$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: M8VVbGzU0RhnEc/+Op3fWl+NCzgLNYHkGpQUEINipj8= Subject key identifier: 18:D3:1F:07:72:E8:3C:57:77:D2:BA:1A:B4:CF:24:66:FF:04:BB:A8 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 92 Signing time: Sun 19 Oct 2025 09:41:54 +0000 Manifest this update: Sun 19 Oct 2025 09:41:53 +0000 Manifest next update: Sun 26 Oct 2025 09:41:53 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: PvbG/J0f3s6O9/hiXK/uqbJRohe6NzaeViexcByMSWo=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Oct 19 09:41:53 2025 GMT Not After : Oct 26 09:41:53 2025 GMT Subject: CN=68f4b261-f29c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:05:40:b5:fe:ab:5e:48:9b:09:29:4f:b3:13: 17:b6:b1:9f:c7:04:27:c1:ad:04:08:e5:de:44:52: e5:5b:03:e3:e2:21:44:34:43:f2:4a:d8:f0:27:e2: 38:44:d7:8c:e5:12:41:d5:ec:6d:a0:26:09:83:ea: 6c:51:8a:9b:1a:b8:ba:6d:c2:99:69:79:6b:f8:92: 96:96:de:18:16:5f:68:4e:2f:5a:32:ee:f4:52:dc: 4e:e8:43:05:65:5f:e5:b7:b2:fe:41:a9:30:c3:09: f9:6f:e1:36:78:b5:ac:12:6d:62:d7:61:04:ef:2f: 04:5a:a6:d5:b4:7e:da:3b:56:40:f5:d0:04:f3:30: e2:67:9d:94:4e:bc:36:75:a0:e2:23:69:83:32:fc: fa:f2:6b:35:17:35:9c:18:c2:fa:4f:fe:a7:03:d3: 05:64:84:f8:12:16:e8:76:86:23:32:bc:c9:c0:e3: a3:58:77:ed:ae:87:7b:b7:82:9d:e5:91:94:06:61: 11:91:14:d8:b7:1b:a3:e7:ed:ed:15:09:8a:26:0d: 72:97:98:09:1b:74:bd:50:d7:e2:1d:cc:8b:26:33: f6:8c:82:00:68:a8:28:bd:89:eb:28:6c:d8:cc:7e: be:2d:f4:5f:bd:28:95:4a:a1:31:e0:10:68:6d:12: 1f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D3:1F:07:72:E8:3C:57:77:D2:BA:1A:B4:CF:24:66:FF:04:BB:A8 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:05:45:c6:8d:82:9d:83:3c:86:40:67:55:95:c2:06:58:f2: c2:14:2f:e6:f3:b5:97:ca:b8:cc:e0:ee:10:9a:79:00:a7:86: 1d:00:e0:cc:e5:f8:99:3e:ee:35:c5:bf:a4:26:58:4c:00:b2: 3e:61:e5:18:c5:57:9e:ee:a2:57:f2:cd:37:ea:24:a0:93:24: 05:a5:c7:8c:c7:4e:6a:82:7d:0c:2d:4a:8a:39:e0:6d:43:af: 5d:b9:80:21:91:71:97:1a:10:51:e7:0e:5c:01:d5:c3:e8:a0: 20:c0:c3:a7:fe:e0:0f:d6:3f:9e:f7:bf:cf:d2:10:9e:66:2d: 35:60:48:4d:cf:3a:d2:94:fb:9a:37:ad:0e:a1:2c:e3:74:f6: 12:bc:91:4e:a6:81:f5:c3:cc:c6:fc:49:2c:1b:19:63:34:95: 3b:b9:e2:74:d0:c7:f4:7e:6d:9b:c5:18:e8:52:6f:44:16:7e: d2:5c:7b:0f:80:b2:98:39:7c:66:24:48:1d:91:70:a1:9d:33: e3:3e:18:3d:60:dd:fb:49:f6:4f:91:64:bf:ed:04:11:55:2f: 6c:18:59:5c:5c:d9:8d:79:f0:19:dc:f9:4a:e0:3f:f1:bd:1f: 24:b4:97:93:13:bc:e0:76:29:c4:17:7f:d9:fa:88:99:c5:4d: a7:ca:e9:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKDg1MjA0NjkxNTE4NUY4NTVFMDlFQjM0NDc4ODEzOTQz MEU3NDBGMDcwHhcNMjUxMDE5MDk0MTUzWhcNMjUxMDI2MDk0MTUzWjAYMRYwFAYD VQQDEw02OGY0YjI2MS1mMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwVAtf6rXkibCSlPsxMXtrGfxwQnwa0ECOXeRFLlWwPj4iFENEPyStjwJ+I4 RNeM5RJB1extoCYJg+psUYqbGri6bcKZaXlr+JKWlt4YFl9oTi9aMu70UtxO6EMF ZV/lt7L+Qakwwwn5b+E2eLWsEm1i12EE7y8EWqbVtH7aO1ZA9dAE8zDiZ52UTrw2 daDiI2mDMvz68ms1FzWcGML6T/6nA9MFZIT4EhbodoYjMrzJwOOjWHftrod7t4Kd 5ZGUBmERkRTYtxuj5+3tFQmKJg1yl5gJG3S9UNfiHcyLJjP2jIIAaKgovYnrKGzY zH6+LfRfvSiVSqEx4BBobRIf1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjTHwdy 6DxXd9K6GrTPJGb/BLuoMB8GA1UdIwQYMBaAFIUgRpFRhfhV4J6zRHiBOUMOdA8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9FNjM1Rjc5NkNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1GWGduck5FZUlFNVF3NTBE d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9FNjM1Rjc5NkNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi9oU0JHa1ZHRi1G WGduck5FZUlFNVF3NTBEd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKBUXGjYKdgzyGQGdVlcIGWPLCFC/m87WXyrjM4O4QmnkAp4YdAODM 5fiZPu41xb+kJlhMALI+YeUYxVee7qJX8s036iSgkyQFpceMx05qgn0MLUqKOeBt Q69duYAhkXGXGhBR5w5cAdXD6KAgwMOn/uAP1j+e97/P0hCeZi01YEhNzzrSlPua N60OoSzjdPYSvJFOpoH1w8zG/EksGxljNJU7ueJ00Mf0fm2bxRjoUm9EFn7SXHsP gLKYOXxmJEgdkXChnTPjPhg9YN37SfZPkWS/7QQRVS9sGFlcXNmNefAZ3PlK4D/x vR8ktJeTE7zgdinEF3/Z+oiZxU2nyumY -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:08 2025 by rpki-client