$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: PI981OfMECV8FOjPNRMB2EUudD0NZTUcNwYfIohfXt4= Subject key identifier: DB:E0:8D:A3:D0:05:19:49:8F:BC:83:C5:D8:6D:C6:F8:CE:DC:FC:67 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 8C Signing time: Sun 19 Oct 2025 09:48:54 +0000 Manifest this update: Sun 19 Oct 2025 09:48:53 +0000 Manifest next update: Sun 26 Oct 2025 09:48:53 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: 5/6txLDaStil74BJPYQnpaiLuQAL9AVISrhY1tIrvOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Oct 19 09:48:53 2025 GMT Not After : Oct 26 09:48:53 2025 GMT Subject: CN=68f4b406-07ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5a:5c:71:f0:aa:9d:1e:98:8e:fc:4c:bd:0f: c0:d6:b5:23:22:d8:32:af:6d:c5:4f:b8:95:93:f3: 75:0f:4b:e5:aa:41:0c:40:7c:b1:6e:23:54:70:b4: 3e:d3:3a:f7:26:fa:45:42:e5:2b:98:16:03:20:b0: f8:e3:20:5d:17:3e:bf:11:74:98:2c:bc:b8:9c:fa: d7:31:7f:5b:9b:fe:0b:88:0b:3d:7f:60:7d:99:43: 9e:16:28:4a:ef:ba:a1:a9:52:74:e5:97:d4:66:7d: dd:7b:0b:63:0a:49:3c:29:f3:b4:89:6c:2c:92:7c: 6a:a6:09:64:74:e9:17:69:0c:ac:18:d4:5e:e2:37: d1:ff:5d:0c:b7:cd:99:0c:c2:19:03:53:22:37:b2: 4d:a1:44:1c:b8:ed:9f:0b:33:0b:d0:6d:43:35:ed: c6:a6:c7:1c:86:43:0a:a6:fd:a8:cc:f1:ed:0c:58: 72:88:fa:0f:d5:34:c7:09:89:fe:49:13:70:d4:22: 3b:1d:11:7e:be:95:14:9a:e1:87:8e:5b:9c:a4:d6: 31:73:3a:74:2f:a7:7a:51:7d:0b:68:75:bd:68:8f: 74:b7:2c:24:33:38:43:c9:a5:59:a3:d3:5a:4a:0e: 3c:0d:28:a2:e8:1a:6a:3c:ed:15:90:70:7d:ba:dd: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E0:8D:A3:D0:05:19:49:8F:BC:83:C5:D8:6D:C6:F8:CE:DC:FC:67 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:36:2b:f7:04:3d:d9:2e:b8:9e:5a:5d:75:c9:d1:84:e7:22: dd:b8:b9:31:d2:49:83:4d:0d:cb:92:a3:05:e1:0c:78:2f:84: 9b:1a:7d:9b:3e:26:bd:4b:3a:1b:3c:d8:af:bc:ac:51:4a:08: 05:26:63:00:a7:53:69:6a:1e:8f:0b:d8:f3:ad:38:2e:eb:9a: b2:0b:6c:c6:74:73:b9:f8:6e:07:24:d9:87:03:54:f0:52:6e: 4a:35:8c:60:6e:8b:b4:ff:6c:f2:d7:c4:fd:41:99:79:a9:c2: 3e:10:ba:e3:01:4a:f4:ce:d8:19:f3:57:8c:d1:e6:7a:07:77: f6:6a:e3:b0:f9:99:b5:69:f0:21:ce:a1:33:fc:09:ff:96:94: ee:b0:b1:1e:af:df:d7:4f:55:c9:42:84:af:c1:95:d0:0a:9b: 7d:1f:a9:3b:b2:7e:a4:b0:12:fb:01:4a:8d:16:77:57:10:89: 5e:d0:d7:7b:52:ad:9f:0d:c2:bb:9c:b9:af:92:c2:fc:88:c2: c3:43:67:d1:0e:44:87:64:4b:be:dc:71:aa:e7:be:05:e4:a0: 32:2c:e2:fc:09:eb:8d:a0:c0:1e:67:61:cf:9f:b0:02:08:ff: e4:23:8f:1b:15:d1:b2:72:d4:b0:63:18:22:ca:f5:85:e1:af: c9:a9:51:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDk4N0EyNDAzNUMxNTM5MTcwMjBCNjUxREI5OEYwOTFG MEFBQTMyMjcwHhcNMjUxMDE5MDk0ODUzWhcNMjUxMDI2MDk0ODUzWjAYMRYwFAYD VQQDEw02OGY0YjQwNi0wN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1pccfCqnR6YjvxMvQ/A1rUjItgyr23FT7iVk/N1D0vlqkEMQHyxbiNUcLQ+ 0zr3JvpFQuUrmBYDILD44yBdFz6/EXSYLLy4nPrXMX9bm/4LiAs9f2B9mUOeFihK 77qhqVJ05ZfUZn3dewtjCkk8KfO0iWwsknxqpglkdOkXaQysGNRe4jfR/10Mt82Z DMIZA1MiN7JNoUQcuO2fCzML0G1DNe3GpscchkMKpv2ozPHtDFhyiPoP1TTHCYn+ SRNw1CI7HRF+vpUUmuGHjlucpNYxczp0L6d6UX0LaHW9aI90tywkMzhDyaVZo9Na Sg48DSii6BpqPO0VkHB9ut17CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvgjaPQ BRlJj7yDxdhtxvjO3PxnMB8GA1UdIwQYMBaAFJh6JANcFTkXAgtlHbmPCR8KqjIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BRkRFRkU1NEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9SY0NDMlVkdVk4Skh3cXFN aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BRkRFRkU1NEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9tSG9rQTF3Vk9S Y0NDMlVkdVk4Skh3cXFNaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiNiv3BD3ZLrieWl11ydGE5yLduLkx0kmDTQ3LkqMF4Qx4L4SbGn2b Pia9SzobPNivvKxRSggFJmMAp1Npah6PC9jzrTgu65qyC2zGdHO5+G4HJNmHA1Tw Um5KNYxgbou0/2zy18T9QZl5qcI+ELrjAUr0ztgZ81eM0eZ6B3f2auOw+Zm1afAh zqEz/An/lpTusLEer9/XT1XJQoSvwZXQCpt9H6k7sn6ksBL7AUqNFndXEIle0Nd7 Uq2fDcK7nLmvksL8iMLDQ2fRDkSHZEu+3HGq574F5KAyLOL8CeuNoMAeZ2HPn7AC CP/kI48bFdGyctSwYxgiyvWF4a/JqVFC -----END CERTIFICATE-----Generated at Sun Oct 19 23:21:53 2025 by rpki-client