$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: NJ1m6DO3G4DWIdOe1t8/b/4jr4Sc2uasQQsWbSnI6A8= Subject key identifier: DB:94:1C:19:39:5E:63:76:B7:A4:C4:9E:B2:D0:DB:D6:9E:6E:E6:1F Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 04C3 Signing time: Sun 19 Oct 2025 01:40:09 +0000 Manifest this update: Sun 19 Oct 2025 01:40:08 +0000 Manifest next update: Sun 26 Oct 2025 01:40:08 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: WkrwkCi8y6cFbvsT3AyFZ3QggPviUEaCScuXfavaaqk=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: Ib+CF/sk+KvnPvMxoim8MHqeWZYKc+NyST1cJiaAhsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E, serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: Oct 19 01:40:08 2025 GMT Not After : Oct 26 01:40:08 2025 GMT Subject: CN=68f44179-3f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9f:3e:3f:af:70:9a:7f:1b:a4:43:0d:6b:ff: a7:21:89:d0:ec:cd:d2:eb:bd:1a:2e:2d:6e:e4:6d: 25:cc:5b:e4:56:97:82:d0:63:5b:d0:3b:91:f1:aa: 71:08:0f:3f:7c:40:f5:e7:3a:f1:1c:ed:8d:66:ae: a2:31:71:ef:ec:39:43:61:06:fb:89:50:5b:89:6d: e4:79:72:28:ef:2b:b5:14:4e:85:f7:6e:ec:1e:d0: 32:6f:02:be:a6:fd:98:6b:17:8b:41:ca:39:18:96: 07:20:a8:02:01:7c:20:fa:97:9c:3b:68:8b:b1:fb: 12:7d:56:20:11:78:20:4c:5c:41:fd:1b:2c:2c:57: e3:c4:2b:aa:54:e8:e8:60:86:6c:3f:00:39:7a:0d: ea:de:3b:47:1c:3a:9c:b8:3e:49:51:58:89:2e:7f: 2c:27:f0:5e:a6:63:45:1d:2a:04:69:c2:a9:f7:a6: 77:c9:c7:37:12:bc:85:0b:2d:9b:9b:b1:e1:bd:54: 06:a4:90:3b:c2:b8:16:46:78:4d:03:66:32:d2:99: 1c:95:29:90:ba:31:9c:8c:56:71:dd:1b:e1:a3:33: 87:6b:11:7e:1f:46:e9:56:3b:cc:52:3d:f3:cb:a1: 15:5a:7e:3c:3a:5a:7a:6a:6c:90:72:b8:01:16:d1: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:94:1C:19:39:5E:63:76:B7:A4:C4:9E:B2:D0:DB:D6:9E:6E:E6:1F X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:89:5a:21:db:58:18:4f:d0:5f:16:92:20:2d:53:41:50:b7: 43:a7:83:62:4d:79:5d:63:ff:10:e7:2f:4d:db:d2:f2:50:62: 55:ea:cd:67:f7:7d:cd:a9:b2:24:2f:6c:2b:9e:e6:44:29:bd: a3:05:ba:74:4c:8d:27:b8:63:b3:6f:b4:03:8b:25:1a:b7:b9: f6:e2:93:1f:d9:a8:aa:19:11:8d:16:42:38:f5:37:1e:2b:b4: e7:0c:b2:e3:1c:6e:6a:00:30:d5:e6:c3:27:a6:10:15:7c:80: 40:5c:07:71:84:76:74:0e:a4:7e:e8:40:48:7b:ce:b5:fc:64: 8c:51:74:be:1a:6b:48:0a:e7:0c:54:40:01:5c:25:0b:40:9d: b8:91:41:fc:70:13:9a:09:40:8f:58:82:8a:c8:0c:8f:df:9b: 1c:dd:6d:9c:24:89:11:49:b4:a2:c0:3b:3a:ef:a8:8e:01:34: e2:8e:3e:32:c1:82:47:0f:7b:b8:33:73:6b:46:d7:6b:92:b5: 12:89:db:6b:cd:86:a1:3b:f7:15:d5:ab:94:98:21:de:56:f4: 19:fc:23:19:ef:10:06:7a:0d:b8:11:52:83:4e:34:0b:02:47: be:a6:b1:5d:78:74:4d:02:da:3c:90:76:31:29:e6:f9:13:1a: 2b:19:0f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjUxMDE5MDE0MDA4WhcNMjUxMDI2MDE0MDA4WjAYMRYwFAYD VQQDEw02OGY0NDE3OS0zZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ8+P69wmn8bpEMNa/+nIYnQ7M3S670aLi1u5G0lzFvkVpeC0GNb0DuR8apx CA8/fED15zrxHO2NZq6iMXHv7DlDYQb7iVBbiW3keXIo7yu1FE6F927sHtAybwK+ pv2YaxeLQco5GJYHIKgCAXwg+pecO2iLsfsSfVYgEXggTFxB/RssLFfjxCuqVOjo YIZsPwA5eg3q3jtHHDqcuD5JUViJLn8sJ/BepmNFHSoEacKp96Z3ycc3EryFCy2b m7HhvVQGpJA7wrgWRnhNA2Yy0pkclSmQujGcjFZx3RvhozOHaxF+H0bpVjvMUj3z y6EVWn48Olp6amyQcrgBFtFsuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuUHBk5 XmN2t6TEnrLQ29aebuYfMB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4iVoh21gYT9BfFpIgLVNBULdDp4NiTXldY/8Q5y9N29LyUGJV6s1n 933NqbIkL2wrnuZEKb2jBbp0TI0nuGOzb7QDiyUat7n24pMf2aiqGRGNFkI49Tce K7TnDLLjHG5qADDV5sMnphAVfIBAXAdxhHZ0DqR+6EBIe861/GSMUXS+GmtICucM VEABXCULQJ24kUH8cBOaCUCPWIKKyAyP35sc3W2cJIkRSbSiwDs676iOATTijj4y wYJHD3u4M3NrRtdrkrUSidtrzYahO/cV1auUmCHeVvQZ/CMZ7xAGeg24EVKDTjQL Ake+prFdeHRNAto8kHYxKeb5ExorGQ/H -----END CERTIFICATE-----Generated at Mon Oct 20 08:26:20 2025 by rpki-client