$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: ZZXDUvFQNNu1TVKFpJGMXjIo8sn9vUHPerXMrGOYL6A= Subject key identifier: 0D:EA:2F:58:F4:B4:7F:CE:67:90:DA:62:0D:F7:BE:52:CB:00:49:43 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 0313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 0308 Signing time: Sun 19 Oct 2025 03:16:25 +0000 Manifest this update: Sun 19 Oct 2025 03:16:25 +0000 Manifest next update: Sun 26 Oct 2025 03:16:25 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: +USlGUxC2XtuLZmWWB0Lhjl9VrKZMQVUUq5Vx/BOPfM=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: rCIHZh9wUruVRZk/2Wl+iO0bQmypaGymRp+P5pHJgrc=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: WLqs4EYDGZGhgsTcvZkB1qzpm9zeqwQq3iz4UzKMW3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Oct 19 03:16:25 2025 GMT Not After : Oct 26 03:16:25 2025 GMT Subject: CN=68f45809-8c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:ac:93:02:66:00:cb:82:9c:91:2a:01:94: 7e:5e:72:97:1e:0a:d9:67:9c:e6:8a:28:07:7a:c6: 30:e5:a9:1e:9d:de:7e:74:22:cc:c3:ff:45:91:d6: 31:19:4d:d0:5c:7f:1f:8b:72:5b:0d:88:f9:0f:b0: 2c:33:e9:83:28:86:81:f1:56:76:e3:84:69:d3:67: 53:b1:24:a5:66:21:5b:3e:e5:88:fb:88:8e:25:53: ee:ca:38:b2:93:4c:a0:dc:0e:58:ac:a7:1e:e8:25: e4:7a:35:cb:38:82:40:f4:95:df:cc:04:a6:73:1a: 11:ee:67:ca:f6:1f:b0:c8:8d:d6:45:df:5a:c1:60: 6a:14:96:6a:ee:78:5e:31:da:38:97:d8:4c:f9:91: 72:cb:27:27:76:e3:a0:7d:3e:6c:d6:65:02:68:4c: 18:48:4c:4d:5c:65:d0:75:6d:a3:48:61:3a:2b:db: a0:84:02:d5:40:5e:8f:45:bf:27:55:21:45:b9:8d: 68:23:97:4b:ac:73:4c:93:90:a6:4c:d7:cd:ea:f7: 4a:c3:b6:d8:52:d3:79:1f:d4:fa:82:cb:52:7f:48: 88:57:df:38:46:42:2f:51:8f:15:40:d5:16:c2:0e: e1:c1:d4:bf:92:0a:40:1d:7b:75:75:a6:96:63:03: 9c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:EA:2F:58:F4:B4:7F:CE:67:90:DA:62:0D:F7:BE:52:CB:00:49:43 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:db:db:5c:a8:82:ed:70:15:54:10:1f:e8:95:0b:5a:cf:72: 28:c0:f6:1d:64:5c:97:42:76:72:40:7b:7d:84:62:a6:8f:a2: 1d:df:27:45:04:73:e2:c8:5f:82:76:72:00:c5:29:e3:2a:91: a6:b2:a9:1c:22:fe:da:72:35:b8:20:7e:c1:ce:a3:39:a2:04: e5:be:a0:9e:7b:f6:aa:20:f2:02:1b:34:dc:65:85:e4:89:79: f2:a2:f0:4d:44:dc:ac:9b:c7:d6:dc:65:bf:fc:68:a0:1a:46: 3f:55:53:77:f3:5d:75:63:87:91:4c:2a:90:1f:f3:ea:0c:c4: 0f:5a:b5:0e:fd:c1:8d:59:54:83:97:8d:9c:33:12:25:e4:b2: 34:17:de:b5:a2:f3:79:37:24:2c:1a:bc:36:08:ed:53:04:7b: f9:a7:a7:2b:e9:f5:b9:69:a4:a0:d0:86:90:93:28:45:0b:18: 4c:8c:fe:ba:53:11:62:42:f7:14:46:c1:da:23:36:3a:00:85: b1:39:16:76:c2:a7:a3:53:dc:aa:4b:07:21:e8:e5:5e:aa:8d: 58:41:6c:dc:a8:68:8c:49:2c:e9:dd:c6:83:c4:60:c1:53:0f: 70:0b:72:1b:2c:ee:5c:a7:d9:5c:fa:af:3a:08:3b:45:70:66: 85:c1:91:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUxMDE5MDMxNjI1WhcNMjUxMDI2MDMxNjI1WjAYMRYwFAYD VQQDEw02OGY0NTgwOS04YzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskaskwJmAMuCnJEqAZR+XnKXHgrZZ5zmiigHesYw5akend5+dCLMw/9FkdYx GU3QXH8fi3JbDYj5D7AsM+mDKIaB8VZ244Rp02dTsSSlZiFbPuWI+4iOJVPuyjiy k0yg3A5YrKce6CXkejXLOIJA9JXfzASmcxoR7mfK9h+wyI3WRd9awWBqFJZq7nhe Mdo4l9hM+ZFyyycnduOgfT5s1mUCaEwYSExNXGXQdW2jSGE6K9ughALVQF6PRb8n VSFFuY1oI5dLrHNMk5CmTNfN6vdKw7bYUtN5H9T6gstSf0iIV984RkIvUY8VQNUW wg7hwdS/kgpAHXt1daaWYwOctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3qL1j0 tH/OZ5DaYg33vlLLAElDMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ29tcqILtcBVUEB/olQtaz3IowPYdZFyXQnZyQHt9hGKmj6Id3ydF BHPiyF+CdnIAxSnjKpGmsqkcIv7acjW4IH7BzqM5ogTlvqCee/aqIPICGzTcZYXk iXnyovBNRNysm8fW3GW//GigGkY/VVN38111Y4eRTCqQH/PqDMQPWrUO/cGNWVSD l42cMxIl5LI0F961ovN5NyQsGrw2CO1TBHv5p6cr6fW5aaSg0IaQkyhFCxhMjP66 UxFiQvcURsHaIzY6AIWxORZ2wqejU9yqSwch6OVeqo1YQWzcqGiMSSzp3caDxGDB Uw9wC3IbLO5cp9lc+q86CDtFcGaFwZHV -----END CERTIFICATE-----Generated at Mon Oct 20 11:41:19 2025 by rpki-client