$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: lrlik+y8My28qFutwVsdloWyNTeAUf7qrnjAkNhilkk= Subject key identifier: C0:B1:D6:00:45:96:B4:D5:D7:C2:A1:66:5C:47:0C:05:50:46:71:4D Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: 011C Signing time: Sun 19 Oct 2025 07:42:25 +0000 Manifest this update: Sun 19 Oct 2025 07:42:24 +0000 Manifest next update: Sun 26 Oct 2025 07:42:24 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: XQ016PcwkIuY3KkrDSVW8+AFHwN9AYqlxeK/nf+7hDM=) 2: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: WAA42IzaA5d5k/IY8QrF44XXEAbChLYtWjBVuWwrVBk=) 3: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: FmAu1+agMeZ0VUhV+3w3+uo72UBKyPI2du/6wqmQecc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Oct 19 07:42:24 2025 GMT Not After : Oct 26 07:42:24 2025 GMT Subject: CN=68f49661-06ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:00:0f:5a:7b:48:b1:0f:0a:d0:cd:0f:c9:1b: b6:95:4c:07:7d:48:3b:31:61:3e:e6:4c:cc:5f:fe: 4e:97:19:39:6b:23:0d:7d:7b:8b:19:62:ec:25:17: a1:ea:a8:1c:c6:82:3f:ae:8c:3d:95:73:66:c2:08: 1c:bb:5c:e2:ab:1f:a6:c6:b1:5f:65:f3:10:fa:2d: 33:47:f2:53:d0:2f:29:66:b9:68:58:3b:59:b5:49: f9:9f:58:cc:ea:01:fa:eb:38:cc:89:5e:fc:fe:1c: 89:eb:70:db:70:f4:8a:36:8a:6c:d9:85:37:d5:78: 64:23:ba:27:27:4f:a7:ff:f7:83:36:6d:b9:27:0f: 38:ed:f9:57:e4:d3:e9:67:62:0b:d0:13:98:46:dc: b6:55:6c:5b:dc:38:b8:b1:dc:d1:3e:2d:54:fe:e3: e6:59:c5:5b:bf:48:db:de:38:3a:6a:8b:b6:77:61: a9:34:22:fc:bc:1d:1e:08:de:69:95:2f:ca:d3:87: 9d:ec:5e:20:e9:b3:11:1f:3d:97:da:76:e0:52:1c: af:b3:b8:dd:93:70:c0:c8:0c:9c:d5:5b:97:36:0f: c7:78:11:98:f8:86:72:66:d7:72:a5:9b:bc:6f:c1: ee:7a:53:2f:b6:36:a4:45:bd:65:24:eb:16:a9:0f: 94:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B1:D6:00:45:96:B4:D5:D7:C2:A1:66:5C:47:0C:05:50:46:71:4D X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:fe:ac:2f:4c:1e:2a:d3:03:d3:1d:98:5b:d7:92:a3:02:53: eb:28:4f:80:90:79:b1:b4:b3:93:cd:98:26:37:ee:77:f2:25: d5:5b:b7:82:39:9d:cd:40:13:f8:7d:74:1c:71:68:fe:8d:d8: 2d:a7:4e:8b:fc:e0:fa:dd:d7:53:ac:82:4d:60:41:0c:c8:7a: 7d:2b:3c:98:d8:03:51:69:45:a4:48:40:e1:32:2a:be:dc:e7: 6b:a9:f4:92:cc:3b:89:7b:c5:6d:a3:c0:cc:02:d7:52:e1:65: 78:50:9c:61:17:7d:00:15:ca:f2:7f:35:97:b1:1c:fc:e2:88: 49:4c:3f:d2:3e:da:c9:ce:fa:dd:02:d4:c9:a8:9f:dc:47:d7: 42:59:80:7e:51:54:96:8a:d7:16:58:fa:d0:e9:71:6d:69:6b: 87:d8:fe:be:91:11:1d:40:d7:e4:2e:f2:8b:7e:a6:99:76:13: b1:b7:9d:6b:86:c4:32:6d:ed:2d:33:3f:6f:58:55:13:5d:20: 7a:97:c5:fa:b2:4a:2f:df:76:6e:1e:c3:36:80:17:b2:60:8a: 25:67:d2:96:88:50:90:3f:a8:dc:bd:d8:fd:84:ac:62:cd:0f: e6:60:f8:b7:db:90:83:b1:53:e4:e8:3c:57:cd:2d:20:0a:25: 49:ff:43:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUxMDE5MDc0MjI0WhcNMjUxMDI2MDc0MjI0WjAYMRYwFAYD VQQDEw02OGY0OTY2MS0wNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QAPWntIsQ8K0M0PyRu2lUwHfUg7MWE+5kzMX/5Olxk5ayMNfXuLGWLsJReh 6qgcxoI/row9lXNmwggcu1ziqx+mxrFfZfMQ+i0zR/JT0C8pZrloWDtZtUn5n1jM 6gH66zjMiV78/hyJ63DbcPSKNops2YU31XhkI7onJ0+n//eDNm25Jw847flX5NPp Z2IL0BOYRty2VWxb3Di4sdzRPi1U/uPmWcVbv0jb3jg6aou2d2GpNCL8vB0eCN5p lS/K04ed7F4g6bMRHz2X2nbgUhyvs7jdk3DAyAyc1VuXNg/HeBGY+IZyZtdypZu8 b8HuelMvtjakRb1lJOsWqQ+UWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCx1gBF lrTV18KhZlxHDAVQRnFNMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl/qwvTB4q0wPTHZhb15KjAlPrKE+AkHmxtLOTzZgmN+538iXVW7eC OZ3NQBP4fXQccWj+jdgtp06L/OD63ddTrIJNYEEMyHp9KzyY2ANRaUWkSEDhMiq+ 3OdrqfSSzDuJe8Vto8DMAtdS4WV4UJxhF30AFcryfzWXsRz84ohJTD/SPtrJzvrd AtTJqJ/cR9dCWYB+UVSWitcWWPrQ6XFtaWuH2P6+kREdQNfkLvKLfqaZdhOxt51r hsQybe0tMz9vWFUTXSB6l8X6skov33ZuHsM2gBeyYIolZ9KWiFCQP6jcvdj9hKxi zQ/mYPi325CDsVPk6DxXzS0gCiVJ/0OI -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:18 2025 by rpki-client