$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: Ds8p34JQ4uCXGEUijmBWdzaSlZi5WT0fal84XiIkG40= Subject key identifier: 1D:47:7D:67:B6:83:BF:7B:6F:8A:9D:3F:FA:63:93:16:A8:15:36:6B Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 020A Signing time: Sun 19 Oct 2025 04:34:54 +0000 Manifest this update: Sun 19 Oct 2025 04:34:53 +0000 Manifest next update: Sun 26 Oct 2025 04:34:53 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: tnVCm8RXDp5y3uX6QTjmJl67gB9nZHEzWu/mMpxjMTs=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: fk3GNutu1Xl8jf9hzH4EWHosYGuy+JY1n5pgsTabR1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: Oct 19 04:34:53 2025 GMT Not After : Oct 26 04:34:53 2025 GMT Subject: CN=68f46a6e-d4f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d4:a5:a4:8c:3c:d8:11:ca:93:7d:8e:d5:66: 60:a4:0b:b9:fe:5f:d9:21:55:1d:9f:1a:39:90:cd: 92:7d:01:28:2d:9f:88:c7:93:e0:b2:07:98:35:18: 9e:82:80:d3:c5:81:8a:8b:ba:88:b7:9b:b3:af:62: 25:c5:14:82:de:e5:a3:e5:ea:b2:4b:dd:53:b2:ec: e1:71:bb:2c:fd:2e:9a:63:a5:a7:ba:c8:d7:82:8a: 76:01:38:46:1f:73:95:8b:c9:15:38:74:ea:69:5f: 1f:5e:f3:2d:93:ce:4d:37:e8:90:59:16:c4:34:58: dd:4c:16:e1:8b:18:da:cb:02:65:71:4e:ef:e1:df: 53:09:62:24:cf:3f:17:38:1c:42:d1:55:21:d5:19: cc:32:08:87:f5:ee:73:89:05:fa:2f:89:5d:14:1d: 41:fa:3b:00:bc:0f:1e:86:d7:5a:6b:1a:77:3a:25: c0:68:2d:4a:e5:91:71:c9:4d:89:0e:79:b0:a5:8d: c3:c8:6c:14:1d:52:34:39:44:8d:b5:18:8f:56:1f: e7:b9:0f:fa:02:e5:c9:d5:d3:78:0c:a3:20:91:e3: 4c:74:6c:34:00:b4:be:b5:34:10:ab:ee:c2:d2:f5: da:0c:87:9d:09:3f:0f:71:1e:1b:85:b5:b1:00:db: 88:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:47:7D:67:B6:83:BF:7B:6F:8A:9D:3F:FA:63:93:16:A8:15:36:6B X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:47:ad:b7:fe:94:1f:e1:43:83:e7:5e:55:e6:88:83:28:6f: 83:6c:bc:0b:af:b3:30:84:8f:8f:7a:38:40:a8:39:ca:51:84: b3:1d:06:66:e7:01:bd:ef:42:d5:e4:39:07:cb:31:38:d0:73: 49:fe:ac:08:bf:ee:0f:60:92:dd:b3:b1:e6:fe:11:20:2a:c1: 4a:dc:1f:f6:27:de:55:8a:8e:39:a1:a9:d7:85:25:22:48:5c: 46:54:3c:d0:42:f3:7d:58:1e:f1:c7:e0:3a:a2:40:63:ff:85: e2:6d:47:80:10:4e:7f:11:11:b3:2d:ac:fd:45:6a:69:c6:0c: 31:51:71:9a:a7:5a:1c:5f:b1:23:3c:19:70:49:81:11:3f:bc: 77:1f:e3:0b:ba:8c:64:b2:4d:74:04:e1:2c:36:bf:cc:06:b0: f3:e4:6a:55:f9:fc:73:b6:81:73:c5:61:29:9b:12:c8:a2:1b: d0:c5:2c:0f:93:f8:9f:b0:6c:94:68:79:e3:65:49:a0:10:68: 94:d9:6c:dc:ce:5b:f8:b8:8a:ed:6e:c9:00:86:6b:f6:36:ff: e6:6e:4a:17:b1:6a:f4:99:1c:ea:67:cb:e4:26:a5:15:f0:45: bf:73:26:ac:51:7f:e0:90:0b:7a:3c:6d:fc:97:79:33:11:c1: e6:22:f5:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjUxMDE5MDQzNDUzWhcNMjUxMDI2MDQzNDUzWjAYMRYwFAYD VQQDEw02OGY0NmE2ZS1kNGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49SlpIw82BHKk32O1WZgpAu5/l/ZIVUdnxo5kM2SfQEoLZ+Ix5PgsgeYNRie goDTxYGKi7qIt5uzr2IlxRSC3uWj5eqyS91Tsuzhcbss/S6aY6WnusjXgop2AThG H3OVi8kVOHTqaV8fXvMtk85NN+iQWRbENFjdTBbhixjaywJlcU7v4d9TCWIkzz8X OBxC0VUh1RnMMgiH9e5ziQX6L4ldFB1B+jsAvA8ehtdaaxp3OiXAaC1K5ZFxyU2J DnmwpY3DyGwUHVI0OUSNtRiPVh/nuQ/6AuXJ1dN4DKMgkeNMdGw0ALS+tTQQq+7C 0vXaDIedCT8PcR4bhbWxANuIAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1HfWe2 g797b4qdP/pjkxaoFTZrMB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeR623/pQf4UOD515V5oiDKG+DbLwLr7MwhI+PejhAqDnKUYSzHQZm 5wG970LV5DkHyzE40HNJ/qwIv+4PYJLds7Hm/hEgKsFK3B/2J95Vio45oanXhSUi SFxGVDzQQvN9WB7xx+A6okBj/4XibUeAEE5/ERGzLaz9RWppxgwxUXGap1ocX7Ej PBlwSYERP7x3H+MLuoxksk10BOEsNr/MBrDz5GpV+fxztoFzxWEpmxLIohvQxSwP k/ifsGyUaHnjZUmgEGiU2Wzczlv4uIrtbskAhmv2Nv/mbkoXsWr0mRzqZ8vkJqUV 8EW/cyasUX/gkAt6PG38l3kzEcHmIvV5 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:21 2025 by rpki-client