$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: 2EA2A6gfvrA1qMwbTChgBMThLwqsBbUZR71OPbuWIBA= Subject key identifier: 67:45:1E:87:CA:A0:2E:8D:5F:81:20:6D:8B:94:8B:37:1B:22:BB:66 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 8D Signing time: Sun 19 Oct 2025 09:48:10 +0000 Manifest this update: Sun 19 Oct 2025 09:48:10 +0000 Manifest next update: Sun 26 Oct 2025 09:48:10 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: x4G37efQ0QqvunyX419IpuNvlfsWsKrcVn7mTWHWwS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Oct 19 09:48:10 2025 GMT Not After : Oct 26 09:48:10 2025 GMT Subject: CN=68f4b3da-2075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:0f:29:5a:a9:e1:c3:bc:42:27:63:ee:4f: 6a:7f:2c:37:d6:c8:d0:30:53:9e:95:be:74:99:c8: 1c:a5:de:17:7f:ec:59:4b:2f:da:a8:e6:40:b4:06: fd:d7:43:7e:9c:63:02:75:04:e7:48:e4:b9:5f:31: 37:c1:6f:2a:c4:6d:da:37:4d:a1:44:4f:ab:88:4a: 10:6c:c1:2f:df:5a:a7:b0:8c:12:76:8e:ef:fe:bc: 9d:8e:90:f0:d2:c9:97:0c:d5:49:ca:77:60:be:67: 60:79:29:b5:0a:27:53:d9:fc:bf:64:01:73:a4:3d: 8e:ad:7c:ff:57:a4:db:98:8c:d7:83:c6:b5:87:75: b5:93:98:fd:51:79:6e:04:02:2f:4c:08:fb:0e:22: 7d:5a:52:4e:6a:53:45:7c:e2:41:29:ba:0e:2b:0a: 50:db:a5:c5:ed:33:fb:e9:39:c7:2d:73:58:3d:7b: 32:f2:3f:79:92:dc:54:2d:3e:32:d3:f3:ab:e7:3a: 54:c1:7a:e6:5b:79:1e:36:48:a0:b4:88:f4:cd:24: 52:58:ff:f4:ab:c7:15:0a:11:37:cf:b5:b6:01:87: ff:18:f1:8e:42:d0:19:fd:48:ea:6f:f0:58:91:06: 82:ce:cc:9a:c0:e0:fd:56:74:33:8a:60:97:69:6f: 8f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:45:1E:87:CA:A0:2E:8D:5F:81:20:6D:8B:94:8B:37:1B:22:BB:66 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8e:90:3c:84:5c:d6:4a:eb:53:ea:bf:a2:93:93:76:d7:02: 06:fc:e8:fd:07:d0:3a:3e:ba:ce:4c:f4:85:fc:17:b7:75:48: 2b:11:4b:49:95:39:0b:9d:1a:64:87:5b:22:21:4c:ff:60:21: 19:59:3e:51:4e:7d:8a:dc:93:69:b0:55:ad:5a:70:bb:10:b9: 07:3e:24:f7:10:53:b7:8c:0b:a8:47:1f:58:77:ea:b1:7b:99: 71:b1:cb:63:54:ad:0f:13:ed:63:18:a1:f1:6b:5d:c5:13:be: 50:50:12:a9:ac:a5:8c:51:34:dc:62:dd:f3:75:44:5d:a1:8e: 46:4d:f1:a1:bc:f6:fe:0c:3d:fc:06:d8:73:52:01:70:52:2b: 66:4f:3a:f3:02:74:f5:0a:56:60:0d:36:91:04:8d:e5:9f:92: 28:dd:89:b1:57:eb:91:de:8b:74:2f:44:20:8c:52:24:e9:3f: c7:54:70:55:83:c3:0a:7f:7a:b8:71:48:aa:04:90:0d:89:d0: 11:c7:f4:ff:00:13:ac:bd:15:ca:cf:56:c2:eb:51:3a:28:b4: da:e2:2a:2f:62:44:9d:de:c3:47:71:ad:c7:33:e8:24:59:af: 1c:04:34:3b:5e:d5:36:56:59:5b:c4:fa:df:aa:9d:bb:05:4f: 3d:c2:f1:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVFRUExMTAvBgNVBAUTKDg1Nzc5MDRDNDNDMkE5QkUxMThGRERENUJBN0JCOEI2 MDQ0MzgwRkUwHhcNMjUxMDE5MDk0ODEwWhcNMjUxMDI2MDk0ODEwWjAYMRYwFAYD VQQDEw02OGY0YjNkYS0yMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgUPKVqp4cO8Qidj7k9qfyw31sjQMFOelb50mcgcpd4Xf+xZSy/aqOZAtAb9 10N+nGMCdQTnSOS5XzE3wW8qxG3aN02hRE+riEoQbMEv31qnsIwSdo7v/rydjpDw 0smXDNVJyndgvmdgeSm1CidT2fy/ZAFzpD2OrXz/V6TbmIzXg8a1h3W1k5j9UXlu BAIvTAj7DiJ9WlJOalNFfOJBKboOKwpQ26XF7TP76TnHLXNYPXsy8j95ktxULT4y 0/Or5zpUwXrmW3keNkigtIj0zSRSWP/0q8cVChE3z7W2AYf/GPGOQtAZ/Ujqb/BY kQaCzsyawOD9VnQzimCXaW+P0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdFHofK oC6NX4EgbYuUizcbIrtmMB8GA1UdIwQYMBaAFIV3kExDwqm+EY/d1bp7uLYEQ4D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUVFQS9FQ0EyQzdENkQ0 Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3FiNFJqOTNWdW51NHRnUkRn UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUVFQS9FQ0EyQzdENkQ0Q0YxMUVGOThERjk4MkJDNEY5QUUwMi9oWGVRVEVQQ3Fi NFJqOTNWdW51NHRnUkRnUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6jpA8hFzWSutT6r+ik5N21wIG/Oj9B9A6PrrOTPSF/Be3dUgrEUtJ lTkLnRpkh1siIUz/YCEZWT5RTn2K3JNpsFWtWnC7ELkHPiT3EFO3jAuoRx9Yd+qx e5lxsctjVK0PE+1jGKHxa13FE75QUBKprKWMUTTcYt3zdURdoY5GTfGhvPb+DD38 BthzUgFwUitmTzrzAnT1ClZgDTaRBI3ln5Io3YmxV+uR3ot0L0QgjFIk6T/HVHBV g8MKf3q4cUiqBJANidARx/T/ABOsvRXKz1bC61E6KLTa4iovYkSd3sNHca3HM+gk Wa8cBDQ7XtU2VllbxPrfqp27BU89wvEI -----END CERTIFICATE-----Generated at Mon Oct 20 09:31:13 2025 by rpki-client