$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: 0qq2XCDk0EeUqPmSpjze5rBAlgpVL2HFAE9BLSTAAfU= Subject key identifier: 92:A3:6C:C6:C3:1F:60:74:8D:75:DB:24:07:78:C9:D6:06:6A:2F:DD Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 1C Signing time: Sun 19 Oct 2025 11:27:51 +0000 Manifest this update: Sun 19 Oct 2025 11:27:50 +0000 Manifest next update: Sun 26 Oct 2025 11:27:50 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: HNywSfRw8zU0QZdjJni5El/2ZZlSZ2YQ4H3QF61dArE=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) 3: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Oct 19 11:27:50 2025 GMT Not After : Oct 26 11:27:50 2025 GMT Subject: CN=68f4cb37-e82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8d:f7:af:4f:82:0e:fa:b8:8c:56:54:50:eb: 77:24:17:79:60:c6:27:06:c6:cc:20:49:0c:e9:07: 8b:28:95:dc:9f:25:81:0f:19:6c:be:10:82:61:f3: 32:24:c9:61:e9:54:80:b5:d3:b8:9e:9b:24:cf:59: 27:0e:e4:56:07:4b:86:a0:55:b8:64:ed:5d:d6:f5: 62:fc:b0:89:c1:9a:33:fd:81:5d:d3:1c:8f:42:bd: f3:67:89:f9:eb:99:d7:f4:4c:76:88:52:52:65:72: b2:3b:26:3c:b6:a8:bf:58:fc:58:88:38:73:e1:f4: 19:ee:a9:18:82:83:23:e1:6d:90:ac:af:7e:a4:0b: c4:98:d6:ce:58:cd:f0:2f:41:8a:9c:af:4a:5c:90: 12:08:fb:c5:7a:de:d7:a6:be:19:8b:68:54:93:b2: 6d:b1:13:02:0b:b5:6a:e2:ac:d8:ef:ae:5f:3e:4b: 6b:53:92:81:df:33:b7:c8:d6:24:85:50:68:97:81: 87:19:e3:69:f5:4e:bf:61:c1:0b:5f:a6:56:05:81: 68:4d:c9:f7:b2:69:75:6a:9e:8f:f8:44:8f:3c:d7: 02:98:9d:8e:a2:d5:ce:cf:ae:31:d4:c7:8b:e9:e1: c3:c6:1e:fc:f8:db:13:21:f5:d8:55:67:b8:cb:4a: 45:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A3:6C:C6:C3:1F:60:74:8D:75:DB:24:07:78:C9:D6:06:6A:2F:DD X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a0:d6:74:5b:5c:7e:f6:bd:46:2a:57:35:47:6b:bd:b9:8f: 35:0e:ab:52:50:40:f0:64:30:53:85:ac:ce:be:5e:3d:f0:d5: 88:d8:2a:a4:20:e2:f9:a4:7c:fc:3e:bb:b2:79:26:65:15:71: 8c:61:8a:f2:42:d9:4e:cc:2e:66:d9:7c:7d:8e:5e:e3:e0:5d: d3:ee:a1:45:03:a8:40:76:1f:a8:0f:25:0d:e8:7e:00:3a:55: 8a:06:d6:29:6b:7e:b5:df:a0:34:6c:a3:6f:6f:19:5f:fa:1f: 4e:ee:93:9c:c3:72:21:e9:ec:24:55:70:39:e0:1f:f7:14:f4: f6:ba:87:7f:c7:41:f3:01:b3:41:cc:c8:f3:66:97:f4:46:7c: ce:f6:53:61:6b:13:ba:8f:27:20:79:b8:47:91:77:83:16:48: f2:09:f8:d6:18:93:02:d8:a0:5a:be:27:e7:9d:90:7a:87:4d: 67:d6:07:a4:00:be:9d:6a:7b:2c:1e:f6:1f:6e:2a:78:5b:57: f9:e8:43:20:aa:15:b7:08:fb:1d:74:91:d5:7f:08:73:c7:b7: aa:f2:77:ae:1a:f1:13:b4:e4:66:16:94:09:fd:f1:21:bf:21: e8:56:c2:ae:89:cc:32:5d:e8:a3:2a:01:71:1a:50:bb:a4:41: 6d:3e:fb:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTEwMTkxMTI3NTBaFw0yNTEwMjYxMTI3NTBaMBgxFjAUBgNV BAMTDTY4ZjRjYjM3LWU4MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPjfevT4IO+riMVlRQ63ckF3lgxicGxswgSQzpB4soldyfJYEPGWy+EIJh8zIk yWHpVIC107iemyTPWScO5FYHS4agVbhk7V3W9WL8sInBmjP9gV3THI9CvfNnifnr mdf0THaIUlJlcrI7Jjy2qL9Y/FiIOHPh9BnuqRiCgyPhbZCsr36kC8SY1s5YzfAv QYqcr0pckBII+8V63temvhmLaFSTsm2xEwILtWrirNjvrl8+S2tTkoHfM7fI1iSF UGiXgYcZ42n1Tr9hwQtfplYFgWhNyfeyaXVqno/4RI881wKYnY6i1c7PrjHUx4vp 4cPGHvz42xMh9dhVZ7jLSkU9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkqNsxsMf YHSNddskB3jJ1gZqL90wHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ6g1nRbXH72vUYqVzVHa725jzUOq1JQQPBkMFOFrM6+Xj3w1YjYKqQg 4vmkfPw+u7J5JmUVcYxhivJC2U7MLmbZfH2OXuPgXdPuoUUDqEB2H6gPJQ3ofgA6 VYoG1ilrfrXfoDRso29vGV/6H07uk5zDciHp7CRVcDngH/cU9Pa6h3/HQfMBs0HM yPNml/RGfM72U2FrE7qPJyB5uEeRd4MWSPIJ+NYYkwLYoFq+J+edkHqHTWfWB6QA vp1qeywe9h9uKnhbV/noQyCqFbcI+x10kdV/CHPHt6ryd64a8RO05GYWlAn98SG/ IehWwq6JzDJd6KMqAXEaULukQW0++3k= -----END CERTIFICATE-----Generated at Mon Oct 20 08:31:22 2025 by rpki-client