$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: 8xkRmnWs/BLWbY2W5Rb6E360LSM69pOUoLR2kCJJb4Q= Subject key identifier: DD:97:43:BF:FE:D4:C8:AC:BB:7E:38:96:C8:0A:E6:A1:2C:3B:45:E9 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 0258 Signing time: Sun 19 Oct 2025 04:10:40 +0000 Manifest this update: Sun 19 Oct 2025 04:10:38 +0000 Manifest next update: Sun 26 Oct 2025 04:10:38 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: /4v0+YsHvWH4Uzj6OBofioo90KuHuzNWuFH+G5GTO0o=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: bOpqrbhh4Bh4AWp/OZ52rop88bWyVMsrGceDfsrfghM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Oct 19 04:10:38 2025 GMT Not After : Oct 26 04:10:38 2025 GMT Subject: CN=68f464be-21a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c9:f0:55:cf:63:01:1e:b7:1e:e6:4d:79:ac: 06:31:6c:12:ee:dc:00:2d:87:e2:7e:15:1a:78:f9: c8:8b:9d:cb:76:b7:ae:6c:39:76:13:42:90:18:6d: e3:d5:d4:16:b1:d8:98:76:50:d1:01:71:e7:8c:a4: 80:f4:60:78:02:0b:55:ea:48:fd:06:01:d9:19:30: fb:c5:73:cc:b2:43:57:8b:d7:60:0d:1e:b7:88:92: 4b:a1:94:5d:c8:be:06:83:74:fd:97:6f:3a:01:24: fd:68:9a:30:b8:cd:53:ce:83:08:6f:da:87:28:09: 32:dc:96:35:90:88:44:32:76:9e:26:07:3d:f2:60: 37:70:d5:97:52:a4:4b:64:ea:c0:29:6e:a0:67:2c: 3c:04:4f:05:4d:2b:54:a5:1d:15:f7:6d:2f:c5:fb: 21:fd:49:9b:6d:05:93:94:82:19:60:3f:f3:50:65: 0d:54:3a:ab:7f:40:c4:37:84:ec:d9:a2:5d:ae:d8: 0e:30:29:cf:12:19:79:bc:db:1f:5c:9e:98:15:8c: 80:8b:ee:36:bc:7c:4e:69:e9:9d:51:78:ca:8f:e3: 25:59:f4:02:7f:cc:90:5d:28:94:81:8e:65:c7:4e: 02:10:53:65:db:36:f2:19:d2:ac:d8:3c:2f:8e:4f: 14:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:97:43:BF:FE:D4:C8:AC:BB:7E:38:96:C8:0A:E6:A1:2C:3B:45:E9 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:4a:9b:56:72:b1:d9:60:86:1c:b3:3c:aa:fd:b0:34:9f:c6: 18:09:3c:f2:32:1d:2e:30:27:e7:26:9c:04:36:b9:04:92:0f: b2:71:c2:15:da:8f:07:34:e6:09:5c:99:e7:87:ac:ca:ce:82: 8d:b7:01:bb:22:85:d8:e8:10:74:fc:51:d1:00:95:75:a7:f3: dd:ba:12:dc:23:51:6b:ac:32:44:d2:8d:6e:e4:4b:77:3a:65: 01:25:f5:45:6b:50:86:b6:2c:db:33:68:73:12:36:73:02:3f: 23:a9:7a:25:fa:ce:25:7d:a3:2a:8d:ea:1d:e9:6f:41:74:e4: b7:fb:a3:8c:48:94:3e:1a:33:a0:fc:af:88:fb:35:38:81:99: 55:11:67:cf:26:c8:90:03:ec:4e:c7:69:ef:3b:67:d2:e9:5a: 6e:00:a6:a4:3e:48:44:ef:01:49:3b:98:96:e3:70:d5:26:3a: 21:68:51:4c:27:76:19:b4:76:94:b0:6f:f3:7a:44:c0:ad:20: 56:c5:e2:ad:f2:7f:7f:d4:cf:38:cb:cc:33:18:2b:62:46:de: 3b:f7:07:16:bf:dd:c4:a2:77:3f:a7:6d:31:3f:50:67:8b:6a: a9:e7:59:22:4c:bd:49:f3:08:e4:c0:7c:8a:d0:a3:ca:be:b6: 43:8e:20:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUxMDE5MDQxMDM4WhcNMjUxMDI2MDQxMDM4WjAYMRYwFAYD VQQDEw02OGY0NjRiZS0yMWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcnwVc9jAR63HuZNeawGMWwS7twALYfifhUaePnIi53LdreubDl2E0KQGG3j 1dQWsdiYdlDRAXHnjKSA9GB4AgtV6kj9BgHZGTD7xXPMskNXi9dgDR63iJJLoZRd yL4Gg3T9l286AST9aJowuM1TzoMIb9qHKAky3JY1kIhEMnaeJgc98mA3cNWXUqRL ZOrAKW6gZyw8BE8FTStUpR0V920vxfsh/UmbbQWTlIIZYD/zUGUNVDqrf0DEN4Ts 2aJdrtgOMCnPEhl5vNsfXJ6YFYyAi+42vHxOaemdUXjKj+MlWfQCf8yQXSiUgY5l x04CEFNl2zbyGdKs2Dwvjk8UXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2XQ7/+ 1Misu344lsgK5qEsO0XpMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCSptWcrHZYIYcszyq/bA0n8YYCTzyMh0uMCfnJpwENrkEkg+yccIV 2o8HNOYJXJnnh6zKzoKNtwG7IoXY6BB0/FHRAJV1p/PduhLcI1FrrDJE0o1u5Et3 OmUBJfVFa1CGtizbM2hzEjZzAj8jqXol+s4lfaMqjeod6W9BdOS3+6OMSJQ+GjOg /K+I+zU4gZlVEWfPJsiQA+xOx2nvO2fS6VpuAKakPkhE7wFJO5iW43DVJjohaFFM J3YZtHaUsG/zekTArSBWxeKt8n9/1M84y8wzGCtiRt479wcWv93Eonc/p20xP1Bn i2qp51kiTL1J8wjkwHyK0KPKvrZDjiCc -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:11 2025 by rpki-client