$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: aD+D60VKqgwejpfBEthfKVHUPX9N8sEsShZSvEJKIxs= Subject key identifier: 28:2A:FF:BD:4E:9A:60:28:63:09:F3:76:3D:AB:E4:53:EF:06:F0:D3 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A33 Signing time: Sat 18 Oct 2025 20:43:52 +0000 Manifest this update: Sat 18 Oct 2025 20:43:51 +0000 Manifest next update: Sat 25 Oct 2025 20:43:51 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: d0Oe8y4NCPvK9zzC+CMQitL+jbzcU4Ihvk1JXFjNPfU=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2624 (0xa40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Oct 18 20:43:51 2025 GMT Not After : Oct 25 20:43:51 2025 GMT Subject: CN=68f3fc07-0361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0f:4b:f2:60:73:bd:79:21:55:e1:cc:9b:d0: b9:fd:14:94:0a:4c:30:69:19:a6:4f:b9:e1:55:f8: 48:50:bf:ae:ee:71:d3:67:ab:70:2b:a5:a6:01:90: 9a:b8:70:6d:00:fb:99:ed:1c:fc:61:85:a6:46:03: 8b:07:f9:55:4b:03:a6:08:f2:2a:71:87:0e:fc:38: 73:51:2c:2c:ec:b3:96:60:82:00:c5:07:66:d5:2b: ff:3b:00:92:4c:c2:25:ff:10:84:cd:78:fd:1d:09: 5e:7a:80:4b:03:4a:de:12:bb:97:f6:8e:92:6c:fb: 26:b2:77:06:4b:89:55:3e:72:9c:31:1e:32:be:c8: e8:b0:60:f9:59:2e:f4:dd:67:c9:8b:4e:8e:f4:85: 91:48:04:eb:5e:c6:9d:3f:a8:e7:1b:38:dc:24:01: 14:8c:d5:d3:a7:c7:2f:4a:95:10:3d:3b:39:32:39: d3:1f:7e:0f:d2:4b:70:77:6d:33:a5:81:b4:e3:17: f2:10:68:33:42:82:10:aa:67:4d:62:5f:c3:c5:92: a3:40:25:fe:9e:01:44:cb:d0:8b:5d:68:f9:e0:e6: a3:b5:b1:2c:85:81:31:de:04:b2:47:bf:76:13:0b: 72:c3:69:ad:f4:86:ff:b3:2b:92:3d:ea:a7:ed:6c: dd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:2A:FF:BD:4E:9A:60:28:63:09:F3:76:3D:AB:E4:53:EF:06:F0:D3 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:13:9a:55:77:22:f9:32:82:bc:cd:0b:4f:85:64:81:bc:5a: e6:6a:41:73:7c:b8:ee:b1:82:fa:dd:3a:8a:49:03:25:4e:94: 6d:59:7b:de:17:1f:b0:a9:60:1c:ae:e3:1f:00:b6:5c:7a:0a: 42:4b:ef:df:9e:ea:ca:64:54:aa:a2:c5:b0:30:48:65:58:64: cf:d5:68:30:ed:f8:6d:9b:29:28:87:f2:f5:d5:0f:b9:22:ee: c2:61:a1:d9:d5:8f:7c:83:a8:cc:c8:b2:e3:7b:75:3a:e5:8a: c3:0b:cb:b2:fa:b5:15:75:ce:46:03:d5:1f:8e:e6:9a:a2:c9: c3:46:4f:a1:0a:d3:9c:0c:75:55:0d:73:04:76:1c:03:eb:84: 64:ee:c6:b2:da:14:78:4f:4f:a6:9d:9d:09:d0:91:a9:b5:f8: 5b:04:7d:2e:8b:0b:c2:b0:b8:dd:2c:ec:f8:36:0b:9c:45:1d: 45:48:96:18:3d:d4:ce:80:36:52:90:42:c2:6e:cb:b4:9b:ad: 34:fd:a0:07:d9:01:5f:68:bd:9d:3a:92:8a:cd:b6:e9:0c:b2: b5:1e:ef:77:91:73:7c:ca:ef:8e:4b:ab:76:b2:56:dc:28:91: 3d:23:c0:50:10:d8:64:1e:d7:b7:e9:60:b7:8f:db:9b:1b:8d: 11:52:27:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMDE4MjA0MzUxWhcNMjUxMDI1MjA0MzUxWjAYMRYwFAYD VQQDEw02OGYzZmMwNy0wMzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxw9L8mBzvXkhVeHMm9C5/RSUCkwwaRmmT7nhVfhIUL+u7nHTZ6twK6WmAZCa uHBtAPuZ7Rz8YYWmRgOLB/lVSwOmCPIqcYcO/DhzUSws7LOWYIIAxQdm1Sv/OwCS TMIl/xCEzXj9HQleeoBLA0reEruX9o6SbPsmsncGS4lVPnKcMR4yvsjosGD5WS70 3WfJi06O9IWRSATrXsadP6jnGzjcJAEUjNXTp8cvSpUQPTs5MjnTH34P0ktwd20z pYG04xfyEGgzQoIQqmdNYl/DxZKjQCX+ngFEy9CLXWj54OajtbEshYEx3gSyR792 Ewtyw2mt9Ib/syuSPeqn7WzdyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgq/71O mmAoYwnzdj2r5FPvBvDTMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOE5pVdyL5MoK8zQtPhWSBvFrmakFzfLjusYL63TqKSQMlTpRtWXve Fx+wqWAcruMfALZcegpCS+/fnurKZFSqosWwMEhlWGTP1Wgw7fhtmykoh/L11Q+5 Iu7CYaHZ1Y98g6jMyLLje3U65YrDC8uy+rUVdc5GA9UfjuaaosnDRk+hCtOcDHVV DXMEdhwD64Rk7say2hR4T0+mnZ0J0JGptfhbBH0uiwvCsLjdLOz4NgucRR1FSJYY PdTOgDZSkELCbsu0m600/aAH2QFfaL2dOpKKzbbpDLK1Hu93kXN8yu+OS6t2slbc KJE9I8BQENhkHte36WC3j9ubG40RUifR -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:21 2025 by rpki-client