71:8c:5a:9b:a8:6f: 5d:75:03:c6:57:a1:3d:0b:2f:80:af:d5:44:45:f2:04:ff:45: f8:40:c0:71:ed:6d:ba:58:51:06:64:e7:4f:18:6b:21:6a:ed: b7:1a:8d:ff:7c:9b:36:59:7b:bc:d7:ae:f0:21:9f:dd:f8:ea: bc:50:0f:7d:fe:fb:da:6b:fc:08:65:b3:53:77:d8:90:b9:c3: d5:16:89:8c:a7:af:56:a5:4d:4f:12:18:0d:3e:be:8d:ec:21: 38:3e:9f:97:aa:a9:26:2b:76:9d:3a:cc:4d:a1:25:f6:16:34: 94:a2:e4:b3:61:9f:b8:a4:d9:ed:d1:8e:20:46:1b:a4:dc:29: 84:49:8e:ce:13:34:0e:8d:2c:33:f6:00:2d:6e:cb:3c:1b:98: 39:53:7f:ea:05:0b:f9:46:d9:a7:46:17:e4:34:23:e2:16:ad: 32:da:18:53:d5:82:d2:02:fc:b8:ac:fb:3b:b2:20:ee:5c:50: ad:51:63:38:43:fe:f1:34:3f:22:d1:4f:80:4b:d5:38:2e:6a: cb:2b:6a:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjUxMDE4MTQzNjU0WhcNMjUxMDI1MTQzNjU0WjAYMRYwFAYD VQQDEw02OGYzYTYwNi0yZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSuwX01HcdUelfL7LBYcekagFlJR/3XA+HVCMsOOEKL/fAopJW90AgI2AaGE 4e/giLaZQv9FpmweBvKiHFSFjpwuvATOKXlHi1wePmCi4/nE/3sE/SlDCOFJ3bxE T6RZYNmyxLr9c4RDJHqH2CA/4RjC8ZRDu3BPlFdEfxvBEjNQCiSV+u21Sl9MqhQG FoiXA0SzF4HPdDCvKnJVTCv9yVokGfDIAo87Q69OI4janirft2hQOXzJgVpLyWaH paWa7gY6GrjQirifn9fbUTfIKobp5ip2R5gK7LroYT2DK7LcLYvQmuzaJBFd+2SM C0nO5IqZFF5LOssCMzgF3dgF3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo8EyfI +0lrV3mb8ujnpiVoBJNkMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4tFGAo786MduGN8HkBV9VTswxco+Yd3ClnM6WtpVHjG2i/uC6XVyg StgQOb3/xVxxjFqbqG9ddQPGV6E9Cy+Ar9VERfIE/0X4QMBx7W26WFEGZOdPGGsh au23Go3/fJs2WXu8167wIZ/d+Oq8UA99/vvaa/wIZbNTd9iQucPVFomMp69WpU1P EhgNPr6N7CE4Pp+XqqkmK3adOsxNoSX2FjSUouSzYZ+4pNnt0Y4gRhuk3CmESY7O EzQOjSwz9gAtbss8G5g5U3/qBQv5RtmnRhfkNCPiFq0y2hhT1YLSAvy4rPs7siDu XFCtUWM4Q/7xND8i0U+AS9U4LmrLK2pD -----END CERTIFICATE-----Generated at Mon Oct 20 08:58:23 2025 by rpki-client