$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: obZDq68QOf1t60UVRgjQKyQs2i+/acCv8yqSDT3ik9k= Subject key identifier: C1:7E:76:B3:9B:42:37:FD:16:4D:9F:F2:37:84:B1:15:21:F9:D5:08 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0D5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D54 Signing time: Sat 18 Oct 2025 18:40:33 +0000 Manifest this update: Sat 18 Oct 2025 18:40:32 +0000 Manifest next update: Sat 25 Oct 2025 18:40:32 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: nSxXIf/aRz4vk4aTUvFfY5BUDt4uZBb3emIP4snHORE=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: iNF26PQV2QDxZAqXThwlTn9eA9VPYLTtDdkUTHz7O7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Oct 18 18:40:32 2025 GMT Not After : Oct 25 18:40:32 2025 GMT Subject: CN=68f3df21-cd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:f1:c4:7f:2b:7f:d5:ae:47:3b:d8:45:9c: 50:58:f7:c0:a2:91:9f:1f:75:c4:45:68:bf:26:81: 0b:cd:61:a2:56:a8:88:69:e8:97:68:78:30:db:64: bf:64:63:37:38:e2:f8:f9:e6:25:bc:25:0b:0e:92: 35:eb:76:56:4e:34:6f:e6:7b:4c:9d:0e:78:dc:b4: 0a:2d:a7:fd:76:a4:83:34:a0:b6:66:ff:88:20:08: 7d:de:e7:91:a6:36:89:f1:ef:b4:63:cd:5f:1e:8c: d3:b8:30:32:eb:d7:5a:60:9d:bb:d5:63:06:92:64: 8b:30:18:31:dd:81:0c:a0:1a:49:e7:e4:04:a8:6a: 19:3f:5e:83:29:df:80:6a:a8:a0:4f:b4:66:f6:79: 1f:25:14:46:09:57:5e:25:0b:4d:2f:b0:39:f7:f2: 80:3d:72:dc:f4:19:1b:1a:28:81:e4:95:48:ee:71: 31:1d:b0:5f:2c:2f:6f:e1:d6:19:f4:49:d4:bf:32: c7:93:9e:9e:28:50:8b:a0:61:a4:04:61:3e:da:30: 95:57:a6:c9:fd:fc:78:13:7f:f1:b0:6e:38:70:2b: 7b:b0:92:4f:f7:25:ae:df:c2:83:b6:f8:bb:b7:e7: 1e:0d:34:76:99:eb:14:eb:fb:fa:8a:30:fd:f5:71: 5a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7E:76:B3:9B:42:37:FD:16:4D:9F:F2:37:84:B1:15:21:F9:D5:08 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a3:eb:71:ce:4b:58:5c:f3:43:76:a6:38:e4:b2:9f:32:95: 75:94:41:fc:cc:b6:aa:af:f9:cd:2b:9c:35:a2:6a:d7:d3:f1: 03:ed:67:c3:fd:6e:53:1d:4f:dc:61:b3:2f:38:97:3e:d9:51: 0c:7d:17:c4:37:97:42:46:9a:e7:19:bb:dd:1a:58:37:b5:f9: 4d:c8:3d:30:f0:d2:88:c2:59:c9:ba:43:15:9b:22:8d:aa:13: 4c:be:b6:91:5b:4c:17:55:d1:dd:0b:44:13:b0:eb:56:02:db: 16:c7:8b:7a:10:37:bb:08:49:74:85:fe:7f:14:89:f1:3e:6d: 02:0d:da:07:7b:45:20:d7:9e:fa:07:49:b3:cf:52:be:eb:6d: 97:1c:e6:cf:57:88:5d:92:c2:d2:aa:4b:11:03:d9:e1:3a:52: 69:5e:eb:0f:29:40:74:dd:9d:b6:6e:f0:c3:84:9c:35:11:42: fb:00:af:cc:e4:d6:fa:ab:25:85:f8:8e:99:fd:2e:e9:0f:b2: b6:b8:13:4f:a2:90:3b:1c:5a:a7:a1:a2:e7:29:0a:dd:f6:79: a7:e8:97:b7:c3:ab:5a:c6:aa:be:02:e4:e8:38:66:b9:6b:bb: a8:b9:53:ac:7d:b3:c6:17:55:2d:db:bc:6c:98:e2:7c:3f:6c: 02:e5:95:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjUxMDE4MTg0MDMyWhcNMjUxMDI1MTg0MDMyWjAYMRYwFAYD VQQDEw02OGYzZGYyMS1jZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiPxxH8rf9WuRzvYRZxQWPfAopGfH3XERWi/JoELzWGiVqiIaeiXaHgw22S/ ZGM3OOL4+eYlvCULDpI163ZWTjRv5ntMnQ543LQKLaf9dqSDNKC2Zv+IIAh93ueR pjaJ8e+0Y81fHozTuDAy69daYJ271WMGkmSLMBgx3YEMoBpJ5+QEqGoZP16DKd+A aqigT7Rm9nkfJRRGCVdeJQtNL7A59/KAPXLc9BkbGiiB5JVI7nExHbBfLC9v4dYZ 9EnUvzLHk56eKFCLoGGkBGE+2jCVV6bJ/fx4E3/xsG44cCt7sJJP9yWu38KDtvi7 t+ceDTR2mesU6/v6ijD99XFaSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMF+drOb Qjf9Fk2f8jeEsRUh+dUIMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlo+txzktYXPNDdqY45LKfMpV1lEH8zLaqr/nNK5w1omrX0/ED7WfD /W5THU/cYbMvOJc+2VEMfRfEN5dCRprnGbvdGlg3tflNyD0w8NKIwlnJukMVmyKN qhNMvraRW0wXVdHdC0QTsOtWAtsWx4t6EDe7CEl0hf5/FInxPm0CDdoHe0Ug1576 B0mzz1K+622XHObPV4hdksLSqksRA9nhOlJpXusPKUB03Z22bvDDhJw1EUL7AK/M 5Nb6qyWF+I6Z/S7pD7K2uBNPopA7HFqnoaLnKQrd9nmn6Je3w6taxqq+AuToOGa5 a7uouVOsfbPGF1Ut27xsmOJ8P2wC5ZX6 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:44 2025 by rpki-client