$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: YVp6GccyO+5wBbn5Ne9/VmRDf03Vq98v2SHujTmO2iI= Subject key identifier: 46:1D:82:EC:08:44:A4:D7:E4:AB:6C:99:A9:94:3C:63:18:94:54:FC Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: A1 Signing time: Sun 19 Oct 2025 09:32:39 +0000 Manifest this update: Sun 19 Oct 2025 09:32:39 +0000 Manifest next update: Sun 26 Oct 2025 09:32:39 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: lLhd0pD1L/jS157BR+xRFWOKpISSaYn1txcVB1WUbLI=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: nKrpei7NHXS/yvzIer9NaLALl/Q2sUCsHstVjHOpR2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Oct 19 09:32:39 2025 GMT Not After : Oct 26 09:32:39 2025 GMT Subject: CN=68f4b037-4981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:58:d2:ce:d9:d1:d5:16:44:ee:7d:93:15: 62:e0:36:c3:78:a5:53:fe:d3:f8:f2:43:03:e4:f5: 58:50:f7:81:64:fb:03:f1:2c:3b:e8:12:5e:33:04: 6a:a3:50:aa:1b:1b:36:ad:e7:07:8a:00:0c:4a:de: 5d:37:3a:ae:b3:ac:95:ba:7e:f6:74:14:85:c2:5b: 58:c0:0c:cb:f9:8c:63:c9:43:2e:ef:1f:2c:fd:8b: b1:b6:ba:5a:86:dd:b7:73:b2:cf:b9:e0:1a:74:f9: fe:0d:34:f5:3a:92:12:1d:d4:5e:ab:1f:9f:f6:66: 6e:55:b4:62:d5:9e:fb:f6:ba:42:30:aa:59:fd:40: 2b:df:5c:f3:29:65:15:bc:ed:c9:dc:f3:84:46:24: 07:c2:89:e7:8a:56:7d:af:3d:42:40:f9:67:d3:e0: 95:63:58:47:88:5e:2f:db:b2:59:2f:1d:37:23:67: 17:8f:57:fb:77:23:b8:ca:d5:c1:03:54:57:20:78: 6f:90:05:3b:a3:bb:54:ba:28:7e:37:94:88:3a:24: 21:2c:37:53:aa:33:0c:04:72:69:90:d6:bd:3c:de: 0c:65:2e:1d:b0:e9:c1:39:c3:fa:af:c7:34:4c:49: 67:f9:5c:e5:4d:b4:25:01:70:48:77:59:a1:a5:03: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1D:82:EC:08:44:A4:D7:E4:AB:6C:99:A9:94:3C:63:18:94:54:FC X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:95:f1:8f:5a:46:7f:3f:6d:6e:17:62:d0:8a:33:e8:92:e3: cc:a7:46:56:bf:3a:a4:75:c4:1c:72:1c:db:15:8a:8c:a2:92: 3d:e4:2a:82:f6:23:39:03:6e:0b:20:68:2b:f2:aa:c9:34:6a: 53:a3:b1:4a:a8:58:23:8e:60:16:c6:a7:0b:a6:5e:a2:92:a5: d1:31:6e:9f:36:dc:f4:ee:53:0a:c2:80:32:f2:fe:a8:47:05: 97:a6:17:cd:e9:11:42:8d:13:21:54:11:48:db:c9:6e:93:4f: e7:7e:8c:f7:65:1e:60:84:6c:4b:15:bb:6a:62:77:af:0e:fc: ba:b2:41:b8:e5:60:ca:6e:85:25:7f:7c:a6:66:b3:c0:27:36: 2a:03:ca:fd:08:82:c1:21:b8:24:94:2e:c6:40:6b:fe:35:71: 3d:da:f2:dc:dc:13:5f:18:d6:62:dc:43:d4:4e:db:0f:2a:90: 00:86:59:96:b1:d5:e4:99:41:80:1f:07:a3:35:9c:00:e7:95: 9d:50:c9:68:55:a4:49:e0:b3:9c:04:45:cf:e2:5e:24:91:ed: 6a:52:8c:36:d3:96:4a:5d:57:74:39:a2:04:19:27:55:dc:79: 5e:66:23:1b:b4:ea:e7:ad:d4:ff:3e:08:4b:bd:46:86:1e:f3: 90:39:2a:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjUxMDE5MDkzMjM5WhcNMjUxMDI2MDkzMjM5WjAYMRYwFAYD VQQDEw02OGY0YjAzNy00OTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhdY0s7Z0dUWRO59kxVi4DbDeKVT/tP48kMD5PVYUPeBZPsD8Sw76BJeMwRq o1CqGxs2recHigAMSt5dNzqus6yVun72dBSFwltYwAzL+YxjyUMu7x8s/Yuxtrpa ht23c7LPueAadPn+DTT1OpISHdReqx+f9mZuVbRi1Z779rpCMKpZ/UAr31zzKWUV vO3J3POERiQHwonnilZ9rz1CQPln0+CVY1hHiF4v27JZLx03I2cXj1f7dyO4ytXB A1RXIHhvkAU7o7tUuih+N5SIOiQhLDdTqjMMBHJpkNa9PN4MZS4dsOnBOcP6r8c0 TEln+VzlTbQlAXBId1mhpQMozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYdguwI RKTX5KtsmamUPGMYlFT8MB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqlfGPWkZ/P21uF2LQijPokuPMp0ZWvzqkdcQcchzbFYqMopI95CqC 9iM5A24LIGgr8qrJNGpTo7FKqFgjjmAWxqcLpl6ikqXRMW6fNtz07lMKwoAy8v6o RwWXphfN6RFCjRMhVBFI28luk0/nfoz3ZR5ghGxLFbtqYnevDvy6skG45WDKboUl f3ymZrPAJzYqA8r9CILBIbgklC7GQGv+NXE92vLc3BNfGNZi3EPUTtsPKpAAhlmW sdXkmUGAHwejNZwA55WdUMloVaRJ4LOcBEXP4l4kke1qUow205ZKXVd0OaIEGSdV 3HleZiMbtOrnrdT/PghLvUaGHvOQOSoo -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:38 2025 by rpki-client