$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: VAZPV1fTGxsUeIHGDxJ2FixP+yIOK4vAnWpmTd+c0RU= Subject key identifier: BE:D5:BF:19:D6:5E:87:38:36:08:48:68:57:40:4E:C4:C5:89:77:FB Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 3580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3533 Signing time: Mon 20 Oct 2025 14:16:16 +0000 Manifest this update: Mon 20 Oct 2025 14:16:15 +0000 Manifest next update: Mon 27 Oct 2025 14:16:15 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: j6uQJ5ZprmSyTBC4ADT6GKW9BV+A+5hv2wNniGYq/zc=) 2: 0997A5828A1511F09F6EBD2BC4F9AE02.roa (hash: OnxDy/55jjMCiBnkBT8Gsibkcizt1adU0FH5L5R2Oyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13696 (0x3580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Oct 20 14:16:15 2025 GMT Not After : Oct 27 14:16:15 2025 GMT Subject: CN=68f6442f-892d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:81:fc:20:ed:83:02:45:15:17:2b:52:e6:fb: 50:2f:48:c5:d2:8d:53:9b:dd:97:72:a6:84:17:87: c5:29:a3:b4:e6:15:92:94:e4:98:1a:6a:d8:83:b7: 95:4e:e8:b8:f2:68:97:23:65:9c:0f:f6:88:61:75: 85:50:b6:1e:03:e0:5d:ce:79:3e:9c:3b:9b:cc:65: 59:1b:f2:a0:c3:b9:12:22:bb:0f:9d:5f:a3:f3:6a: db:6b:ea:a5:a0:27:bf:cc:7d:5b:65:b5:d5:17:42: 80:ab:8d:d4:b1:96:df:3b:fd:b5:d5:c1:f6:2b:0f: 58:7b:d6:45:98:19:91:c4:3e:62:81:38:c2:bb:6a: 09:06:5d:5c:66:d7:d4:ec:74:89:c3:ec:78:8c:78: db:a7:f7:61:0a:e3:cf:17:4a:e6:81:97:04:05:57: ad:99:98:00:f5:da:ce:43:58:20:7a:be:54:f2:2d: 09:8e:9a:6c:ea:91:3e:ae:ef:eb:e9:69:9b:21:e7: bd:66:12:58:45:aa:96:f5:c1:65:40:d4:d0:bc:22: 03:c6:c5:51:af:d5:c8:64:9f:fe:f5:08:3b:ae:99: e7:ed:92:7f:14:94:97:1b:c0:75:71:b1:45:31:28: 17:e9:1e:f8:f4:79:90:06:24:1e:48:ed:51:68:0c: f3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D5:BF:19:D6:5E:87:38:36:08:48:68:57:40:4E:C4:C5:89:77:FB X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:10:57:a7:e6:68:f2:46:37:e1:3e:82:29:fa:d8:18:53:ab: 01:87:ef:6a:44:b6:74:3e:ee:08:ff:ba:bd:03:42:28:e7:83: 47:4c:be:2f:0b:07:d4:dc:94:d3:89:0f:83:a9:85:99:4f:f5: 0a:10:0a:ac:5d:45:95:38:59:fb:f9:a1:5c:02:1d:b9:e4:04: cf:fb:c2:2a:15:01:6e:bc:5b:9c:48:12:4a:7e:b2:aa:76:83: ee:98:8f:83:8c:49:75:26:85:4b:ff:ed:a9:2e:88:fa:4b:24: d7:9c:5b:fa:c6:ae:c3:38:26:1d:a1:b2:4b:8f:c8:6b:ec:3e: 8e:20:31:b7:a6:2d:0e:32:88:eb:52:6c:ce:04:fb:24:a3:aa: d2:35:28:b5:76:d9:80:b0:9b:d6:e5:17:eb:2b:75:f9:50:a5: 29:58:98:e3:c7:98:43:79:ee:b5:37:da:14:2a:f0:65:83:bd: 30:22:d7:33:b3:e8:97:ba:6b:dc:7a:28:aa:ed:b0:d1:27:71: a3:8a:01:11:8e:8f:d9:28:0c:4b:88:99:96:7f:4b:f0:f1:c6: f9:98:2f:af:b0:63:da:77:12:9d:06:ac:c9:68:d6:4b:d2:96: 98:f7:1b:f1:ef:4a:cb:66:ae:48:97:35:9f:5f:5e:15:8d:74: 4d:9a:5f:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjUxMDIwMTQxNjE1WhcNMjUxMDI3MTQxNjE1WjAYMRYwFAYD VQQDEw02OGY2NDQyZi04OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIH8IO2DAkUVFytS5vtQL0jF0o1Tm92XcqaEF4fFKaO05hWSlOSYGmrYg7eV Tui48miXI2WcD/aIYXWFULYeA+Bdznk+nDubzGVZG/Kgw7kSIrsPnV+j82rba+ql oCe/zH1bZbXVF0KAq43UsZbfO/211cH2Kw9Ye9ZFmBmRxD5igTjCu2oJBl1cZtfU 7HSJw+x4jHjbp/dhCuPPF0rmgZcEBVetmZgA9drOQ1gger5U8i0Jjpps6pE+ru/r 6WmbIee9ZhJYRaqW9cFlQNTQvCIDxsVRr9XIZJ/+9Qg7rpnn7ZJ/FJSXG8B1cbFF MSgX6R749HmQBiQeSO1RaAzzEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7VvxnW Xoc4NghIaFdATsTFiXf7MB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDEFen5mjyRjfhPoIp+tgYU6sBh+9qRLZ0Pu4I/7q9A0Io54NHTL4v CwfU3JTTiQ+DqYWZT/UKEAqsXUWVOFn7+aFcAh255ATP+8IqFQFuvFucSBJKfrKq doPumI+DjEl1JoVL/+2pLoj6SyTXnFv6xq7DOCYdobJLj8hr7D6OIDG3pi0OMojr UmzOBPsko6rSNSi1dtmAsJvW5RfrK3X5UKUpWJjjx5hDee61N9oUKvBlg70wItcz s+iXumvceiiq7bDRJ3GjigERjo/ZKAxLiJmWf0vw8cb5mC+vsGPadxKdBqzJaNZL 0paY9xvx70rLZq5IlzWfX14VjXRNml8a -----END CERTIFICATE-----Generated at Tue Oct 21 01:01:23 2025 by rpki-client