$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: p64DZ2UPGnrlqhKg9rP/13m5vG2fzuwEOFIFT2sqgrQ= Subject key identifier: 42:C8:C5:49:FD:52:7E:2F:D2:A9:BB:06:BD:A7:19:BB:27:8E:1A:A1 Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 093F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 0936 Signing time: Sat 18 Oct 2025 21:18:34 +0000 Manifest this update: Sat 18 Oct 2025 21:18:33 +0000 Manifest next update: Sat 25 Oct 2025 21:18:33 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: VpChIXFeFjhADyRKFFIRdNoWz6LQ2EA7D2PZhBzETTU=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Oct 18 21:18:33 2025 GMT Not After : Oct 25 21:18:33 2025 GMT Subject: CN=68f40429-0a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c2:79:3c:6c:61:7f:c2:14:3d:6d:bb:8d:78: f6:3d:1a:41:f1:ca:0d:3e:8d:ee:30:8a:78:4c:d9: be:ac:1b:72:be:4a:2e:31:e4:fc:d5:55:77:35:8b: b5:28:d7:8a:b6:0b:ad:bb:05:5d:06:e0:e3:03:4c: c8:86:bd:c7:15:a1:b8:33:63:c4:c9:05:53:cb:a3: 5a:92:b5:eb:f2:08:10:3e:6d:9d:bc:df:06:a9:86: 14:51:5f:a3:d0:fd:79:b9:23:84:94:cd:95:90:f9: 4a:44:0c:c9:c1:91:02:a5:a9:22:c4:c4:c1:b4:0d: 33:87:98:22:d4:d8:01:7b:d2:dc:21:a7:ba:f7:ce: 0d:d0:dc:47:ee:db:62:83:79:b4:80:ca:47:11:e9: 1c:d7:ea:45:61:b2:c8:88:6d:e9:1e:bb:82:c2:33: 88:f7:98:9b:b4:bb:00:a2:69:49:d4:b4:33:67:8e: 24:d3:b9:68:79:f8:66:ee:df:1d:cd:f3:0c:6b:1e: 2b:ee:0f:10:a4:20:d6:38:70:94:16:67:99:85:2b: a1:63:04:4c:21:9c:f6:23:b5:f9:eb:43:f7:95:f1: 71:58:b8:47:ad:1d:a9:ef:ac:3c:45:e8:09:9a:fc: ca:ee:34:a6:0b:4f:b3:40:ae:04:a5:f6:67:fb:05: 59:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C8:C5:49:FD:52:7E:2F:D2:A9:BB:06:BD:A7:19:BB:27:8E:1A:A1 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4a:57:4c:09:2f:46:70:99:8d:d9:23:2b:29:39:d7:e2:eb: 6b:6e:3e:39:fe:58:39:06:2c:6b:da:8e:d9:70:dc:02:63:ed: b3:b3:aa:3c:6b:be:94:f4:91:09:11:88:49:72:90:41:85:b0: ce:62:7a:f6:93:f5:82:4c:41:87:a3:5a:ab:99:d9:39:dc:a9: d9:4c:0f:db:f6:71:e1:ab:34:8e:6f:90:ae:10:77:44:12:1e: 03:62:20:e3:f2:75:01:e0:9b:67:6d:3e:eb:78:d7:c3:84:48: 78:84:84:7e:b7:41:a9:4c:0f:3e:f2:c3:92:96:60:d5:f8:bc: 6e:72:af:09:92:9a:99:bb:c6:3a:a8:13:f0:84:1d:af:5a:bb: 9e:b8:64:e2:90:f1:17:54:2d:81:22:7c:b5:46:37:6b:ea:4a: b7:1a:3c:fb:2b:98:06:e6:6d:c8:e9:2f:dd:a2:7f:2e:81:30: 4f:ef:c8:d2:45:71:cc:e6:a5:d9:81:83:61:8a:5b:61:55:da: 49:fb:20:f0:40:42:31:cd:ab:97:1a:6d:86:e0:36:6d:32:d4: 30:30:85:81:f6:95:56:1d:b4:ea:89:50:e6:08:3a:1a:5d:e8: 38:76:32:3e:eb:8e:5f:6a:dc:41:fc:3a:d4:78:1d:67:53:9f: 34:8d:42:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUxMDE4MjExODMzWhcNMjUxMDI1MjExODMzWjAYMRYwFAYD VQQDEw02OGY0MDQyOS0wYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycJ5PGxhf8IUPW27jXj2PRpB8coNPo3uMIp4TNm+rBtyvkouMeT81VV3NYu1 KNeKtgutuwVdBuDjA0zIhr3HFaG4M2PEyQVTy6NakrXr8ggQPm2dvN8GqYYUUV+j 0P15uSOElM2VkPlKRAzJwZECpakixMTBtA0zh5gi1NgBe9LcIae6984N0NxH7tti g3m0gMpHEekc1+pFYbLIiG3pHruCwjOI95ibtLsAomlJ1LQzZ44k07loefhm7t8d zfMMax4r7g8QpCDWOHCUFmeZhSuhYwRMIZz2I7X560P3lfFxWLhHrR2p76w8RegJ mvzK7jSmC0+zQK4EpfZn+wVZQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELIxUn9 Un4v0qm7Br2nGbsnjhqhMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjSldMCS9GcJmN2SMrKTnX4utrbj45/lg5Bixr2o7ZcNwCY+2zs6o8 a76U9JEJEYhJcpBBhbDOYnr2k/WCTEGHo1qrmdk53KnZTA/b9nHhqzSOb5CuEHdE Eh4DYiDj8nUB4JtnbT7reNfDhEh4hIR+t0GpTA8+8sOSlmDV+Lxucq8JkpqZu8Y6 qBPwhB2vWrueuGTikPEXVC2BIny1Rjdr6kq3Gjz7K5gG5m3I6S/don8ugTBP78jS RXHM5qXZgYNhilthVdpJ+yDwQEIxzauXGm2G4DZtMtQwMIWB9pVWHbTqiVDmCDoa Xeg4djI+645fatxB/DrUeB1nU580jUJL -----END CERTIFICATE-----Generated at Mon Oct 20 10:42:53 2025 by rpki-client