$ rpki-client -vvf rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft File: HmHgACzkS79ZVTyASgrJEub-vzs.mft (raw, json) Hash identifier: Bs9FgmBJ6Y5JNz745C5oeEO7sTBNenJANgC71N96dOo= Subject key identifier: 79:01:27:25:27:5B:41:CA:D6:6A:C8:7D:81:83:C2:4C:8D:92:EC:93 Authority key identifier: 1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B Certificate issuer: /CN=A91EACB9/serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft Manifest number: 0280 Signing time: Sun 19 Oct 2025 03:50:10 +0000 Manifest this update: Sun 19 Oct 2025 03:50:09 +0000 Manifest next update: Sun 26 Oct 2025 03:50:09 +0000 Files and hashes: 1: HmHgACzkS79ZVTyASgrJEub-vzs.crl (hash: aZKo+VPZVdvE//7WVuHPywtT78PRUyHEKYjgV6HVWbM=) 2: 654307DC26CC11EDB395A078C4F9AE02.roa (hash: hGQixG8nIJXVA0JQORYC8z0pOj4UbTutn+kvPqmH25s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EACB9, serialNumber=1E61E0002CE44BBF59553C804A0AC912E6FEBF3B Validity Not Before: Oct 19 03:50:09 2025 GMT Not After : Oct 26 03:50:09 2025 GMT Subject: CN=68f45ff1-a1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b6:a4:6e:16:0d:c4:3e:3d:fa:b6:33:e6:a8: 31:ad:5c:c3:43:3b:d3:92:40:58:85:b5:d9:e5:5b: f1:e0:54:61:4b:cc:2c:6d:f3:8a:cb:3a:cf:1f:45: d3:3c:0d:f8:78:3e:2b:1d:aa:c3:01:05:50:a1:97: 2b:ce:d7:44:d9:a5:71:49:37:2c:da:e1:f5:1d:3c: 16:82:d3:6a:e3:03:56:54:07:da:b3:75:e4:e7:5a: f5:c1:65:a3:2f:04:e9:ef:74:51:dd:e4:2c:57:ff: 5f:09:d1:0c:9e:28:f8:c0:c5:a9:34:fa:21:4a:37: 35:b0:eb:2b:26:35:0f:1b:cf:fe:4a:3a:0f:a7:c6: 9b:d1:54:f4:88:e4:5a:8e:c8:53:60:ff:bf:e3:52: 69:aa:77:d6:01:f5:24:68:4a:db:cf:98:9b:d5:df: 56:fb:f9:06:3b:81:89:9a:ce:26:28:9e:de:64:57: eb:af:ec:f2:d4:24:7c:bd:9e:13:25:f2:24:6f:ea: 3e:b6:79:87:f4:d1:b0:38:82:d2:ee:bf:26:d0:4e: b4:4c:80:71:26:52:f8:dd:6e:53:2a:9f:66:51:2c: 53:8c:bd:6f:4a:46:25:70:dd:1d:8b:a6:6c:c7:1f: a6:66:35:57:36:e9:cd:27:d3:9c:50:2c:35:3f:22: 23:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:01:27:25:27:5B:41:CA:D6:6A:C8:7D:81:83:C2:4C:8D:92:EC:93 X509v3 Authority Key Identifier: keyid:1E:61:E0:00:2C:E4:4B:BF:59:55:3C:80:4A:0A:C9:12:E6:FE:BF:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmHgACzkS79ZVTyASgrJEub-vzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EACB9/0C0020E0269C11EDBB145277C4F9AE02/HmHgACzkS79ZVTyASgrJEub-vzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:96:1d:e5:86:7c:b6:18:24:ff:92:7d:3d:20:88:6c:86:32: 73:af:44:6a:eb:fd:1c:2a:1c:4b:f6:42:65:81:27:53:68:ab: 38:78:a2:d7:41:cf:74:48:03:c8:5f:f9:41:62:ef:71:49:be: 58:2c:cd:58:07:da:e0:a5:05:b1:57:1f:c9:ab:bf:07:a2:6a: 14:ba:97:ee:54:50:70:a1:53:b4:d5:2f:cb:66:d9:73:97:2c: a4:1d:52:18:4b:d3:d1:41:fb:b1:32:86:12:3e:14:91:10:e1: 63:a1:98:54:74:cb:94:e7:19:68:2f:70:c3:0d:26:67:a5:de: 1c:c8:98:4b:88:95:42:0a:a0:bd:d7:75:bf:62:67:f2:f0:23: ff:2f:9d:da:ad:87:b4:75:56:b9:69:a0:86:da:73:1b:db:7a: 45:91:d1:f8:e2:45:eb:b3:e7:8a:dc:0c:3c:ad:8a:da:f4:81: f6:c2:32:ea:a8:25:e9:82:0c:e9:5a:3e:e3:42:cf:11:a5:19: 74:29:ff:0c:19:aa:20:53:9b:e4:e5:3f:71:58:5f:a3:b5:80: 49:e2:89:17:13:d8:0a:8a:b8:09:6f:38:f5:1c:01:11:00:ee: d3:18:48:14:08:4a:a7:12:09:38:37:dc:db:ff:41:b3:a1:79: c3:a0:9d:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDQjkxMTAvBgNVBAUTKDFFNjFFMDAwMkNFNDRCQkY1OTU1M0M4MDRBMEFDOTEy RTZGRUJGM0IwHhcNMjUxMDE5MDM1MDA5WhcNMjUxMDI2MDM1MDA5WjAYMRYwFAYD VQQDEw02OGY0NWZmMS1hMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47akbhYNxD49+rYz5qgxrVzDQzvTkkBYhbXZ5Vvx4FRhS8wsbfOKyzrPH0XT PA34eD4rHarDAQVQoZcrztdE2aVxSTcs2uH1HTwWgtNq4wNWVAfas3Xk51r1wWWj LwTp73RR3eQsV/9fCdEMnij4wMWpNPohSjc1sOsrJjUPG8/+SjoPp8ab0VT0iORa jshTYP+/41JpqnfWAfUkaErbz5ib1d9W+/kGO4GJms4mKJ7eZFfrr+zy1CR8vZ4T JfIkb+o+tnmH9NGwOILS7r8m0E60TIBxJlL43W5TKp9mUSxTjL1vSkYlcN0di6Zs xx+mZjVXNunNJ9OcUCw1PyIjWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkBJyUn W0HK1mrIfYGDwkyNkuyTMB8GA1UdIwQYMBaAFB5h4AAs5Eu/WVU8gEoKyRLm/r87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUNCOS8wQzAwMjBFMDI2 OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3OVpWVHlBU2dySkV1Yi12 enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htSGdBQ3prUzc5WlZUeUFTZ3JKRXViLXZ6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUNCOS8wQzAwMjBFMDI2OUMxMUVEQkIxNDUyNzdDNEY5QUUwMi9IbUhnQUN6a1M3 OVpWVHlBU2dySkV1Yi12enMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAlh3lhny2GCT/kn09IIhshjJzr0Rq6/0cKhxL9kJlgSdTaKs4eKLX Qc90SAPIX/lBYu9xSb5YLM1YB9rgpQWxVx/Jq78HomoUupfuVFBwoVO01S/LZtlz lyykHVIYS9PRQfuxMoYSPhSREOFjoZhUdMuU5xloL3DDDSZnpd4cyJhLiJVCCqC9 13W/Ymfy8CP/L53arYe0dVa5aaCG2nMb23pFkdH44kXrs+eK3Aw8rYra9IH2wjLq qCXpggzpWj7jQs8RpRl0Kf8MGaogU5vk5T9xWF+jtYBJ4okXE9gKirgJbzj1HAER AO7TGEgUCEqnEgk4N9zb/0GzoXnDoJ3X -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:40 2025 by rpki-client