$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: PJgroVVbchDo/3xFx9+cXEiF7QMYTZQfQiWAINmWcFE= Subject key identifier: 73:B4:66:37:EA:DD:87:E9:1A:4E:7A:90:98:EE:F3:4C:0B:19:6A:D1 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0BFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0BF1 Signing time: Sat 18 Oct 2025 19:40:56 +0000 Manifest this update: Sat 18 Oct 2025 19:40:55 +0000 Manifest next update: Sat 25 Oct 2025 19:40:55 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: PLhUd/8dR31NJACt8+ljJHI+dDzM9Ep+ZLWUtSd117E=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 3twihJRxf/bNpMtScuSs5yi/6xZ2K4Wt4M95Ev7NChA=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: 7cjb7VG94QioiNIQi5PeFGoVktUYbXdUPAEpMIjHRYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Oct 18 19:40:55 2025 GMT Not After : Oct 25 19:40:55 2025 GMT Subject: CN=68f3ed48-654f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:76:26:e6:35:f9:8f:ef:77:e7:0b:09:38: 22:a2:e6:29:c0:7c:83:1e:da:b8:1a:0c:4e:72:ba: b2:47:45:63:8d:85:76:80:98:93:db:59:dc:1e:d5: 8d:60:5c:ba:b3:a1:e8:5a:09:4d:bc:f4:da:04:5e: 16:6c:0d:68:a5:9b:f6:46:42:d2:a3:e9:fb:bd:82: 6a:c4:63:54:23:a3:f1:01:d2:4b:83:05:78:41:82: 48:56:bc:46:69:71:f2:41:25:45:8e:40:02:08:dd: 31:f4:26:81:9a:8f:a1:28:d2:a7:ca:56:08:17:98: 2d:9e:7b:a2:86:23:8c:b1:81:16:f2:34:05:04:62: 93:75:d9:b9:6f:d3:ad:63:44:f0:97:fd:9b:e7:ed: 07:0a:6b:b5:16:22:d4:82:6a:34:33:e8:6b:53:c3: b3:35:34:6b:bd:e9:57:e3:7f:43:8a:4c:67:1f:fc: cf:8b:f2:de:cc:53:89:10:ec:5e:7a:95:f2:96:db: 4d:a4:37:f8:10:82:82:61:0b:5f:ed:a3:c9:08:1d: b1:99:68:d9:ad:ee:7f:be:82:2e:d3:c7:4c:a2:14: 04:74:0f:b8:3b:b9:ee:8c:ea:8f:67:0c:4a:2b:a1: 9f:9c:18:e9:09:60:8a:de:63:6f:9d:2f:da:9a:2e: 0d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B4:66:37:EA:DD:87:E9:1A:4E:7A:90:98:EE:F3:4C:0B:19:6A:D1 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:56:a3:8c:f7:d6:2c:0d:cb:6a:cd:a9:64:7e:7f:1b:d6:9a: 1d:cf:9d:53:5a:70:c5:23:14:36:27:0b:df:27:aa:08:2d:40: bd:07:70:6f:81:f5:28:1a:34:ca:8f:be:6e:38:f0:10:d6:05: d5:10:b1:58:99:a8:35:d6:d0:1a:e7:97:bb:57:b7:fe:5a:6f: cc:bb:6e:57:19:bf:56:72:91:0f:f8:94:23:a2:72:06:75:35: 2d:d9:2e:05:5d:22:6b:52:cb:81:9c:58:14:d5:ec:7a:2d:64: da:6e:0e:40:c3:a1:bb:6f:62:9e:ed:60:64:91:00:1e:3c:66: b8:06:ec:9c:9b:00:d8:1a:19:18:4c:0c:9d:70:91:78:e7:b5: e9:3a:51:af:c3:3d:5b:92:d4:d2:70:7a:78:a8:be:a9:4f:67: 7c:7f:5d:18:1c:aa:4e:32:84:18:ec:01:03:02:1e:89:a6:09: bf:88:d7:eb:68:c0:c6:d2:7b:30:7b:45:63:7a:d2:2a:4b:d9: ff:b6:db:89:ba:7e:13:49:d1:9a:19:58:cc:1a:05:ea:61:dd: 7c:ad:2b:f5:e0:52:75:04:34:15:77:5c:04:17:fa:5d:01:8b: b5:3c:df:41:56:f3:34:aa:8f:c9:c4:9a:86:fc:e1:bb:2f:a9: be:2b:cb:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjUxMDE4MTk0MDU1WhcNMjUxMDI1MTk0MDU1WjAYMRYwFAYD VQQDEw02OGYzZWQ0OC02NTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkt2JuY1+Y/vd+cLCTgiouYpwHyDHtq4GgxOcrqyR0VjjYV2gJiT21ncHtWN YFy6s6HoWglNvPTaBF4WbA1opZv2RkLSo+n7vYJqxGNUI6PxAdJLgwV4QYJIVrxG aXHyQSVFjkACCN0x9CaBmo+hKNKnylYIF5gtnnuihiOMsYEW8jQFBGKTddm5b9Ot Y0Twl/2b5+0HCmu1FiLUgmo0M+hrU8OzNTRrvelX439DikxnH/zPi/LezFOJEOxe epXylttNpDf4EIKCYQtf7aPJCB2xmWjZre5/voIu08dMohQEdA+4O7nujOqPZwxK K6GfnBjpCWCK3mNvnS/ami4NpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHO0Zjfq 3YfpGk56kJju80wLGWrRMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGVqOM99YsDctqzalkfn8b1podz51TWnDFIxQ2JwvfJ6oILUC9B3Bv gfUoGjTKj75uOPAQ1gXVELFYmag11tAa55e7V7f+Wm/Mu25XGb9WcpEP+JQjonIG dTUt2S4FXSJrUsuBnFgU1ex6LWTabg5Aw6G7b2Ke7WBkkQAePGa4BuycmwDYGhkY TAydcJF457XpOlGvwz1bktTScHp4qL6pT2d8f10YHKpOMoQY7AEDAh6Jpgm/iNfr aMDG0nswe0VjetIqS9n/ttuJun4TSdGaGVjMGgXqYd18rSv14FJ1BDQVd1wEF/pd AYu1PN9BVvM0qo/JxJqG/OG7L6m+K8vE -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:15 2025 by rpki-client