$ rpki-client -vvf rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft File: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft (raw, json) Hash identifier: crVbENub1mFr5TAw3xlU9lfv8OoYEYKBkI5IBI8GwzU= Subject key identifier: 8B:1E:8E:9C:1C:A8:6A:06:A3:6A:96:85:51:4A:F9:96:E5:E1:0A:CA Authority key identifier: 1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB Certificate issuer: /CN=A91B727C/serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Certificate serial: 11D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft Manifest number: 11C1 Signing time: Sat 18 Oct 2025 17:44:04 +0000 Manifest this update: Sat 18 Oct 2025 17:44:03 +0000 Manifest next update: Sat 25 Oct 2025 17:44:03 +0000 Files and hashes: 1: HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl (hash: mvEYGql0qBAJHi4sSyeFRQ4uEUzJaQMAebI7d9vDOOk=) 2: B58038B838FF11EAB8D91529C4F9AE02.roa (hash: IU4SG15xY5pa/IoW3wwDCZ3o/ZxiWKB5Df2NzHDteOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4566 (0x11d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B727C, serialNumber=1D882C8CF2434CC9BBFD79191DC2C6982926E8AB Validity Not Before: Oct 18 17:44:03 2025 GMT Not After : Oct 25 17:44:03 2025 GMT Subject: CN=68f3d1e3-66b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:92:7a:15:a6:d6:4a:67:03:0e:e6:e0:75:7f: 49:1e:d9:2e:4f:9b:27:37:35:58:d4:e8:86:e8:cc: dc:f9:0c:7d:4f:71:59:e5:4b:ca:50:89:9c:58:e3: 30:dd:4c:c2:38:af:8c:d6:7f:d3:a2:3f:33:e4:20: 09:d7:ba:20:ad:39:06:8c:83:59:7e:6b:b7:ef:d9: 63:03:83:96:9e:41:09:79:ad:33:95:0b:bf:29:d8: a9:f0:4c:ef:89:8f:4c:19:c2:74:3c:13:bf:f1:78: a5:f0:fd:30:d3:25:b8:2d:47:03:be:e8:c0:95:8e: ed:9f:0f:63:39:8d:b8:ce:16:56:63:7f:07:09:20: 4e:b6:8a:8b:0e:a4:d9:65:a0:50:8d:34:4d:2c:5e: 7c:d9:8e:72:9b:83:a0:b4:0e:3f:ed:2b:a6:a2:e8: 07:84:e5:f6:b3:80:63:b2:15:14:1d:6b:6b:e5:ba: 52:d3:ba:be:8d:54:3f:6b:cf:e5:f8:ce:86:bd:35: 59:0c:e9:27:44:f3:68:4d:9c:e1:a4:25:09:10:e9: f5:1f:85:02:85:ce:ff:15:88:0f:68:cb:d2:08:d6: 23:7e:15:bd:fe:95:7e:f0:44:4b:b2:52:cf:c2:f4: 8e:0b:9c:63:51:b0:9f:90:a3:cb:f2:1f:db:8e:34: fc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1E:8E:9C:1C:A8:6A:06:A3:6A:96:85:51:4A:F9:96:E5:E1:0A:CA X509v3 Authority Key Identifier: keyid:1D:88:2C:8C:F2:43:4C:C9:BB:FD:79:19:1D:C2:C6:98:29:26:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B727C/9D77C6D4028F11E99D81F640C4F9AE02/HYgsjPJDTMm7_XkZHcLGmCkm6Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:8e:2a:a9:70:7b:0e:b2:89:56:f7:e6:4d:ce:fa:e1:d3:0b: 29:a7:a9:ca:e7:3e:97:db:35:b9:a3:df:76:86:2f:94:b6:d1: 53:fc:81:ac:2d:ab:6e:93:74:17:36:46:92:71:ef:df:8a:47: 08:97:e9:70:df:b2:ad:de:1c:42:d6:08:f0:84:55:6c:55:13: 53:f7:45:35:be:99:6e:e2:71:de:e0:a6:9a:65:b6:99:09:15: 75:fb:7b:db:5b:dd:b9:60:68:31:3a:0b:76:03:e1:ed:db:0f: a0:54:5f:d5:7a:78:61:2e:0c:78:7c:f6:66:d0:bf:b1:ca:30: 3e:80:ef:68:b3:12:a3:17:5b:03:f8:8b:33:e6:a7:54:41:f8: f3:1b:e3:b2:a2:3b:06:ce:ce:30:83:f4:8d:4b:8a:74:bd:2c: ef:c0:38:d0:76:22:8a:2a:da:52:80:70:21:54:e5:72:11:52: c8:4a:d5:88:00:bc:a6:cf:a3:18:95:8a:6e:c9:a2:bf:04:9f: 6a:8b:10:b0:a8:76:ec:8b:52:f2:f4:8f:e6:29:ae:cb:bf:af: 46:a3:f7:67:8c:e3:f9:f9:ff:32:55:d0:26:14:02:47:84:de: 2a:af:4c:ca:11:b7:c3:c7:e0:e8:51:06:28:73:eb:2e:1c:64: d1:9c:a3:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyN0MxMTAvBgNVBAUTKDFEODgyQzhDRjI0MzRDQzlCQkZENzkxOTFEQzJDNjk4 MjkyNkU4QUIwHhcNMjUxMDE4MTc0NDAzWhcNMjUxMDI1MTc0NDAzWjAYMRYwFAYD VQQDEw02OGYzZDFlMy02NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5J6FabWSmcDDubgdX9JHtkuT5snNzVY1OiG6Mzc+Qx9T3FZ5UvKUImcWOMw 3UzCOK+M1n/Toj8z5CAJ17ogrTkGjINZfmu379ljA4OWnkEJea0zlQu/Kdip8Ezv iY9MGcJ0PBO/8Xil8P0w0yW4LUcDvujAlY7tnw9jOY24zhZWY38HCSBOtoqLDqTZ ZaBQjTRNLF582Y5ym4OgtA4/7SumougHhOX2s4BjshUUHWtr5bpS07q+jVQ/a8/l +M6GvTVZDOknRPNoTZzhpCUJEOn1H4UChc7/FYgPaMvSCNYjfhW9/pV+8ERLslLP wvSOC5xjUbCfkKPL8h/bjjT8rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsejpwc qGoGo2qWhVFK+Zbl4QrKMB8GA1UdIwQYMBaAFB2ILIzyQ0zJu/15GR3CxpgpJuir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI3Qy85RDc3QzZENDAy OEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRNbTdfWGtaSGNMR21Da202 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hZZ3NqUEpEVE1tN19Ya1pIY0xHbUNrbTZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzI3Qy85RDc3QzZENDAyOEYxMUU5OUQ4MUY2NDBDNEY5QUUwMi9IWWdzalBKRFRN bTdfWGtaSGNMR21Da202S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6jiqpcHsOsolW9+ZNzvrh0wspp6nK5z6X2zW5o992hi+UttFT/IGs Latuk3QXNkaSce/fikcIl+lw37Kt3hxC1gjwhFVsVRNT90U1vplu4nHe4KaaZbaZ CRV1+3vbW925YGgxOgt2A+Ht2w+gVF/VenhhLgx4fPZm0L+xyjA+gO9osxKjF1sD +Isz5qdUQfjzG+OyojsGzs4wg/SNS4p0vSzvwDjQdiKKKtpSgHAhVOVyEVLIStWI ALymz6MYlYpuyaK/BJ9qixCwqHbsi1Ly9I/mKa7Lv69Go/dnjOP5+f8yVdAmFAJH hN4qr0zKEbfDx+DoUQYoc+suHGTRnKOG -----END CERTIFICATE-----Generated at Mon Oct 20 09:43:48 2025 by rpki-client