$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: ymVNUBIdqN11PO8x2Uhq36TfBuJaQ6m5mpQ52dqvrnk= Subject key identifier: E4:5E:97:0C:5D:26:78:A8:A9:60:2D:ED:39:69:43:4F:66:C4:D2:0F Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: B6 Signing time: Sun 19 Oct 2025 09:09:52 +0000 Manifest this update: Sun 19 Oct 2025 09:09:52 +0000 Manifest next update: Sun 26 Oct 2025 09:09:52 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: 7pxAdhveK/ehNWafv2nCRHpW+E1QtId00d1phgTMKT4=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Oct 19 09:09:52 2025 GMT Not After : Oct 26 09:09:52 2025 GMT Subject: CN=68f4aae0-562c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:de:ce:05:ec:6d:87:f4:6c:8c:56:54:be:72: 6b:5f:20:f0:1e:b7:36:b4:ad:3c:a3:3b:46:7c:d3: 56:0e:58:7f:37:e9:5e:da:de:e8:b0:ce:67:70:68: ac:d7:5e:51:68:be:69:51:d6:5c:cc:33:58:a9:cb: 5e:9d:a0:db:23:d2:c4:79:82:41:bc:a2:1f:ed:e0: 70:6c:c9:d7:db:2c:5a:9f:d1:e0:c1:b3:af:b0:f7: 63:d0:17:61:06:d3:b9:ec:da:44:30:2f:a5:d8:dc: 65:73:7f:63:ae:df:49:92:bd:d1:14:ed:6d:e4:a5: 87:42:c2:f5:f9:a5:37:7c:99:59:00:ec:f0:10:b6: ad:e8:08:f9:bf:1c:b4:fc:9b:6d:1d:18:41:6f:0a: 87:02:3c:47:f4:b7:f6:05:1a:4e:c3:04:ed:1b:8f: d5:e4:0f:56:ed:0d:98:92:a3:f0:fe:33:b1:4d:4f: c1:5f:bc:6f:56:59:b5:24:3a:a5:9b:dc:36:f9:f1: 38:06:82:e3:ce:18:4b:6c:6e:86:8e:b3:1e:36:57: 75:8e:dc:76:f4:e8:2e:ce:6b:1d:68:ad:6f:5d:36: ee:5d:e1:4b:16:35:5b:b5:5c:54:4f:0a:71:90:80: 46:0c:eb:af:25:76:2f:b0:ff:02:c3:17:fc:73:39: 50:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5E:97:0C:5D:26:78:A8:A9:60:2D:ED:39:69:43:4F:66:C4:D2:0F X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:cb:28:1e:59:87:0e:25:d7:3e:6c:44:eb:b8:6c:2b:8e:36: 8b:0f:fa:f8:78:f2:db:2a:06:ea:de:b8:41:5f:36:96:a1:43: 91:50:95:89:3d:26:fa:51:48:e4:24:ef:da:a9:51:7a:7f:f0: ca:7b:95:30:ea:49:df:9e:eb:de:ae:b9:13:06:db:23:8a:83: 80:00:17:00:2a:c1:b0:71:a7:09:b1:a8:79:99:19:72:cc:10: 2f:0e:bd:84:77:f4:59:ae:f5:33:dc:53:13:31:68:27:23:ae: e2:20:23:07:b2:8d:02:94:b4:e5:b5:32:c2:97:d1:5e:f4:f2: 58:89:69:80:6d:5d:3f:54:44:46:b7:43:a1:a6:7f:bd:14:a0: 99:76:53:c1:43:31:1c:6e:c5:54:e6:1c:19:61:ca:38:78:e8: f2:77:d5:8d:c3:e0:b8:9d:4c:34:0c:b0:b1:54:b6:38:1a:22: 62:2f:3d:0d:c7:43:30:74:d8:1b:5c:db:5a:ba:a0:f5:b1:ef: 95:e4:7a:02:35:84:1c:bc:18:54:35:fe:e8:2a:73:48:b4:b5: 98:e2:72:b8:20:8b:72:7b:72:7d:b6:ee:ac:e3:a9:96:47:47: 6a:3e:ca:bb:fe:c3:e7:79:50:ea:45:3c:18:20:ca:45:58:b9: d0:62:c2:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjUxMDE5MDkwOTUyWhcNMjUxMDI2MDkwOTUyWjAYMRYwFAYD VQQDEw02OGY0YWFlMC01NjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw97OBexth/RsjFZUvnJrXyDwHrc2tK08oztGfNNWDlh/N+le2t7osM5ncGis 115RaL5pUdZczDNYqctenaDbI9LEeYJBvKIf7eBwbMnX2yxan9HgwbOvsPdj0Bdh BtO57NpEMC+l2Nxlc39jrt9Jkr3RFO1t5KWHQsL1+aU3fJlZAOzwELat6Aj5vxy0 /JttHRhBbwqHAjxH9Lf2BRpOwwTtG4/V5A9W7Q2YkqPw/jOxTU/BX7xvVlm1JDql m9w2+fE4BoLjzhhLbG6GjrMeNld1jtx29OguzmsdaK1vXTbuXeFLFjVbtVxUTwpx kIBGDOuvJXYvsP8Cwxf8czlQHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORelwxd JnioqWAt7TlpQ09mxNIPMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEyygeWYcOJdc+bETruGwrjjaLD/r4ePLbKgbq3rhBXzaWoUORUJWJ PSb6UUjkJO/aqVF6f/DKe5Uw6knfnuverrkTBtsjioOAABcAKsGwcacJsah5mRly zBAvDr2Ed/RZrvUz3FMTMWgnI67iICMHso0ClLTltTLCl9Fe9PJYiWmAbV0/VERG t0Ohpn+9FKCZdlPBQzEcbsVU5hwZYco4eOjyd9WNw+C4nUw0DLCxVLY4GiJiLz0N x0MwdNgbXNtauqD1se+V5HoCNYQcvBhUNf7oKnNItLWY4nK4IItye3J9tu6s46mW R0dqPsq7/sPneVDqRTwYIMpFWLnQYsLh -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:33 2025 by rpki-client